Compromised `transferEOAs` and `feeController` addresses can ransom attack all owner addresses

Rebasing tokens will leak value when interacting with the `Vault` contract

Title: Yield can be unfairly divided because of MEV/Just-in-time stablecoin deposits

`processYield()` and `distributeYield()` may run out of gas and revert due to long list of extra rewards/yields

SpeedBumpPriceGate: Excess ether did not return to the user

Malicious token reward could disable withdrawals

safeTransferFrom is recommended instead of transfer (1)

amount requires to be updated to contract balance increase (1)

ERC20 tokens with different decimals than 18 leads to loss of funds

Centralisation Risk: Owner may abuse the tax rate to claim 99.9% of pools

Use of `.send()` May Revert if The Recipient's Fallback Function Consumes More Than 2300 Gas

Critical variables shouldn't be changed after they are set

`COMP` Distributions Can Be Manipulated And Duplicated Across Any Number Of Accounts

`call()` should be used instead of `transfer()` on an `address payable`

[WP-H1] A malicious early user/attacker can manipulate the vault's pricePerShare to take an unfair share of future users' deposits

`RewardsController` Emission Manager Can Authorize Users to Claim on Behalf of the `AaveV3YieldSource` Contract and Siphon Yield

Duplicate NFTs Can Be Minted if `payableToken` Has a Callback Attached to it

Splitter: Anyone can call incrementWindow to steal the tokens in the contract

CoreCollection can be reinitialized

ERC20 transferFrom return values not checked

Centralisation RIsk: Owner Of `RoyaltyVault` Can Take All Funds

`RoyaltyVault.sol` is Not Equipped to Handle On-Chain Royalties From Secondary Sales

Ineffective Handling of FoT or Rebasing Tokens

Users Can Bypass Emergency Restrictions on updateUserRewardState()

Withdrawal delay can be circumvented

Market expiry behaviour differs in implementation and documentation

NFT owner can create multiple auctions

An offer made after auction end can be stolen by an auction winner

Primary seller can avoid paying the primary fee

Fees Are Incorrectly Charged on Unfinalized NFT Sales

There is no Support For The Trading of Cryptopunks

`buyFromPrivateSaleFor()` Will Fail if The Buyer Has Insufficient Balance Due to an Open Offer on The Same NFT

`_getCreatorPaymentInfo()` is Not Equipped to Handle Reverts on an Unbounded `_recipients` Array

`adminAccountMigration()` Does Not Update `buyPrice.seller`

Gas Pricing Can Be Used To Extort Funds From Users of SChain Owner

denial fo service

liquidation is vulnerable to sandwich attacks

Liquidations can be run on the bogus Oracle prices

Users Can Frontrun Calls to `updateRewardsMetadata()` And Claim Tokens Twice

Send ether with call instead of transfer.

SafeERC20.sol is imported but not used in the transferBribes() function

Shelter `claimed` mapping is set with `_to` address and not `msg.sender`

Masterchef: Improper handling of deposit fee

`ConvexStakingWrapper.exitShelter()` Will Lock LP Tokens, Preventing Users From Withdrawing

`ConvexStakingWrapper._calcRewardIntegral()` Can Be Manipulated To Steal Tokens From Other Pools

[WP-H8] `ConvexStakingWrapper.sol#_calcRewardIntegral` Wrong implementation can disrupt rewards calculation and distribution

[WP-H13] `MasterChef.sol` Users won't be able to receive the `concur` rewards

[WP-H14] `ConvexStakingWrapper`, `StakingRewards` Wrong implementation will send `concur` rewards to the wrong receiver

Wrong reward token calculation in MasterChef contract

Repeated Calls to Shelter.withdraw Can Drain All Funds in Shelter

USDMPegRecovery Risk of fund locked, due to discrepancy between curveLP token value against internal contract math

`MasterChef.updatePool()` Fails To Update Reward Variables If `block.number >= endBlock`

`ConvexStakingWrapper.enterShelter()` May Erroneously Overwrite `amountInShelter` Leading To Locked Tokens

Users Will Lose Rewards If The Shelter Mechanism Is Enacted Before A Recent Checkpoint

