https://sherlock-files.ams3.digitaloceanspaces.com/profile_images/defaults/default_avatar_6.png

vagrant

Security Researcher

security researcher

Contact Me

High

5

Total

Medium

7

Total

$1.66K

Total Earnings

#1083 All Time

11x

Payouts

regular

1x

Top 10

regular

2x

Top 25

regular

5x

Top 50

All

Sherlock

Code4rena

Sep '23

Venus Prime

Venus Prime

4.37 USDC • Code4rena • vagrant

#39

Allo V2

Allo V2

0.09 USDC • 1 total finding • Sherlock • vagrant

#74

medium

funding pools with Fee-on-Transfer will lead to an incorrect increase in poolAmount value

Jul '23

Tokemak

Tokemak

7.81 USDC • 1 total finding • Sherlock • vagrant

#52

high

wETH deposited/minted via LMPVaultRouterBase is taken twice from msg.sender if he chooses to deposit with msg.value

Tapioca DAO

Tapioca DAO

117.58 USDC • 3 total findings • Code4rena • vagrant

#73

high

Reentrancy in `USDO.flashLoan()`, enabling an attacker to borrow unlimited USDO exceeding the max borrow limit

medium

BigBang and Singularity should not pause repay() and liquidate()

medium

Potential loss of value in YieldBox's `depositETHAsset()`

Jun '23

Unitas Protocol

Unitas Protocol

1,419.74 USDC • 1 total finding • Sherlock • vagrant

#6

high

Sandwiching price updates for profit

May '23

Iron Bank

Iron Bank

1.97 USDC • 2 total findings • Sherlock • vagrant

#19

medium

No price staleness check in PriceOracle

medium

PriceOracle needs to check for sequencer availability

USSD - Autonomous Secure Dollar

USSD - Autonomous Secure Dollar

0.00 USDC • 2 total findings • Sherlock • vagrant

#93

high

An attacker can make the USSDRebalancer sell more USSD than intended

medium

getPriceUSD() might return stale price

Mar '23

Asymmetry contest

Asymmetry contest

24.26 USDC • 1 total finding • Code4rena • vagrant

#97

medium

Stuck ether when use function `stake` with empty `derivatives`(`derivativeCount` = 0)

Canto Identity Subprotocols contest

Canto Identity Subprotocols contest

22.77 USDC • Code4rena • vagrant

#27

Feb '23

Ethos Reserve contest

Ethos Reserve contest

61.26 USDC • Code4rena • vagrant

#33

Jan '23

RabbitHole Quest Protocol contest

RabbitHole Quest Protocol contest

2.59 USDC • 1 total finding • Code4rena • vagrant

#84

high

Bad implementation in minter access control for `RabbitHoleReceipt` and `RabbitHoleTickets` contracts