VaultCore::depositLv and previewLvDeposit functions will not work as expected due to incorrect implementation of Modifier

`PhiFactory:claim` Potentially Causing Loss of Funds If `mintFee` Changed Beforehand

Refunds sent to incorrect addresses in certain cases

validation to liquidation should include Liquidation fees as they are liable from customers

Pause and unpause functions are inaccessible

Discrepancy between nfts minted, price of nft when a generation changes & position of `_incrementGeneration()` inside `_mintInternal()` & `_mintNewEntity()`

Single plot can be occupied by multiple renters

H-2: VouchFacet::claimTokens lacks to update the state after operation causes caller to claim token much more than they should.

Non-Admins can able to Add/Modify an existing Staking Position without any owner or allowance rights.

Improper Access Control of addToPosition() allows anyone to increase the position of any existing lsNFT

Claimable rewards are permanently locked in Voter.sol when `killGaugeTotally()` is called

Due to the use of `msg.value` in for loop, anyone can drain all the funds from the `THORChain_Router` contract

`updateIRMParams` does not call `applyInterestForToken` before updating `irmParams` which leads to incorrect calculation of interest rate for subsequent trades.

StakingRewardManager::topUp() implementation is buggy

CouncilMember::burn() function is incorrectly implemented

Chainlink address for StableOracleWBTC is wrong

Minting and Burning are exposed as public function in USSD contract, there is no restriction

removeCollateral function in USSD is risky as it does not check of index to be with in valid range.

FootiumEscrow contract's transferERC20 function is not checking the status of the transfer.