Payouts
1st Places
2nd Places
3rd Places
All
Sherlock
Code4rena
Cantina
Dec '24
Jul '24
Apr '24
high
Bypass minting fee in mintBatch function
high
Collection referrer share is sent to the referrer instead of the collection referrer
medium
Excess minting fee is not refunded to the user
medium
mintBatch function doesn't work as expected
medium
TitlesGraph contract does not strictly follow EIP-712 standard
Mar '24
medium
TWO DIFFERENT TRANSACTIONS CAN RESULT IN THE SAME `txnHash` VALUE THUS BREAKING THE APPROVAL PROCESS OF TRANSACTION MINTING
medium
All bridged funds will be lost for the users using the account abstraction wallet
medium
The `BURNER` cannot burn tokens from accounts not KYC verified due to the check in `_beforeTokenTransfer`.
high
high
medium
medium
Jan '24
Dec '23
high
Incorrect amounts of ETH are transferred to the DAO treasury in `ERC20TokenEmitter::buyToken()`, causing a value leak in every transaction
medium
Once EntropyRateBps is set too high, can lead to denial-of-service (DoS) due to an invalid ETH amount
medium
The quorumVotes can be bypassed
medium
CultureIndex.sol#dropTopVotedPiece() - Malicious user can manipulate topVotedPiece to DoS the whole CultureIndex and AuctionHouse
Nov '23
691.74 USDC • 2 total findings • Code4rena • ast3ros
#8
Oct '23
high
Lenders can escape the blacklisting of their accounts because they can move their MarketTokens to different accounts and gain the WithdrawOnly Role on any account they want
high
Borrower can drain all funds of a sanctioned lender
medium
`setAnnualInterestBips()` can be abused to keep a market's reserve ratio at 90%
Sep '23
high
Allocator Can Exceed maxVoiceCreditsPerAllocator Limit
medium
Incorrect Calculation in Voice Credit Allocation
medium
Lack of Support for Fee-on-Transfer Tokens
medium
Minimum Review Threshold Fails to Function Properly
medium
Funding During Distribution Can Skew Allocation Amounts
medium
User Registration Failure When useRegistryAnchor is Enabled
medium
TWO DIFFERENT TRANSACTIONS CAN RESULT IN THE SAME `txnHash` VALUE THUS BREAKING THE APPROVAL PROCESS OF TRANSACTION MINTING
medium
All bridged funds will be lost for the users using the account abstraction wallet
medium
The `BURNER` cannot burn tokens from accounts not KYC verified due to the check in `_beforeTokenTransfer`.
Aug '23
Jul '23
Jun '23
May '23
high
USSD can be minted or burned by anyone without authorization
high
The swap function is vulnerable to sandwich attacks due to lack of slippage control and deadline
high
When rebalancing and buying collateral, the DAI collateral is bought even though it should not
high
Incorrect DAIEthOracle and ethOracle addresses
high
Incorrect decimal of the DAI/ETH price feed
medium
Redeem function for DAI is not implemented
medium
rebalance function will revert if the DAI collateral amount is less than amountToBuyLeftUSD
medium
Returned values of Chainlink Oracle are not verified
Apr '23
Mar '23
high
[M-4] Incorrect update of ownerToRollOverQueueIndex index when rollover is already queued
high
[M-5] Deposit fee can be bypassed by user
high
[M-6] Rollover queue can be broken by user delisting executed rollover from queue
medium
[M-1] Treasury address could not be changed
medium
[M-2] Vault Factory ownership can be changed immediately and bypass timelock delay
medium
[M-3] Chainlink’s latestRoundData Might Return Stale Results
Feb '23
Jan '23
Dec '22