https://sherlock-files.ams3.digitaloceanspaces.com/twitter_images/2497906f-839c-46d9-9236-87c2e54d0714.jpg

Sm4rty

Security Researcher

📡 Web3 Security Researcher 🔎 | 🔮 Audits @code4rena @codehawks @sherlockdefi | 🛡 Former auditor @QuillAudits | DM for Collaborations ☄️

Contact Me

High

2

Total

Medium

11

Total

$2.60K

Total Earnings

#939 All Time

37x

Payouts

regular

1x

Top 10

regular

7x

Top 25

regular

23x

Top 50

All

Sherlock

Code4rena

CodeHawks

Aug '23

Sparkn

Sparkn

20.26 USDC • 3 total findings • CodeHawks • sm4rty

#46

low

If a winner is blacklisted on any of the tokens they can't receive their funds

low

Potential DOS due to Gas Exhaustion Due to Large Array Iteration in `_distribute` Function

low

Missing Events

Jul '23

Foundry DeFi Stablecoin CodeHawks Audit Contest

Foundry DeFi Stablecoin CodeHawks Audit Contest

0.97 USDC • 4 total findings • CodeHawks • sm4rty

#135

medium

staleCheckLatestRoundData() does not check the status of the Arbitrum sequencer in Chainlink feeds.

medium

Chainlink oracle will return the wrong price if the aggregator hits `minAnswer`

medium

All of the USD pair price feeds doesn't have 8 decimals

low

Pragma isn't specified correctly which can lead to nonfunction/damaged contract when deployed on Arbitrum

CodeHawks Escrow Contract - Competition Details

CodeHawks Escrow Contract - Competition Details

59.72 USDC • 1 total finding • CodeHawks • sm4rty

#42

low

Lack of proper event emission at resolveDispute function.

Beam

Beam

35.23 USDC • Sherlock • Sm4rty

#34

Bond Options

Bond Options

99.50 USDC • 1 total finding • Sherlock • Sm4rty

#17

high

Attacker can Steal Other User's Collateral

Mar '23

Gitcoin

Gitcoin

69.98 USDC • Sherlock • Sm4rty

#45

Oct '22

Paladin - Warden Pledges contest

Paladin - Warden Pledges contest

19.64 USDC • Code4rena • Sm4rty

#33

Mycelium

Mycelium

99.78 USDC • 1 total finding • Sherlock • Sm4rty

#9

high

A malicious early user/attacker can manipulate the myLink token's pricePerShare to take an unfair share of future users' deposits

Sep '22

Frax Ether Liquid Staking contest

Frax Ether Liquid Staking contest

54.44 USDC • 1 total finding • Code4rena • Sm4rty

#45

medium

frxETHMinter: Non-conforming ERC20 tokens not recoverable

VTVL contest

VTVL contest

28.18 USDC • Code4rena • Sm4rty

#67

Art Gobblers contest

Art Gobblers contest

55.2 USDC • Code4rena • Sm4rty

#21

Harpie

Harpie

16.97 USDC • 1 total finding • Sherlock • Sm4rty

#21

medium

Use safeTransferFrom instead of transferFrom for ERC721 transfers

Y2k Finance contest

Y2k Finance contest

16.18 USDC • Code4rena • Sm4rty

#53

PartyDAO contest

PartyDAO contest

40.18 USDC • Code4rena • Sm4rty

#58

FEI and TRIBE Redemption contest

FEI and TRIBE Redemption contest

33.58 USDC • Code4rena • Sm4rty

#14

Canto Dex Oracle contest

Canto Dex Oracle contest

107.4 CANTO • 1 total finding • Code4rena • Sm4rty

#11

medium

unbounded loop length dos

Aug '22

Olympus DAO contest

Olympus DAO contest

99.68 USDC • 1 total finding • Code4rena • Sm4rty

#54

medium

[NAZ-M1] Chainlink's `latestRoundData` Might Return Stale Results

Nouns DAO contest

Nouns DAO contest

52.41 USDC • Code4rena • Sm4rty

#32

FIAT DAO veFDT contest

FIAT DAO veFDT contest

44.84 USDC • Code4rena • Sm4rty

#62

Fraxlend (Frax Finance) contest

Fraxlend (Frax Finance) contest

67.02 USDC • Code4rena • Sm4rty

#54

Foundation Drop contest

Foundation Drop contest

74.99 USDC • 1 total finding • Code4rena • Sm4rty

#34

medium

NFT of NFT collection or NFT drop collection can be locked when calling _mint or mintCountTo function to mint it to a contract that does not support ERC721 protocol

Mimo August 2022 contest

Mimo August 2022 contest

69.66 USDC • Code4rena • Sm4rty

#38

Rigor Protocol contest

Rigor Protocol contest

62.34 USDC • Code4rena • Sm4rty

#65

Jul '22

Axelar Network v2 contest

Axelar Network v2 contest

90.6 USDC • Code4rena • Sm4rty

#24

Golom contest

Golom contest

56.64 USDC • Code4rena • Sm4rty

#81

Yield Witch v2 contest

Yield Witch v2 contest

16.88 USDC • Code4rena • Sm4rty

#55

Swivel v3 contest

Swivel v3 contest

72.25 USDC • Code4rena • Sm4rty

#41

ENS contest

ENS contest

293.9 USDC • 1 total finding • Code4rena • Sm4rty

#26

medium

The `unwrapETH2LD` use `transferFrom` instead of `safeTransferFrom` to transfer ERC721 token

Fractional v2 contest

Fractional v2 contest

105.13 USDC • Code4rena • Sm4rty

#63

Juicebox V2 contest

Juicebox V2 contest

132.45 USDC • 1 total finding • Code4rena • Sm4rty

#40

medium

Use a safe transfer helper library for ERC20 transfers

Jun '22

Putty contest

Putty contest

56.36 USDC • 1 total finding • Code4rena • Sm4rty

#71

medium

Putty position tokens may be minted to non ERC721 receivers

Canto v2 contest

Canto v2 contest

64.9 USDC • Code4rena • Sm4rty

#29

Yieldy contest

Yieldy contest

79.85 USDC • Code4rena • Sm4rty

#54

Badger-Vested-Aura contest

Badger-Vested-Aura contest

51.26 USDC • Code4rena • Sm4rty

#35

Infinity NFT Marketplace contest

Infinity NFT Marketplace contest

48.98 USDC • Code4rena • Sm4rty

#70

Notional x Index Coop

Notional x Index Coop

135.59 USDC • Code4rena • Sm4rty

#34

May '22

Backd Tokenomics contest

Backd Tokenomics contest

171.81 USDC • Code4rena • Sm4rty

#26