Fee in trade is paid by the seller not the buyer

Rounding errors can lead to the buyer recieving outcome tokens without paying collateral

Donations to `Distributor` with arbitrary `quoteToken` can be used to drain all quote rewards from distributor

Total reward shares for token can reach zero after unlocking, causing `GTELaunchpadV2Pair` to be bricked

`GTELaunchpadV2Pair` permits minting LP tokens for free when there are non-zero accumulated launch pad fees

Protocol fails to charge fees from swap amount

Attacker can drain funds from `GTELaunchPadV2Pair` using `swap`

`LaunchToken` transfers cause staking rewards to be lost to the `LaunchPad`

Double taxation in removeValueSingle due to incorrect tax application sequence

Zero fee calculation due to uninitialized removedBalance variable in removeValueSingle

Missing owner acceptance function will prevent ownership transfer completion

The user can send tokens to any address by using two bridge transfers, even when transfers are restricted.

Arithmetic operation on the userTokenAmount and refundCurrencyAmount/additionalCurrencyAmount is incorrect

Incorrect Total Assets Calculation in _harvestAndReport Leading to Share Value Manipulation and Irredeemable Assets

not adding `claimable` balance to the total assets in `_harvestAndReport` can cause losses.

Inflated `totalAssets` in `StrategyMainnet`, `StrategyArb`, and `StrategyOp` Contracts

Old router retains token allowance after update

Removed account still has access to the profile, as `EthosProfile::profileIdByAddress` mapping is not deleted when deleting an account.

Contract cannot receive native token

Royalties paid on L2 for ERC1155 tokens cannot be claimed

Incorrect index of checkpoint

TokenManager - Unlimited withdraw

Taker of bid offer will loss assets without any benefit if he calls the DeliveryPlace::settleAskMaker() for partial settlement.

Native token withdrawal fails until manually approved

`DeliveryPlace::settleAskTaker` Has Incorrect Access Control

Formulaic Error Rounds Down Causing Total Loss Of Funds For Bid Takers During Abort

The `DeliveryPlace::settleAskTaker()` function mistakenly uses `makerInfo.tokenAddress` to update the `TokenBalanceType.PointToken` in the `userTokenBalanceMap` mapping, leading to a critical error.

Fund Withdrawal Flaw in preMarket Allows Users to Avoid Settlement Obligations

`listOffer` Unsafely References Fungible Identifiers

3 `OfferStatus` are never used, and code seems to have contradicting intentions

Users won't liquidate positions because the logic used to calculate the liquidator's profit is incorrect

Multicall does not work as intended