https://sherlock-files.ams3.digitaloceanspaces.com/profile_images/defaults/default_avatar_8.png

Waydou

Security Researcher

Contact Me

High

10

Total

Medium

6

Total

$637.00

Total Earnings

#1339 All Time

11x

Payouts

gold

1x

1st Places

bronze

1x

3rd Places

regular

3x

Top 10

All

Sherlock

Mar '25

Symmio, Staking and Vesting

Symmio, Staking and Vesting

0.00 USDC • 1 total finding • Sherlock • Waydou

#18

medium

Permanent Reward Token Lockup Through Malicious Reward Period Extension Attack

Feb '25

Rova

Rova

0.04 USDC • 1 total finding • Sherlock • Waydou

bronze

medium

Incorrect User Token Update in updateParticipation Function

Jan '25

Plaza Finance

Plaza Finance

52.16 USDC • 3 total findings • Sherlock • Waydou

#49

high

Market Rate Check Inconsistency Between Documentation and Implementation for LevETH Redemption

medium

Auction Griefing via Blacklisted Token Transfers in removeExcessBids

medium

Auction DOS Through Pool Sale Limit Manipulation

Aave v3.3

Aave v3.3

183.41 USDC • Sherlock • Waydou

#65

Dec '24

Tally ARB Staker

Tally ARB Staker

0.06 USDC • Sherlock • Waydou

#46

Oku's New Order Types Contract Contest

Oku's New Order Types Contract Contest

0.01 OP • 1 total finding • Sherlock • Waydou

#65

medium

Incorrect Stale Data Validation in `currentValue` Function

Autonomint Colored Dollar V1

Autonomint Colored Dollar V1

184.78 OP • 5 total findings • Sherlock • Waydou

#16

high

Lack of Input Validation in `redeemUSDT` Function

high

Inability to Withdraw Interest from `totalInterestFromLiquidation`

high

Incorrect `State` Update for `from` Address in `transferFrom`

high

Missing Update to `omnichain.totalAvailableLiquidationAmount` in `withdrawUser`

high

Vulnerability to Replay Attack Due to Improper Signature Validation

Nov '24

Ethos Network Financial Contracts

Ethos Network Financial Contracts

0.38 USDC • 1 total finding • Sherlock • Waydou

#33

high

Inconsistent MarketFunds Tracking in `ReputationMarket::buyVotes` Leads to Potential Break of the protocol

vVv Launchpad - Investments & Token distribution

vVv Launchpad - Investments & Token distribution

94.59 USDC • 1 total finding • Sherlock • Waydou

gold

high

Frontrunning Vulnerability in claim Function

Aug '24

Velar Artha PerpDEX

Velar Artha PerpDEX

116.00 USDC • 1 total finding • Sherlock • Waydou

#7

medium

Use of `tx.origin` Allows Malicious Contracts to Execute Unauthorized Actions

Winnables Raffles

Winnables Raffles

5.62 USDC • 2 total findings • Sherlock • Waydou

#30

high

Irreversible State Change Due to Incorrect Parameters in Cross-Chain Winner Propagation

high

Potential for Locked ETH in the `WinnablesTicketManager`