https://sherlock-files.ams3.digitaloceanspaces.com/twitter_images/98ef5fb8-51a1-4902-8fec-836c84a5c9ae.jpg

Matue

Security Researcher

Contact Me

High

Total

Medium

Total

$52.00

Total Earnings

#2100 All Time

4x

Payouts

All

Code4rena

Feb '24

AI Arena

1.92 USDC • 2 total findings • Code4rena • Matue

#160

medium

Can mint NFT with the desired attributes by reverting transaction

medium

Fighter created by mintFromMergingPool can have arbitrary weight and element

Jan '24

Decent

17.42 USDC • 2 total findings • Code4rena • Matue

#52

high

Anyone can update the address of the Router in the DcntEth contract to any address they would like to set.

medium

Missing access control on UTB:receiveFromBridge allows UTB swaps to be executed without spending bridge fees while bypassing fee/swap instruction signature verification

Salty.IO

31.2 USDC • 1 total finding • Code4rena • Matue

#100

medium

Reusing a SALT that has already been used for voting can allow a malicious proposal to pass and compromise the protocol.

Curves

2.19 USDC • 3 total findings • Code4rena • Matue

#118

high

Attack to make ````CurveSubject```` to be a ````HoneyPot````

high

Unauthorized Access to setCurves Function

medium

If a user sets their curve token symbol as the default one plus the next token counter instance it will render the whole default naming functionality obsolete