2x
Payouts
1x
Top 25
1x
Top 50
All
Sherlock
May '23
high
In UniV3SwapInput: amountOutMinimum is set to 0, this can result significant slippage when swapping
high
StableOracleWBTC is using the wrong address for Chainlink price feeds
high
mintRebalancer() and burnRebalancer() are missing access control modifiers, allowing anyone to burn/mint tokens
high
rebalance() is using spot price in Uniswap liquidity pool, which is very vulnerable to flashloan price manipulation
medium
Chainlink’s latestRoundData Might Return Stale Results
medium
StableOracleWBTC uses BTC/USD chainlink oracle to price WBTC which is problematic if WBTC depegs.