9x
Payouts
1x
3rd Places
3x
Top 10
6x
Top 25
All
Sherlock
Code4rena
Cantina
CodeHawks
Jul '25
Jun '25
Mar '25
Feb '25
high
Delegation Boost Not Usable by Delegatees
high
ZENO Token Redemption Returns Negligible USDC Amount Compared to Purchase Price
high
Incorrect decimal handling in `Auction::buy()` leads to massive overpayment for ZENO tokens
high
RAACNFT mint function receives funds to address(this) but has no way of withdrawing them
high
`BaseGauge` users can claim rewards without staking
high
Ineffective Time-Weighted Average Implementation in Fee Distribution
medium
[H-2] Lack of Emergency Pause in `BaseGauge::stake` and `BaseGauge::withdraw
medium
Timelock Controller Retains Canceled Proposals, Enabling Unauthorized Execution and severe Governance Voting manipulation.
medium
Incorrect DebtToken totalSupply Scaling Breaks Interest Rate Calculations
medium
Using balanceOf Instead of Voting Power
medium
Owner Can Change Vote Results After Voting Ends by Updating Quorum Numbers for New proposals
medium
Workingsupply would always be overwritten in boostcontroller.sol impacting reward calculations
medium
Emergency revoke in RAACReleaseOrchestrator will freeze revoked RAAC tokens in orchestrator
medium
Time-skew Attack in RWAGauge Weight Calculations Through Precision Gaming
medium
RAACToken burns less tokens than expected when feeCollector is unset
medium
Incorrect boost calculation in `BoostController#_calculateBoost()` can be exploited to gain an unfair advantage in reward distribution
medium
Boost Delegation Doesn’t Work and Leaves Boost Power Unused
medium
closeLiquidation within LendingPool does not allow partial repayments, which can cause massive losses to users within edge case
medium
Emission rate can be manipulated
low
Missing TokenURI Function in RAACNFT contract Makes All NFTs Look the Same and Unusable
Jan '25
high
Finding not yet public.
medium
Finding not yet public.
