https://sherlock-files.ams3.digitaloceanspaces.com/profile_images/e6d9e90a-2f77-4649-bec8-840d1b3404b9.png

Pataroff

Security Researcher

Web3 Security Researcher

Contact Me

High

4

Total

Medium

7

Total

$608.00

Total Earnings

#1390 All Time

4x

Payouts

regular

3x

Top 50

All

Code4rena

Jul '24

TraitForge

TraitForge

0 USDC • 2 total findings • Code4rena • Pataroff

#89

high

`mintToken()`, `mintWithBudget()`, and `forge()` in the `TraitForgeNft` Contract Will Fail Due to a Wrong Modifier Used in `EntropyGenerator.initializeAlphaIndices()`

medium

Pause and unpause functions are inaccessible

Munchables

Munchables

29.18 USDC • 1 total finding • Code4rena • TPSec

#44

high

[H-01] Miscalculation in `_farmPlots` function could lead to a user unable to unstake all NFTs

Apr '24

NOYA

NOYA

288.58 USDC + NOYA stars • 7 total findings • Code4rena • TPSec

#31

high

`executeWithdraw` may be blocked if any of the users are blacklisted from the `baseToken`

high

`NoyaValueOracle.getValue` returns an incorrect price when a multi-token route is used

medium

The total deposit amount limit in `AccountingManager.sol` can be bypassed

medium

AccountingManager has no correct implementations of the core ERC-4626 functions `deposit`, `mint`, `withdraw` and `redeem`

medium

`Keepers` does not implement EIP712 correctly on multiple occasions

medium

First depositor can make subsequent depositor lose all of her or his deposit

medium

Dust donation might DOS all connectors to create new holding positions, by preventing removing existing holding positions

DYAD

DYAD

291.13 USDC • 1 total finding • Code4rena • Pataroff

#40

medium

`VaultManagerV2.sol::burnDyad` function is missing an `isDNftOwner` modifier, allowing a user to burn another user's minted DYAD