https://sherlock-files.ams3.digitaloceanspaces.com/profile_images/defaults/default_avatar_7.png

StraawHaat

Security Researcher

Contact Me

High

4

Total

Medium

2

Total

$253.00

Total Earnings

#1603 All Time

4x

Payouts

regular

1x

Top 25

regular

2x

Top 50

All

Sherlock

Aug '24

Cork Protocol

Cork Protocol

28.08 USDC • 1 total finding • Sherlock • StraawHaat

#16

high

Lack of Slippage Protection for Reserve during swaps

Jul '24

MakerDAO Endgame

MakerDAO Endgame

104.87 USDC • Sherlock • StraawHaat

#99

MagicSea - the native DEX on the IotaEVM

MagicSea - the native DEX on the IotaEVM

0.08 USDC • 1 total finding • Sherlock • StraawHaat

#64

medium

A malicious user can manipulate the pool using a weird token similar to `cUSDCv3`

Velocimeter

Velocimeter

120.30 USDC • 4 total findings • Sherlock • StraawHaat

#42

high

The `_exerciseVe()` and `_exerciseLp()` functions must have an additional slippage protection for `lpAmount()`

high

Claimable gauge funds are lost when the Gauge is Paused or Killed

high

DOS attack by delegating many tokens

medium

The first liquidity provider can execute a Denial of Service (DoS) attack on a stable liquidity pool