8x
Payouts
1x
1st Places
1x
3rd Places
4x
Top 10
All
Sherlock
Cantina
Jan '25
high
Finding not yet public.
medium
Finding not yet public.
medium
Finding not yet public.
Nov '24
medium
Finding not yet public.
medium
Finding not yet public.
Oct '24
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
medium
Finding not yet public.
medium
Finding not yet public.
medium
Finding not yet public.
medium
Finding not yet public.
medium
Finding not yet public.
medium
Finding not yet public.
medium
Finding not yet public.
medium
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
medium
Finding not yet public.
medium
Finding not yet public.
medium
Finding not yet public.
Sep '24
high
Finding not yet public.
high
Finding not yet public.
high
Finding not yet public.
medium
Finding not yet public.
medium
Finding not yet public.
Aug '24
high
Users will lock assets on the `WinnablesPrizeManager` contract by calling `WinnablesTicketManager::cancelRaffle` with wrong CCIP inputs
high
Attacker will prevent any raffles by calling `WinnablesTicketManager::cancelRaffle` before admin starts raffle
medium
Admin can prevent users from getting their prizes by using a malicious CCIP counterpart to unlock locked prize assets