https://sherlock-files.ams3.digitaloceanspaces.com/profile_images/defaults/default_avatar_8.png

DPS

Security Researcher

Contact Me

High

15

Total

Medium

14

Total

$777.00

Total Earnings

#1298 All Time

9x

Payouts

regular

2x

Top 25

regular

8x

Top 50

All

Sherlock

Code4rena

Aug '24

Chakra

Chakra

36.05 USDT • 4 total findings • Code4rena • DPS

#45

high

There is no refund mechanism in `ChakraSettlement.processCrossChainCallback` or `ChakraSettlementHandler.receive_cross_chain_callback` function

high

Anyone can manipulate user nonce (nonce_manager) in settlement contract

high

handler's `receive_cross_chain_callback()` will always set the tx_status to `SETTLED` on source chain & burn the tokens (MintBurn Mode) even when the msg fails on destination

medium

A cross-chain message can be initiated with invalid parameters

Jul '24

Munchables

Munchables

269.92 USDC • 3 total findings • Code4rena • DPS

#25

high

Malicious User can call `lockOnBehalf` repeatedly extend a users `unlockTime`, removing their ability to withdraw previously locked tokens

high

in `farmPlots()` an underflow in edge case leading to freeze of funds (NFT)

medium

Players can gain more NFTs benefiting from that past remainder in subsequent locks

MagicSea - the native DEX on the IotaEVM

MagicSea - the native DEX on the IotaEVM

43.64 USDC • 3 total findings • Sherlock • DPS

#40

high

In `Voter.sol` the `vote()` function is using wrong if statement when checking the `_periodDuration`

high

`_notifyBribes()` will revert everytime because of wrong check in `BribeRewarder::_modify()`

medium

There is no check for minimum staking duration in `MlumStaking.sol`

May '24

Predy

Predy

3.85 USDC • 1 total finding • Code4rena • DPS

#37

medium

Vaults can become immune from liquidation by setting `vault.recipient` to a blacklisted quote token address

Munchables

Munchables

28.8 USDC • 3 total findings • Code4rena • DPS

#13

high

Malicious User can call `lockOnBehalf` repeatedly extend a users `unlockTime`, removing their ability to withdraw previously locked tokens

high

in `farmPlots()` an underflow in edge case leading to freeze of funds (NFT)

medium

Players can gain more NFTs benefiting from that past remainder in subsequent locks

Apr '24

NOYA

NOYA

333.59 USDC + NOYA stars • 12 total findings • Code4rena • DPS

#29

high

BalancerConnector has incorrect implementation of totalSupply, positionTVL and total TVL will be invalid

high

`BalancerConnector::_getPositionTVL` is calculated incorrectly

high

`AccountingManager::resetMiddle` will not behave as expected

high

`executeWithdraw` may be blocked if any of the users are blacklisted from the `baseToken`

high

In Dolomite, when opening a borrow position, the holding position in the Registry will never be updated due to the removePosition flag being set to true

medium

Attacker can increase the length of `withdrawQueue` by withdrawing 0 amount of tokens frequently

medium

`Keepers` does not implement EIP712 correctly on multiple occasions

medium

First depositor can make subsequent depositor lose all of her or his deposit

medium

Incorrect modifier condition

medium

Balancer flashloan contract can be DOSed completely by sending 1 wei to it

medium

`depositQueue.queue` in `AccountingManager` can be flooded causing a DoS

medium

Dust donation might DOS all connectors to create new holding positions, by preventing removing existing holding positions

Teller Finance

Teller Finance

9.92 USDC • 1 total finding • Sherlock • DPS

#34

medium

LenderCommitmentGroup_Smart::addPrincipalToCommitmentGroup calculates `totalPrincipalTokensCommitted` wrong

DYAD

DYAD

0.02 USDC • 1 total finding • Code4rena • DPS

#114

high

Attacker can make 0 value deposit() calls to deny user from redeeming or withdrawing collateral

Zivoe

Zivoe

51.46 USDC • 1 total finding • Sherlock • DPS

#45

medium

OCL_ZVE::forwardYield executes removeLiquidity without slippage protection