A Consensus signer can use his power to withdraw all the money in the vault

`DepositQueue::cancelDepositRequest` function modifies wrong deposit request index.

USDT missing return value, causing many function revert in `GatewaySend` contract.

Wrong logic implement in `_checkBoundariesAndRecord`, the function updates wrong rank for Tier 2 user

Incorrect calculation order of `assetsToDeposit` and `assetsToWithdraw` in `E4626::commit()` function causes users to withdraw incorrect amounts.

Unauthorized Reallocation in `NudgeCampaign::handleReallocation` and Reward Disruption Vulnerability in `NudgeCampaign::invalidateParticipations`

`repayFromWithdraw` is assigned wrong value in `Leverager::withdraw` function will cause `amountOut1` to be miscalculated or underflow error when subtracting `repayFromWithdraw`

Critical Economic Design Flaw in ZENO Zero-Coupon Bond Implementation Leads to Guaranteed User Losses

Fee Evasion via LP Token Transfer Resets Deposit Value

Loss of Fees for Router `UpliftOnlyExample` due to Division Rounding in Admin Fee Calculation, Causing Unfair Fee Distribution

Owner fee will be locked in `UpliftOnlyExample` contract due to incorrect recipient address in `UpliftOnlyExample::onAfterSwap`

Transferring deposit NFT doesn't check if the receiver exceeds the 100 deposit limit

Users are charged too much `exitFee` in `UpliftOnlyExample::onAfterRemoveLiquidity` function when `localData.lpTokenDepositValueChange > 0` and can cause underflow error if `lpTokenDepositValueChange` increase too much.

The ERC721 tokens transfered to buyOrder contract will be stuck in there.