Security Researcher
High
Total
Medium
Total Earnings
#1066 All Time
Payouts
Top 10
Top 25
Top 50
All
Sherlock
CodeHawks
Mar '25
51.60 USDC • Sherlock • wickie
#23
68.35 USDC • 1 total finding • Sherlock • wickie
#11
high
In SymmStaking.sol, a malicious actor can cause the system to distribute less rewards via notifyRewardAmount().
Feb '25
789.64 usdc • 2 total findings • CodeHawks • wickie
#10
Deposits on long one leverage vault don't actually finalize the flow, leading to a Denial of Service (DoS)
If users withdraw while a position is in loss, the whole PNL of the position to their withdrawal amount instead of just their share of it.
Jan '25
51.22 USDC • 1 total finding • Sherlock • wickie
#27
medium
Borrowers will be unfairly liquidate due to the spTKNMinimalOracle returning incorrect prices.
774.10 USDC • 2 total findings • Sherlock • wickie
#17
When redeeming leverageTokens, marketRate of bondTokens should not effect the redemption.
Wrong calculation of price from tick in BondOracleAdapter.sol.
Dec '24
3.99 OP • 1 total finding • Sherlock • wickie
#37
Fail to reset safeApprove() in Bracket.sol will revert swaps of same tokens at the same router.
Sep '24
4.09 USDC • 1 total finding • Sherlock • wickie
#69
Initializing a collection in `Locker.sol` does not refund unused native tokens.
Aug '24
12.11 USDC • 1 total finding • Sherlock • wickie
#43
The vault cannot empty funds from a market when removing it.
3.91 USDC • 3 total findings • CodeHawks • wickie
#128
TokenManager - Unlimited withdraw
Native token withdrawal fails until manually approved
Token withdrawal fails until someone manually approves spending
