https://sherlock-files.ams3.digitaloceanspaces.com/profile_images/defaults/default_avatar_5.png

Phantasmagoria

Security Researcher

Contact Me

High

3

Total

Medium

15

Total

$2.65K

Total Earnings

#932 All Time

14x

Payouts

regular

1x

Top 10

regular

5x

Top 25

regular

8x

Top 50

All

Sherlock

Code4rena

CodeHawks

Nov '23

Kelp DAO | rsETH

Kelp DAO | rsETH

7.42 USDC • 1 total finding • Code4rena • Phantasmagoria

#51

high

The price of rsEHT could be manipulated by the first staker

Sep '23

Centrifuge

Centrifuge

50.43 USDC • 1 total finding • Code4rena • Phantasmagoria

#31

medium

```trancheTokenAmount``` should be rounded UP when proceeding to a withdrawal or previewing a withdrawal.

Aug '23

Sparkn

Sparkn

5.30 USDC • 2 total findings • CodeHawks • Phantasmagoria

#75

medium

Malicious/Compromised organiser can reclaw all funds, stealing work from supporters

low

Centralization Risk for trusted organizers

Tangible Caviar

Tangible Caviar

0 USDC • Code4rena • Phantasmagoria

#88

Jul '23

Beedle - Oracle free perpetual lending

Beedle - Oracle free perpetual lending

0.68 USDC • 5 total findings • CodeHawks • Phantasmagoria

#199

high

Sandwich attack to steal all ERC-20 tokens in the Fees contract

high

Fee on transfer tokens will cause users to lose funds

medium

Single-step process for critical ownership transfer is risky

low

Lender fails to giveLoan because of inconsistent length between `loadIds` and `poolIds`

low

Rounding error risk in borrow() function in Lender.sol

Foundry DeFi Stablecoin CodeHawks Audit Contest

Foundry DeFi Stablecoin CodeHawks Audit Contest

1.77 USDC • 4 total findings • CodeHawks • Phantasmagoria

#115

medium

staleCheckLatestRoundData() does not check the status of the Arbitrum sequencer in Chainlink feeds.

medium

Chainlink oracle will return the wrong price if the aggregator hits `minAnswer`

medium

Too many DSC tokens can get minted for fee-on-transfer tokens.

low

Zero address check for tokens

Tokemak

Tokemak

99.49 USDC • 1 total finding • Sherlock • Phantasmagoria

#44

medium

Removed vault cannot be added again

Jun '23

RealWagmi

RealWagmi

142.24 USDC • 1 total finding • Sherlock • Phantasmagoria

#15

medium

Missing transaction expiration check result in reward tokens selling at a lower price

May '23

Perennial

Perennial

1,929.68 USDC • 1 total finding • Sherlock • Phantasmagoria

#7

medium

First depositor can break minting of shares

Index

Index

153.64 USDC • 2 total findings • Sherlock • Phantasmagoria

#17

medium

Use of deprecated chainlink function

medium

Missing checks for whether Arbitrum Sequencer is active

Footium

Footium

91.00 USDC • 3 total findings • Sherlock • Phantasmagoria

#22

medium

Have to be approved to zero first

medium

Wrong check in mintPlayers() function allows mint more players

medium

FootiumClub NFT can be locked when calling _mint function to mint it to a contract that does not support ERC721 protocol

Mar '23

Asymmetry contest

Asymmetry contest

8.84 USDC • 1 total finding • Code4rena • Phantasmagoria

#117

medium

Residual ETH unreachable and unuitilized in SafEth.sol

Aragon Protocol contest

Aragon Protocol contest

53.96 USDC • Code4rena • Phantasmagoria

#15

Feb '23

Ethos Reserve contest

Ethos Reserve contest

103.33 USDC • Code4rena • Phantasmagoria

#32