Unauthorized Reallocation in `NudgeCampaign::handleReallocation` and Reward Disruption Vulnerability in `NudgeCampaign::invalidateParticipations`

No Enforcement of Pause Functionality in SuperPool contract

DOS on reallocate function in SuperPool

No one will liquidate the position if `liquidation discount` is less than `liquidation fee`

Incorrect set up and logic of `referralInfoMap` in `SystemConfig::updateReferrerInfo` function

Taker of bid offer will loss assets without any benefit if he calls the DeliveryPlace::settleAskMaker() for partial settlement.

`DeliveryPlace::settleAskTaker` Has Incorrect Access Control

Formulaic Error Rounds Down Causing Total Loss Of Funds For Bid Takers During Abort

Malicious user can drain protocol by bypassing `ASK` offer abortion validation in `Turbo` mode

The `DeliveryPlace::settleAskTaker()` function mistakenly uses `makerInfo.tokenAddress` to update the `TokenBalanceType.PointToken` in the `userTokenBalanceMap` mapping, leading to a critical error.

[H-4] The function `PreMarkets::listOffer` charges an incorrect collateral amount, allowing users to manipulating collateral rates and drain the protocol's funds

listOffer maker can settle offer via settleAskMaker() in Turbo settle type.

`WrappedNativeToken` Can Only Work in `NativeToken` Mode

`listOffer` Unsafely References Fungible Identifiers

PreMarkets - Unable to withdraw platform rewards

Number of entities in generation can surpass the 10k number

Incorrect Percentage Calculation in NukeFund and EntityForging when `taxCut` is Changed from Default Value

Wrong minting logic based on total token count across generations

Forger Entities can forge more times than intended

Pause and unpause functions are inaccessible

NFTs mature too slowly under default settings.

`Golden God` Tokens can be minted twice per generation

TraitForgeNft: Generations without a golden god are possible

Inadequate Checking of `isIncreasing` when trader adjusts position size

`SettlementBranch._fillOrder` does not guarantee the collateral of a position is enough to pay the future liquidation fee.

Incorrect logic for checking isFillPriceValid

Market Disruption and Financial Loss Post-Liquidation

Wrong parameter passed in `TradingAccount::deductAccountMargin` function that results in excess margin withdrawal

A malicious User can DOS all offchain orders making them unexecutable and leaving the protocol in an insolvent state. Also all offchain Trades can also be DOSed for honest parties that do not meet the fillorder requirements (no try and catch)

Incorrect liquidatable checking for market order creation

SEV 5: The getAccountMarginRequirementUsdAndUnrealizedPnlUsd function returns incorrect margin requirement values when a position is being changed

QA Report - 0xStalin - Low Severities

Functions calling `verifyReport` to verify offchain prices from chainlink will fail

Deleting CollateralTypes from the CollateralLiquidationPriority allows traders to be liquidated for free and getting back their full collateral as if they were not liquidated.

UpgradeBranch.sol does not use _disableInitializers()

Trading accounts can exceed the maximum number of allowed open positions.

Potential `EIP712` violation in multiple cases

Missing expiration check in `Data Streams` report validation allows the use of expired report data

Not upadting `_totalAuctionTokenAllocation` when removing last auction config at cooldown leads to wrong accounting of `_totalAuctionTokenAllocation` and permanent lock of auction tokens

Changes to vesting period is not handled inside `_getVestingRate`

Auction tokens cannot be recovered for the first ever spice auction

TempleGold tokens cannot be recovered when a `DaiGoldAuction` ends with 0 bids

Incorrect templeGold minting due to unresolved accumulation in `TempleGold::setVestingFactor`