Vaults weth reward is not distributed correctly

Incorrect weight assignment in Vault::updateVaultAndCreditDelegationWeight leads to overleveraging vault positions and insolvency

Negative Credit Capacity Handling Causes Complete Vault Lockout When Underwater

`SettlementBranch._fillOrder` does not guarantee the collateral of a position is enough to pay the future liquidation fee.

Incorrect logic for checking isFillPriceValid

Wrong parameter passed in `TradingAccount::deductAccountMargin` function that results in excess margin withdrawal

Offchain orders are not cancelled after the account has been liquidated

Incosistent message generation in TempleTeleporter.quote() and TempleTeleporter.teleport() results in inaccurate required fee calculation by TempleTeleporter.quote()

`AccountFacet.batchUpdateAccountToken` has no access control

`AccountFacet.deposit` increases `initialMarginInUsdFromBalance` of cross positions more than the deposit amount.

`DecreasePositionProcess._updateDecreasePosition` calculates settledMargin in a wrong way when closing a cross position partially.

`lossFee` is always 0 in `GasProcess.processExecutionFee`

`Token.updateFounders` does not delete the old founder's vesting schedule.

The price of rsEHT could be manipulated by the first staker

Improper precision of strike price calculation can result in broken protocol

Users can get immediate profit when deposit and redeem in `PerpetualAtlanticVaultLP`

Inaccurate swap amount calculation in ReLP leads to stuck tokens and lost liquidity

reLP() mintokenAAmount the calculations are wrong.

User can avoid paying high premium price by correctly timing his bond call

The `digest` calculation in `deployProxyAndDistributeBySignature` does not follow EIP-712 specification

Signature missing nonce & expiration deadline

Delegated votes are locked when owner lock is expired

Rounding error in `WUSDA` can result in loss of user funds, especially when manipulated by an attacker

Proposal requiring native coin transfers cannot be executed

Delegated amounts can be forcefully removed from anyone in the TwabController

IF THE UNDERLYING ASSET IS A FEE ON TRANSFER TOKEN IT COULD BREAK THE INTERNAL ACCOUNTING OF THE VAULT

The constant product invariant can be broken.

Incorrect function call in LybraRETHVault's getAssetPrice

`Dispatcher._estimateWithdrawalLp` miscalculates when swap direction is unbalanced.

`XOracle` update is vulnerable to sandwich attack.

`PriceOracle.getPriceFromChainlink` is not validated properly.

`DAIEthOracle` address is wrong.

`StableOracleDAI.getPriceUSD()` calculation is wrong.

`USSD.mintBalancer`, `USSD.burnBalancer` is public.

Invalid path 0x is passed to Uniswap Router in `USSDRebalancer.SellUSSDBuyCollateral()`

In `USSDRebalancer.BuyUSSDSellCollateral()`, the decimal of `amountToSellUnits` is 0.

`USSD.UniswapV3SwapInput()` is vulnerable to MEV sandwich attack.

Exchange Rate can be manipulated

`FootiumAcademy.mintPlayers` may misinterpret an intermediate node as a leaf.

Incorrect fee handling in Position.sol's Market Buy/Sell functions

Price of sfrxEth derivative is calculated incorrectly