Attacker can clone their orders without providing the necessary funds

`strikePrice` is not checked to match `strikePercent` allowing cheaper options

User can always renew their position

Users can set an arbitrary `volatility` and not pay reduced fees

Precision loss when dealing with USDC token due to low amount of decimals

Malicious User can call `lockOnBehalf` repeatedly extend a users `unlockTime`, removing their ability to withdraw previously locked tokens

Invalid validation allows users to unlock early

Single plot can be occupied by multiple renters

Failure to Update Dirty Flag in transferToUnoccupiedPlot Prevents Reward Accumulation On Valid Plot

Invalid validation in _farmPlots function allowing a malicious user repeated farming without locked funds

Inadequate Checking of `isIncreasing` when trader adjusts position size

User can withdraw all collateral when a position has enough profit so if liquidated no collateral can be deducted

Use of uninitialized variable `lastFundingTime` leads to incorrect calcualtions

Users can double their voting power inside `Voter.sol`

`MasterchefV2::deposit` doesn't account for feeOnTransfer tokens

Users can lock down bribing for pools

Malicious User can call `lockOnBehalf` repeatedly extend a users `unlockTime`, removing their ability to withdraw previously locked tokens

Invalid validation allows users to unlock early

Single plot can be occupied by multiple renters

Failure to Update Dirty Flag in transferToUnoccupiedPlot Prevents Reward Accumulation On Valid Plot

Invalid validation in _farmPlots function allowing a malicious user repeated farming without locked funds

`AccountFacet::batchUpdateAccountToken` allows users to manually change their blance

Users may not be able to close their position due to lack of liquidity in the pool

Contract will reach a point where users will not be able to call `deposit`

Bidders can win auction without paying