Denial of Service (DoS) and Gas Grief Attack in Token Redemption Process

Inefficient Token Transfer Handling for Middle Vertices Groups in `_effectPathTransfers` Function

Unnecessary Hourly Check in `_calculateIssuance` Function Prevents Users from Receiving Rewards

wrong value for WELCOME_BONUS

lack of check in `ensureERC20` compare to `wrap` Function

Incorrect Calculation of Remaining Hours in Day B in `_calculateIssuance` Function

Zero-Amount Vulnerability in `migrate` Function Allows Unauthorized Migration

wrong mint emission in treasury contract

Possibility of Holding Humanity ID in Both Chains After Renewal and Transfer

Unbonded `orgHash` Could Result in Denial of Service (DOS)

Incomplete Deletion of Organization State Leads to Residual Effects on New Users

Insufficient Access Control in execTransactionOnBehalf Due to Broad Lead Role Check

Ineffective Revocation of Multiple Roles in `disableSafeLeadRoles` Function

`isSafeLead` Function Lacks Role Authorization Check, Leading to Unauthorized Access

`setRole` Function Incorrectly Assigns `_safe.lead` without Validating `enabled` Parameter

Potential Protocol insolvency in `removeWholeTree` and `disconnectSafe`

Unauthorized Role Modification Vulnerability in setRole Function

Unauthorized Access Control Due to Retained Root Role When Root Safe Exits and Joins New Org

`registerOrg` Function Vulnerable to DoS and Gas Griefing Attacks

`addSafe` Function Lacks Validation for `superSafeId` State

Missing Validation in addSafe Function for Enabled Guard and Module

Missing `disableSafeLeadRoles` Call for Root in `removeWholeTree` Function**

Gas griefing vulnerability in `createCampaigns` function

Incompatibility With Rebasing/Deflationary/Inflationary tokens

The emit in the `acceptCampaignOwnership` function omit key information.

Inconsistency in Fee Calculation in `update_fees` Function

Inconsistency in Nomination Pool Joining Logic

Potential DOS in `delegate_compound` Function

Minimum Stake Not Checked for Each Nomination Agent

Nomination Agents Linked to Pools in Destroying or Blocked State Cause Revert in Compound and Stake Functions

Dos in send_batch_unlock_requests function due to invalid range for agent's boned AZERO

Insufficient Check in `remove_agent` Function

Wrong Value in Compound Emit Event

decrease in pocket_money_balance even if the transfer failed

Inconsistency in Handling WETH in `eth::most::receiveRequest`

Attack to make ````CurveSubject```` to be a ````HoneyPot````

Unrestricted claiming of fees due to missing balance updates in `FeeSplitter`

Unauthorized Access to setCurves Function

Protocol and referral fee would be permanently stuck in the Curves contract when selling a token

onBalanceChange causes previously unclaimed rewards to be cleared

Curves::_buyCurvesToken(), Excess of Eth received is not refunded back to the user.

Once EntropyRateBps is set too high, can lead to denial-of-service (DoS) due to an invalid ETH amount

CultureIndex.sol#dropTopVotedPiece() - Malicious user can manipulate topVotedPiece to DoS the whole CultureIndex and AuctionHouse

Bidder can use donations to get VerbsToken from auction that already ended.

Portal Ignores Principal Token and PSM Price Ratio

Prevent Victim User From gaining portalEnergyEarned

Lack of Function for Receiving ETH

Incorrect Calculation in getUpdateAccount View Function

Inadequate Consideration of Decimal Variations in Principal Tokens

Incorrect Calculation of availableToWithdraw in Unstake Function

Incorrect Calculation of maxStakeDebt in Unstake Function

The price of rsEHT could be manipulated by the first staker

Protocol mints less rsETH on deposit than intended

Prime.sol - User can claim Prime token without having any staked XVS, because his `stakedAt` isn't reset whenever he is issued an irrevocable token.

`Vault.mintYieldFee` FUNCTION CAN BE CALLED BY ANYONE TO MINT `Vault Shares` TO ANY RECIPIENT ADDRESS

Price slippage in “rebalanceAll” function

An attacker can manipulate the preDepositvePrice to steal from other users.