`ReputationMarket::buyVotes` incorrectly includes protocol and donation fees when tallying market funds, causing DoS or stolen funds

`ReputationMarket::sellVotes` is missing slippage protection

Attacker can permanently lock users' tokens by calling `OptionTokenV4::exerciseLp` on their behalf

Attacker can permanently block deposits in `VotingEscrow` due to lack of 0 amount check in `VotingEscrow::split`

`RewardsDistributorV2` incorrect reward calculation due to caching total `ve_supply`

Inadequate slippage protection for `OptionTokenV4::exerciseVe` and `OptionTokenV4::exerciseLp`

Pausing and unpausing gauges will cause the gauge to lose all claimable rewards

First Liquidity Provider can DoS stable pair pools by exploiting rounding error

`LenderCommitGroup_Smart::acceptFundsForAcceptBid` will not revert if insufficient collateral is provided

`LenderCommitmentGroup_Smart::liquidateDefaultedLoanWithIncentive` does not send collateral to the caller

Multiple contracts incompatible with USDT

`LenderCommitmentGroup` pools will have incorrect exchange rate when fee-on-transfer tokens are used

Fees owed to collection referrer are sent to mint referrer instead

Excess ETH can be stolen since it is refunded from the incorrect contract

Attacker can front-run `acknowledgeEdge` and `unacknowledgeEdge`, causing DoS