infosec_us_team
Security Researcher
Full-stack whitehats. Reached ~#100 in @intigriti (web2) and #29 in @Immunefi (web3)
High
24
Total
Medium
12
Total
$175.14K
Total Earnings
#56 All Time
5x
Payouts
3x
1st Places
3x
Top 10
4x
Top 25
All
Code4rena
Cantina
Immunefi
Jul '24
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
medium
Finding not yet public.
medium
Finding not yet public.
medium
Finding not yet public.
Apr '24
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
medium
Finding not yet public.
medium
Finding not yet public.
medium
Finding not yet public.
low
Finding not yet public.
Jan '24
high
Finding not yet public.
medium
Finding not yet public.
medium
Finding not yet public.
medium
Finding not yet public.
Nov '23
low
Finding not yet public.
low
Finding not yet public.
low
Finding not yet public.
Jul '22
high
Steal NFTs from a Vault, and ETH + Fractional tokens from users.
high
Malicious Users Can Exploit Residual Allowance To Steal Assets
medium
A VAULT OWNER CAN FRONTRUN A PLUGIN CALL AND CHANGE ITS IMPLEMENTATION
medium
`fallback()` function can bypass permission/auth checks imposed in `execute()`
medium
Delegate call in `Vault#_execute` can alter Vault's ownership