When user increase his vouch, he also receive reward while fee distributing into previous vouches

NativeMetaTransaction.sol :: executeMetaTransaction() failed txs are open to replay attacks.

Platform fees withdrawal will sweep oracle agents earned fees

Users can list assets with price < 1 ERC20 (ETH, WETH), leading to potential DoS vulnerability.

Update state requests or Purchase requests occurring at the end of the phase will not process

BuyerAgent Batch Purchase Failure Due to Asset Transfer or Approval Revocation

Boost creator could not draw raffle due access restriction

Anyone could deprive winner of a prize or break unlock prize if raffile has been canceled

Malicious User can call `lockOnBehalf` repeatedly extend a users `unlockTime`, removing their ability to withdraw previously locked tokens

Invalid validation allows users to unlock early

Players can gain more NFTs benefiting from that past remainder in subsequent locks

Attacker can frontrun to prevent vaults from being removed from the dNFT owner's position

User could DOS auction

Holders array can be manipulated by transferring or burning with amount 0, stealing rewards or bricking certain functions

Withdrawal from NFTs can be temporarily blocked

Distribution can be bricked, and double claims by a few holders are possible when owner calls `LiquidInfrastructureERC20::setDistributableERC20s`

Non-transferable `GameItems` can be transferred with `GameItems::safeBatchTransferFrom(...)`

Minter / Staker / Spender roles can never be revoked`..,

Burner role can not be revoked

DoS in `MergingPool::claimRewards` function and potential DoS in `RankedBattle::claimNRN` function if called after a significant amount of rounds passed.

All claimed rewards will be lost for the users using the account abstraction wallet

Due to no access control on `DistributionV2::_authorizeUpgrade()` anyone can change the implementation contract and can destroy the main Proxy contract.

Missing access control on UTB:receiveFromBridge allows UTB swaps to be executed without spending bridge fees while bypassing fee/swap instruction signature verification

Attack to make ````CurveSubject```` to be a ````HoneyPot````

Unrestricted claiming of fees due to missing balance updates in `FeeSplitter`

Unauthorized Access to setCurves Function

Protocol and referral fee would be permanently stuck in the Curves contract when selling a token

onBalanceChange causes previously unclaimed rewards to be cleared

Curves::_buyCurvesToken(), Excess of Eth received is not refunded back to the user.

Withdrawing with amount = 0 will forcefully set name and symbol to default and disable some functions for token subject

If a user sets their curve token symbol as the default one plus the next token counter instance it will render the whole default naming functionality obsolete

Looping over unbounded `pendingStakes` array can lead to permanent DoS and frozen funds

Fees are hardcoded to 3000 in ExactInputSingleParams

Removal of approved token from token manager can lead to unintended liquidation of vaults

Users with Negligible TST Holdings Might Not Receive Their Share of EUROs Fees

Incorrect amounts of ETH are transferred to the DAO treasury in `ERC20TokenEmitter::buyToken()`, causing a value leak in every transaction

`encodedData` argument of `hashStruct` is not calculated perfectly for EIP712 singed messages in `CultureIndex.sol`

Incorrect update of the founders list, some previous founders did not removed

Attacker can drain all ETH from AuctionDemo when block.timestamp == auctionEndTime

Attacker can reenter to mint all the collection supply

Adversary can block `claimAuction()` due to push-strategy to transfer assets to multiple bidders

Auction payout goes to AuctionDemo contract owner, not the token owner

Soft Restricted Staker Role can withdraw stUSDe for USDe

Lenders can escape the blacklisting of their accounts because they can move their MarketTokens to different accounts and gain the WithdrawOnly Role on any account they want

Borrower has no way to update `maxTotalSupply` of `market` or close market.

Borrower can drain all funds of a sanctioned lender

All tokens can be stolen from `VirtualAccount` due to missing access modifier

Users Lose Funds and Market Functionality Breaks When Market Reachs 65k Id

Division before multiplication results in lower `dittoMatchedShares` distributed to users

Loss of precision in `twapPriceInEther` due to division before multiplication

Unlimited Approval Risk in BridgeSteth Contract

Incorrect function call in LybraRETHVault's getAssetPrice

MEV bots can win all the auctions when `Auction` is paused

`pause/unpause` functionnalities not implemented in many pausable contracts

Chainlink's latestRoundData might return stale results

No check if Arbitrum/Optimism L2 sequencer is down in Chainlink feeds

The `royaltyRecipient` could not be prepare to receive ether, making the `sell` to fail

Fee mistakable could be transfer to zero-address

Protocol fees can be withdrawn multiple times in `Erc20Quest`

Bad implementation in minter access control for `RabbitHoleReceipt` and `RabbitHoleTickets` contracts

Possible scenario for Signature Replay Attack