Denial of Service Vulnerability in VotingEscrow Contract Due to Excessive Gas Consumption

Chainlink's `latestRoundData` might return stale or incorrect results

Repayments and liquidations can be forced to revert by an attacker that repays miniscule amount of shares

Due to interest rates update method, Interest-Free Loans are possible and the Cost of DoS are reduced

Attacker can drain all ETH from AuctionDemo when block.timestamp == auctionEndTime

Attacker can reenter to mint all the collection supply

A malicious user can avoid unfavorable score updates after alpha/multiplier changes, resulting in accrual of outsized rewards for the attacker at the expense of other users

The settle feature will be broken if attacker arbitrarily transfer collateral tokens to the PerpetualAtlanticVaultLP

No check for stale price may lead to unexpected swap output

getPrice() of PriceOracle.sol may return stale price

Exchange Rate can be manipulated

Owner of Denied Position is not able to withdraw collateral until expiry.

PrivatePool owner can steal all ERC20 and NFT from user via arbitrary execution