Users Will Lose Concur Rewards If The Shelter Mechanism Is Enacted On A Pool

If The Staking Token Exists In Both `StakingRewards.sol` And `ConvexStakingWrapper.sol` Then It Will Be Possible To Continue Claiming Concur Rewards After The Shelter Has Been Activated

Donated Tokens Cannot Be Recovered If A Shelter Is Deactivated

[ConcurRewardPool] Possible reentrancy when claiming rewards

`USDMPegRecovery.provide()` Will Fail If There Is An Excess Of `usdm` Tokens

Malicious Users Can Duplicate Protocol Earned Yield By Transferring `wCVX` Tokens To Another Account

Malicious Users Can Transfer Vault Collateral To Other Accounts To Extract Additional Yield From The Protocol

Oracle data feed is insufficiently validated.

DAO proposals can be executed by anyone due to vulnerable TimelockController

DOS by Frontrunning NoteERC20 `initialize()` Function

Potential DOS in Contracts Inheriting `UUPSUpgradeable.sol`

Treasury cannot claim COMP tokens & COMP tokens are stuck

A Malicious Treasury Manager Can Burn Treasury Tokens By Setting `makerFee` To The Amount The Maker Receives

`_validateOrder` Does Not Allow Anyone To Be A Taker Of An Off-Chain Order

`getVotingPower` Is Not Equipped To Handle On-Chain Voting

Usage of deprecated ChainLink API in `EIP1271Wallet`

`sNOTE` Holders Are Not Incetivized To Vote On Proposals To Call `extractTokensForCollateralShortfall`

Malicious Market Creators Can Steal Tokens From Unsuspecting Approved Reference Accounts

[WP-H33] `IndexTemplate.sol` Wrong implementation allows lp of the index pool to resume a locked `PayingOut` pool and escape the responsibility for the compensation

System Debt Is Not Handled When Insurance Pools Become Insolvent

deposit() function is open to reentrancy attacks

Vaults with non-UST underlying asset vulnerable to flash loan attack on curve pool

A Single Malicious Trusted Account Can Takeover Parent Contract

`investedAssets()` Does Not Take Into Consideration The Performance Fee Charged On Strategy Withdrawals

unsponsor, claimYield and withdraw might fail unexpectadly

`_safeMint` Will Fail Due To An Edge Case In Calculating `tokenId` Using The `_generateNewTokenId` Function

Anyone Can Arbitrarily Mint Synthetic Assets In `VaderPoolV2.mintSynth()`

Anyone Can Arbitrarily Mint Fungible Tokens In `VaderPoolV2.mintFungible()`

Incorrect Price Consultation Results

Newly Registered Assets Skew Consultation Results

Incorrect Accrual Of `sumNative` and `sumUSD` In Producing Consultation Results

`previousPrices` Is Never Updated Upon Syncing Token Price

`totalLiquidityWeight` Is Updated When Adding New Token Pairs Which Skews Price Data For `getVaderPrice` and `getUSDVPrice`

`VaderPoolV2` minting synths & fungibles can be frontrun

`USDV.sol` Mint and Burn Amounts Are Incorrect

Oracle doesn't calculate USDV/VADER price correctly

`BasePool.mint()` Is Callable By Anyone

`BasePool.swap()` Is Callable By Anyone

Lacking Validation Of Chainlink' Oracle Queries

Users Can Reset Bond Depositor's Vesting Period

A vault can be locked from MarketplaceZap and StakingZap

transfer return value is ignored

`buyAndSwap1155WETH` Does Not Work As Intended

Dishonest Stakers Can Siphon Rewards From `xToken` Holders Through The `deposit` Function In `NFTXInventoryStaking`

