Payouts
Top 10
Top 25
Top 50
All
Sherlock
Code4rena
Cantina
CodeHawks
Mar '25
Sep '24
medium
medium
medium
Aug '24
high
Incorrect set up and logic of `referralInfoMap` in `SystemConfig::updateReferrerInfo` function
high
Taker of bid offer will loss assets without any benefit if he calls the DeliveryPlace::settleAskMaker() for partial settlement.
high
`DeliveryPlace::settleAskTaker` Has Incorrect Access Control
high
Formulaic Error Rounds Down Causing Total Loss Of Funds For Bid Takers During Abort
high
Malicious user can drain protocol by bypassing `ASK` offer abortion validation in `Turbo` mode
high
The `DeliveryPlace::settleAskTaker()` function mistakenly uses `makerInfo.tokenAddress` to update the `TokenBalanceType.PointToken` in the `userTokenBalanceMap` mapping, leading to a critical error.
high
[H-4] The function `PreMarkets::listOffer` charges an incorrect collateral amount, allowing users to manipulating collateral rates and drain the protocol's funds
high
listOffer maker can settle offer via settleAskMaker() in Turbo settle type.
medium
`WrappedNativeToken` Can Only Work in `NativeToken` Mode
low
`listOffer` Unsafely References Fungible Identifiers
low
PreMarkets - Unable to withdraw platform rewards
Jul '24
high
Number of entities in generation can surpass the 10k number
high
Incorrect Percentage Calculation in NukeFund and EntityForging when `taxCut` is Changed from Default Value
high
Wrong minting logic based on total token count across generations
medium
Forger Entities can forge more times than intended
medium
Pause and unpause functions are inaccessible
medium
NFTs mature too slowly under default settings.
medium
`Golden God` Tokens can be minted twice per generation
medium
TraitForgeNft: Generations without a golden god are possible
high
Inadequate Checking of `isIncreasing` when trader adjusts position size
high
`SettlementBranch._fillOrder` does not guarantee the collateral of a position is enough to pay the future liquidation fee.
high
Incorrect logic for checking isFillPriceValid
high
Market Disruption and Financial Loss Post-Liquidation
high
Wrong parameter passed in `TradingAccount::deductAccountMargin` function that results in excess margin withdrawal
medium
A malicious User can DOS all offchain orders making them unexecutable and leaving the protocol in an insolvent state. Also all offchain Trades can also be DOSed for honest parties that do not meet the fillorder requirements (no try and catch)
medium
Incorrect liquidatable checking for market order creation
medium
SEV 5: The getAccountMarginRequirementUsdAndUnrealizedPnlUsd function returns incorrect margin requirement values when a position is being changed
low
QA Report - 0xStalin - Low Severities
low
Functions calling `verifyReport` to verify offchain prices from chainlink will fail
low
Deleting CollateralTypes from the CollateralLiquidationPriority allows traders to be liquidated for free and getting back their full collateral as if they were not liquidated.
low
UpgradeBranch.sol does not use _disableInitializers()
low
Trading accounts can exceed the maximum number of allowed open positions.
low
Potential `EIP712` violation in multiple cases
low
Missing expiration check in `Data Streams` report validation allows the use of expired report data
medium
Not upadting `_totalAuctionTokenAllocation` when removing last auction config at cooldown leads to wrong accounting of `_totalAuctionTokenAllocation` and permanent lock of auction tokens
medium
Changes to vesting period is not handled inside `_getVestingRate`
low
Auction tokens cannot be recovered for the first ever spice auction
low
TempleGold tokens cannot be recovered when a `DaiGoldAuction` ends with 0 bids
low
Incorrect templeGold minting due to unresolved accumulation in `TempleGold::setVestingFactor`