Security Researcher
High
Total
Medium
Total Earnings
#809 All Time
Payouts
1st Places
Top 10
Top 25
All
Sherlock
Sep '24
4,500 USDC • 1 total finding • Sherlock • haxagon
high
Address aliasing will not be applied if a contract calls `approveAndCall` directly on the portal allowing for impersonation attacks on L2
454.17 USDC • 4 total findings • Sherlock • haxagon
#8
Missing functionality to clawback the incentives
medium
FoT tokens will not work with budget
Rebasing tokens will be stuck in the ERC20 Incentive on negative rebase
Weak randomness in drawing raffle
Jul '24
964.34 USDC • Sherlock • haxatron
#59
Mar '24
2,203.02 USDC • 1 total finding • Sherlock • haxatron
#6
Anchor state registry can be corrupted which will prevent game creation of the same type.
Jan '24
524.45 USDC • 1 total finding • Sherlock • haxatron
High risk quorum bypass by appending extra bytes into the calldata.