`xToken` Approvals Allow Spenders To Spend More Tokens

Aave's share tokens are rebasing breaking current strategy code

`PriceOracle` Does Not Filter Price Feed Outliers

Unable To Call `emergencyWithdraw` ETH in `NoYield` Contract

Malicious tickets can lead to the loss of all tokens

Continue claiming reqrds after numberOfEpochs are over

Backdated _startTimestamp can lead to loss of funds

Missing Check When Transferring Tokens Out For A Given Promotion

Dust Token Balances Cannot Be Claimed By An `admin` Account

`withdrawTo` Does Not Sync Before Checking A Position's Margin Requirements

Users Can Contribute To An Auction Without Directly Committing Collateral Tokens

`StabilizerNode` Will Mint An Incentive For Triggering An Auction Even If An Auction Exists Already

_notSameBlock() can be circumvented in bondToAccount()

`_calculateMaltRequiredForExit` Uses Spot Price To Calculate Malt Quantity In `exitEarly`

Frontrunning in UniswapHandler calls to UniswapV2Router

`addLiquidity` Does Not Reset Approval If Not All Tokens Were Added To Liquidity Pool

`_distributeRewards` Does Not Reset Approval If Not All Tokens Were Allocated

Malt Protocol Uses Stale Results From `MaltDataLab` Which Can Be Abused By Users

theft of system profit

Anyone Can Arbitrarily Mint Synthetic Assets In `VaderPoolV2.mintSynth()`

Anyone Can Arbitrarily Mint Fungible Tokens In `VaderPoolV2.mintFungible()`

Incorrect Price Consultation Results

Newly Registered Assets Skew Consultation Results

Incorrect Accrual Of `sumNative` and `sumUSD` In Producing Consultation Results

`previousPrices` Is Never Updated Upon Syncing Token Price

`totalLiquidityWeight` Is Updated When Adding New Token Pairs Which Skews Price Data For `getVaderPrice` and `getUSDVPrice`

`VaderPoolV2` minting synths & fungibles can be frontrun

`USDV.sol` Mint and Burn Amounts Are Incorrect

Oracle doesn't calculate USDV/VADER price correctly

`BasePool.mint()` Is Callable By Anyone

`BasePool.swap()` Is Callable By Anyone

Lacking Validation Of Chainlink' Oracle Queries

Users Can Reset Bond Depositor's Vesting Period

Anyone Can Arbitrarily Call `FSDVesting.updateVestedTokens()`

FSDVesting: Claiming tributes should call FSD token's corresponding functions

`TributeAccrual.availableTribute()` & `TributeAccrual.availableGovernanceTribute()` Distributes Tributes Unfairly

Unable to claim vesting due to unbounded timelock loop

Overwrite benRevocable

WrappedIbbtcEth contract will use stalled price for mint/burn if updatePricePerShare wasn't run properly

registerAsset() can overwrite _assetClass value

`treasuryShare` is Overwritten in `FeePoolV0._shareMochi()`

Tokens Can Be Stolen By Frontrunning `VestedRewardPool.vest()` and `VestedRewardPool.lock()`

Improper Validation Of `create2` Return Value

`MochiTreasuryV0.withdrawLock()` Is Callable When Locking Has Been Toggled

`MochiTreasuryV0.sol` Is Unusable In Its Current State

Unchecked ERC20 transfer calls

Chainlink's `latestRoundData` might return stale or incorrect results

Miners Can Re-Roll the VRF Output to Game the Protocol

`PrizePool.awardExternalERC721()` Erroneously Emits Events

Unsafe handling of underlying tokens

Admin is a single-point of failure without any mitigations

Use of deprecated Chainlink API

DAO proposals can be executed by anyone due to vulnerable TimelockController

DOS by Frontrunning NoteERC20 `initialize()` Function

Potential DOS in Contracts Inheriting `UUPSUpgradeable.sol`

Treasury cannot claim COMP tokens & COMP tokens are stuck

A Malicious Treasury Manager Can Burn Treasury Tokens By Setting `makerFee` To The Amount The Maker Receives

`_validateOrder` Does Not Allow Anyone To Be A Taker Of An Off-Chain Order

`getVotingPower` Is Not Equipped To Handle On-Chain Voting

Usage of deprecated ChainLink API in `EIP1271Wallet`

`sNOTE` Holders Are Not Incetivized To Vote On Proposals To Call `extractTokensForCollateralShortfall`

Uninitialized Variable `marketWhitelist` in `RCTreasury.sol`