The userGaugeProfitIndex is not set correctly, allowing an attacker to receive rewards without waiting

Zeta Observer nodes are not listening to `internal TXs`, which makes Smart Contract Wallets users' funds locked when making `Omnichain calls`.

Lagging median gas price when the set of observers changes

Funds from reverted transaction may be lost/locked

User not refunded for failed Zeta gas payment in cross chain transaction

PayGasFeeInZetaAndUpdateCctx() is prone to slippage, causing sender overpays the revert gas and lose returned funds

Limited Voting Options Allow Ballot Creation Spam

Can't pause or remove a minter

Challengers and bidders can collude together to restrict the minting of position owner

Staking, unstaking and rebalanceToWeight can be sandwiched (Mainly rETH deposit )

In de-peg scenario, forcing full exit from every derivative & immediately re-entering can cause big losses for depositors

VRFNFTRandomDraw admin can prevent created or started raffle from taking place

griefing / blocking / delaying users to withdraw

Manager can get around min reserves check, draining all funds from Collateral.sol

Assets may be lost when calling unprotected `AutoPxGlp::compound` function

Hacked owner or malicious owner can immediately steal all assets on the platform