Protocol is not usable & possible lock of funds on zksync because of wrong address computation

Some tokens enable the direct draining of all approved `ERC20Votes` tokens

Sandwich attack to steal all ERC-20 tokens in the Fees contract

Token spending by Uniswap router doesn't get approved

Hardcoded Router Address May Cause Token Lockup in Non-Standard Networks

Zero address leads to transaction reverts

`PoolBalanceUpdated` event is emitted even when pool balance is not changed.

staleCheckLatestRoundData() does not check the status of the Arbitrum sequencer in Chainlink feeds.

DSC protocol can consume stale price data or cannot operate on some EVM chains

[H-01] Lack of emergency withdraw function when no arbiter is set

Fixed `i_arbiterFee` can prevent payment

Constructor of `Escrow` should make sure that `buyer`, `seller`, `arbiter` are different from each other.

Use Openzeppelin Minimal Clones to Save a Lot of Gas

QA - Escrow__FeeExceedsPrice incorrect naming

Router is requiring twice the tokens when paying with native eth

DoS - No Rebalance possible if there is no underlying Pool with Fee 500

Possible loss of Funds

D3Fundingpool will not work as intended for Tokens with Approval Race Condition check

Missing Check for Arbitrum Sequencer

Unitas swap function is vulnerable to Sandwich Attack at oracle price update

DoS by minting max amount

Swaps are suspectible to Sandwich Attacks

Rebalancing is suspectible to Flash Loan Attacks

Deployment of StableOracleDAI will fail

No Redemption possible, even if Whitepater stated it

Loss of user funds - unchecked Return of ERC20 Transfer

Possible miscalculation of Leverage Ratio because of unchecked Chainlink values

Leverage Module will not work for some ERC20 Tokens (no allowance to 0 first)

Loss of funds - Attacker can call arbitrary function on any smart contract in context of user´s MarginTrading contract

Previous owner can take club tokens (players, etc.) when selling.

Previous club owner can steal future bought or minted NFTs (players) from new owner

Minted tokens might be lost when minted to contract that cannot handle it.

Staking, unstaking and rebalanceToWeight can be sandwiched (Mainly rETH deposit )