Authorization Issues With The Budget Owner

Allocation Of Budget Would Be Incorrect Under A Certain Edge Case

claimIncentiveFor Might Lead To Loss Of Funds For CGDA Incentive

Protocol Fee Can Be 0

On Chain Randomness PrevRandao Used In ERC20 Raffle Is Manipulatable

emptyReserve Returns 0 Instead Of The Total Reserves

Incorrect redeemAmount Is Accounted Due To Not Accounting For The Exchange Rate

While Redeeming Early User Might Receive Way Lesser RA Than Expected

stagnated PA Is Locked Forever

raBalance and paBalance Not Decremented When Redeeming Excess

Locked RA Not Incremented In Repurchase Leads To Lesser Accrued Ra For CT Redemptions

Not The Entire Token Amounts Provided To AMM Might Get Consumed Leading To Incorrect Accounting Of LV Tokens

Attacker Can Decide The Initialization Ratio Of The AMM Pair

Attacker Can Cancel The Raffle By FrontRunning A Create Raffle Call

lockedETH Is Not Updated When Users Are Refunded

Attacker Can Break The Entire Winner Logic Via propagateRaffleWinner

Rewards Can Be Harvested Even When Distribution Is Marked As Finished

Attacker Can Reduce Reward Yield Using 0 Deposits

totalSupplycheckpoints Is Updated Incorrectly

Users Can Still Vote After Their Vest Is Revoked

User Can Vote Even When They Have 0 Locked Mento (Edge Case)

currentEpochsByAsset Must Increase In queueCurrentEpochSettlement

User Able To Request A Withdrawal Even If The Withdrawal Queue Has Insufficient Funds To Settle

Fixed Amount of Gas Sent in Call May Be Insufficient

Incorrect topUp Mechanism

Incorrect Balance Is Popped While Burn

StableOracleWBTC Uses ETH/USD Pricefeed Address Instead Of BTC/USD

Protocol Can Experience Large Slippage As amountOutMinimum Is Set To 0

DAI to sell would be calculated way more if there is no path to sell (no swaps)

Oracle Data Feed Can Be Outdated Yet Used Anyways Which Will Impact Ussd Mints

Remove Collateral Logic Is Incorrect

Claiming accumulated rewards while the contract is underfunded can lead to a loss of rewards

Position NFT can be spammed with insignificant positions by anyone until rewards DoS

getPrice MIGHT GIVE INCORRECT RESULT DUE TO NO DECIMAL CHECK

Protocol's usability becomes very limited when access to Chainlink oracle data feed is blocked

Bad implementation in minter access control for `RabbitHoleReceipt` and `RabbitHoleTickets` contracts

Protocol can be easily rug-pulled by the owner