Admin cannot revoke roles from granted users, so they cannot remove malicious parties.

`calcRemainUnlockPeriod` reflects exact remain unlock period, so user may wait more time than expected due to some situations like network network latencies and validator hardware/connectivity variations.

`Keepers` does not implement EIP712 correctly on multiple occasions

First depositor can make subsequent depositor lose all of her or his deposit

Incorrect modifier condition

Design flaw and mismanagement in vault licensing leads to double counting in collateral ratios and positions collateralized entirely with kerosine

User can get their Kerosene stuck because of an invalid check on withdraw

Panoptic pool can be non-profitable by specific Uniswap governance

auction() function

`SwapFee` is incorrectly applied in WooCrossChainV4#sgReceive if `bridgedToken` is not SGETH and swap goes though WooRouter.

Holders array can be manipulated by transferring or burning with amount 0, stealing rewards or bricking certain functions

Malicious user can stake an amount which causes zero curStakeAtRisk on a loss but equal rewardPoints to a fair user on a win

A locked fighter can be transferred; leads to game server unable to commit transactions, and unstoppable fighters

Since you can reroll with a different fighterType than the NFT you own, you can reroll bypassing maxRerollsAllowed and reroll attributes based on a different fighterType

Fighters cannot be minted after the initial generation due to uninitialized `numElements` mapping

Non-transferable `GameItems` can be transferred with `GameItems::safeBatchTransferFrom(...)`

Fighter created by mintFromMergingPool can have arbitrary weight and element

`setValidatorAddress` function doesn't take the `delegated` value into account when setting a new validator address as an delegator address

A delegator can receive the rewards immediately by calling `stake` or `redelegateUnstake` to corresponding delegator when `RewardFailedDueLowPool` event emitted.

In the worst case, the `settleFundingFees` function may not set `marginDepositedTotal` correctly, causing all functionality to break.

The `depositETHIntoMultipleRounds` function does not check all values in the `amounts` array, so it can be used in attacks to stop multiple rounds.

Unrestricted claiming of fees due to missing balance updates in `FeeSplitter`

Protocol and referral fee would be permanently stuck in the Curves contract when selling a token