Due to lack of access control in `notifyRewardAmount`, anyone can call this function with small values to disrupt the current reward rate

Lack of slippage protection

Malicious User can call `lockOnBehalf` repeatedly extend a users `unlockTime`, removing their ability to withdraw previously locked tokens

Missing disapproval check in `LockManager.sol::approveUSDPrice` allows simultaneous approval and disapproval of a price proposal

Lack of slippage protection can lead to significant loss of user funds

DOS of market operations with malicious offers

BathBuddy contract should implement methods to pause and unpause contract

Fee inclusivity calculations are inaccurate in RubiconMarket

Stuck ether when use function `stake` with empty `derivatives`(`derivativeCount` = 0)

Lack of deadline for uniswap AMM

Coding logic of the contract upgrading renders upgrading contracts impractical

NFTFloorOracle's asset and feeder structures can be corrupted

Yul `call` return value not checked

Solmate's ERC20 does not check for token contract's existence, which opens up possibility for a honeypot attack

Borrower/Lender excessive ETH not refunded and permanently locked in protocol

`_payoutToken[s]()` is not compatible with tokens with missing return value

The tier setting parameter are unsafely downcasted from type uint256 to type uint80 / uint48 / uint40 / uint16

Iterations over all tiers in recordMintBestAvailableTier can render system unusable

Yul `call` return value not checked

A "FrontRunning attack" can be made to the `initialize` function

`safeTransfer` function does not check for existence of ERC20 token contract

frxETHMinter: Non-conforming ERC20 tokens not recoverable

Solmate safetransfer and safetransferfrom doesnot check the codesize of the token address, which may lead to fund loss

[NAZ-M1] Chainlink's `latestRoundData` Might Return Stale Results

FraxlendPair#setTimeLock: Allows the owner to reset TIME_LOCK_ADDRESS

NFT of NFT collection or NFT drop collection can be locked when calling _mint or mintCountTo function to mint it to a contract that does not support ERC721 protocol

It is possible to create fake ERC1155 NameWrapper token for subdomain, which is not owned by NameWrapper