https://sherlock-files.ams3.digitaloceanspaces.com/profile_images/a44793df-21c8-45dd-889d-cea53aeceab5.png

philmnds

Security Researcher

High

16

Total

Medium

18

Total

$30.65K

Total Earnings

#272 All Time

8x

Payouts

gold

1x

1st Places

bronze

1x

3rd Places

regular

4x

Top 10

All

Sherlock

Cantina

Jan '25

silo-contracts-v2

silo-contracts-v2

5,344.62 USDC • 2 total findings • Cantina • philmnds

#12

high

Finding not yet public.

medium

Finding not yet public.

reserve-index-dtf

reserve-index-dtf

1,053.43 USDC • 1 total finding • Cantina • philmnds

bronze

medium

Finding not yet public.

Nov '24

collar-core

collar-core

3,060.88 USDC • 2 total findings • Cantina • philmnds

#4

medium

Finding not yet public.

medium

Finding not yet public.

Telcoin Update #2

Telcoin Update #2

15.36 USDC • Sherlock • philmnds

#40

Oct '24

stakeup-bloomv2

stakeup-bloomv2

15,993.49 USDC • 15 total findings • Cantina • philmnds

gold

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

mev-commit

mev-commit

4,699.83 USDC • 6 total findings • Cantina • philmnds

#4

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

Sep '24

Royco Protocol

Royco Protocol

446.97 USDC • 5 total findings • Cantina • philmnds

#21

high

Finding not yet public.

high

Finding not yet public.

high

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

Aug '24

Winnables Raffles

Winnables Raffles

37.23 USDC • 3 total findings • Sherlock • philmnds

#19

high

Users will lock assets on the `WinnablesPrizeManager` contract by calling `WinnablesTicketManager::cancelRaffle` with wrong CCIP inputs

high

Attacker will prevent any raffles by calling `WinnablesTicketManager::cancelRaffle` before admin starts raffle

medium

Admin can prevent users from getting their prizes by using a malicious CCIP counterpart to unlock locked prize assets