anchabadze

Security Researcher

Father and husband Ex-concert promoter Currently learning Web3 security

Contact Me

High

Total

Medium

Total

$265.00

Total Earnings

#1581 All Time

7x

Payouts

2x

Top 10

6x

Top 25

6x

Top 50

All

Sherlock

Code4rena

CodeHawks

Mar '25

Crestal Network

2.38 USDC • 2 total findings • Sherlock • anchabadze

#10

high

Arbitrary from parameter in transferFrom allows unauthorized token transfers

medium

Unlimited request assignment and lack of the mechanism to revoke worker permissions enables protocol-wide DoS attack via malicious worker

Symmio, Staking and Vesting

39.69 USDC • 1 total finding • Sherlock • anchabadze

#15

medium

Incorrect initializer modifier in Vesting contract prevents proper initialization

Feb '25

Yieldoor

29.53 USDC • 1 total finding • Sherlock • anchabadze

#21

high

Incorrect tick parameter in collectFees() function leads to loss of vesting position fees or possible complete protocol lockup

THORWallet

0.35 USDC • 1 total finding • Code4rena • anchabadze

high

MergeTgt has no handling if TGT_TO_EXCHANGE is exceeded during the exchange period

Liquidity Management

185.53 usdc • 3 total findings • CodeHawks • anchabadze

#25

high

Wrong refundExecutionFee in _handleReturn

medium

Wrong index causes last depositor to always get execution fee refund if cancelFlow is called by keeper to cancel a withdrawal

medium

Functions that rely on chainlink prices cannot be queried on avalanche due to sequencer uptime check.

Jan '25

IQ AI

3.58 USDC • 1 total finding • Code4rena • anchabadze

#16

medium

Ineffective proposal threshold validation allows setting arbitrary high values

Dec '24

SecondSwap

4.14 USDC • 1 total finding • Code4rena • anchabadze

#56

high

`SecondSwap_Marketplace` vesting listing order affects how much the vesting buyers can claim at a given step