Security Researcher
High
Total
Medium
Total Earnings
#1047 All Time
Payouts
Top 10
Top 25
Top 50
All
Sherlock
CodeHawks
Jan '25
557.45 usdc • 3 total findings • CodeHawks • greese
#23
high
The Deleverage Will apply twice on market USDtoken minting
Unclaimed Rewards Loss Due to Missing Validation in `VaultRouterBranch.stake()`
low
Users could potentially use their own referral code
340.20 usdc • CodeHawks • greese
#12
Dec '24
5.97 op • 1 total finding • CodeHawks • greese
#76
medium
Transferring deposit NFT doesn't check if the receiver exceeds the 100 deposit limit
Nov '24
76.84 USDC • 2 total findings • Sherlock • Greese
#34
Receipt NFTs will be permanently locked inside `buyOrder` when a user fills a buy order
Old owner of receipt NFTs will still be a manager in the corresponding vault contract allowing them to perform perform unwanted actions with veNFTs
Oct '24
11.92 USDC • 3 total findings • CodeHawks • greese
#56
Subtraction in `variance()` will revert due to underflow
Platform fees withdrawal will sweep oracle agents earned fees
Request responses and validations can be mocked leading to extraction of fees and/or forcing other generators to lose their fees by making them outliers
323.43 USDC • 1 total finding • Sherlock • Greese
#8
`V2AMO` is not compatible with Aerodrome and Velodrome routers due to different pool address creation logic
Sep '24
349.41 USDC • CodeHawks • greese
#30
23.07 USDC • 1 total finding • Sherlock • Greese
#22
Unable to call some functions in the incentive contracts with onlyOwner modifier because of incorrect initialization leading to stuck funds
38.99 USDC • 1 total finding • Sherlock • Greese
#63
Attacker can steal a user's repaid protected listing if the buyer opts to withdraw their asset at another time
Aug '24
0.19 USDC • 1 total finding • CodeHawks • greese
#20
[H-01] Auction tokens will be lost forever when auction ends without bids
0.00 USDC • 1 total finding • CodeHawks • greese
#177
TokenManager - Unlimited withdraw
