The call to MsgValueSimulator with non zero msg.value will call to sender itself which will bypass the onlySelf check

User transactions can call system contracts directly

GiantLP with a transferHookProcessor cant be burned, users' funds will be stuck in the Giant Pool

function withdrawETH from GiantMevAndFeesPool can steal most of eth because of idleETH is reduced before burning token

GiantMevAndFeesPool.bringUnusedETHBackIntoGiantPool function loses the addition of the idleETH which allows attackers to steal most of eth from the Giant Pool

Giant pools can be drained due to weak vault authenticity check

Users can avoid paying any fees when using ERC20EnabledLooksRareAggregator for Seaport

Auction created by ERC777 Tokens with tax can be stolen by re-entrancy attack

Rewards delay release could cause yields steal and loss

Withheld ETH shoud not be sent back to the frxETHMinter contract itself

Can Recover Gobblers Burnt In Legendary Mint

Error in allowance logic

Interface definition error

Users can create extra ENS records at no cost