Unauthorized Reallocation in `NudgeCampaign::handleReallocation` and Reward Disruption Vulnerability in `NudgeCampaign::invalidateParticipations`

Incorrect tokens check in `updateParticipation` function leads to DoS of this function or incorrect userToken allocation.

`Pool.sol::transferReserveToAuction()` function incorrectly accesses `auctionAddress`, causing the `Auction::endAuction()` function to always fail to `SUCCEEDED` the auction, thus locking bidders' coupon tokens permanently in the auction contract.

Users can claim more that their actual allotment

Incorrect listing type validation bypasses enforcement of minimum purchase amount

Minting zero tokens when underlyingToken is not Ether in cashIn()