Unnecessary line in `CoreRouter.sol::borrow()` calculate borrow amount wrong and allows for multi-token borrows with insufficient collateral.

Impossible condition in `LendStorage.sol::borrowWithInterest()` allows for unlimited borrows, draining the protocol. AND cross-chain repayments and liquidations are impossibe.

Partial cross-chain repay credits user with more debt

LEND rewards can be drained due to accounting mistake.

Cross-chain liquidations of low-decimal tokens are almost always possible.

Protocol fees cant be withdrawn.

User's cant redeem the correct amount due to the function using outdated collateral values.

Cross-chain liquidations take wrong amount from liquidator, allowing them to steal collateral of other users and making users even more insolvent.

User's have less borrowing power due to using outdated collateral values.

Users cant borrow USDT as its not handled correctly.

Wrong interest calculation causes unfair liquidations.

Incorrect update of tier give permanent position to some users.

Users with large tier history wont be able to interact with the protocol.

In SymmStaking.sol, a malicious actor can cause the system to distribute less rewards via notifyRewardAmount().

Deposits on long one leverage vault don't actually finalize the flow, leading to a Denial of Service (DoS)

If users withdraw while a position is in loss, the whole PNL of the position to their withdrawal amount instead of just their share of it.

ZENO Token Redemption Returns Negligible USDC Amount Compared to Purchase Price

Incorrect decimal handling in `Auction::buy()` leads to massive overpayment for ZENO tokens

Multiple issues from unnecessary balance increase calculation in DebtToken.mint

RToken's transfer function lead to loss of funds due to incorrect math

Attackers can get most of RAACToken rewards by withdrawing dust amount from StabilityPool multiple times

Incorrect utilization rate forces protocol to issue maximum rewards indefinitely

Incorrect DebtToken totalSupply Scaling Breaks Interest Rate Calculations

LendingPool deposits do not work with CurveVault due to lack of funds

`RToken::calculateDustAmount` are incorrectly calculated, leading to not be able to transfer the accrued dust amount

Due to not counting the assets stake on crvVault the reported amount of dust will not be correct

Incorrect Initialization of minBoost in BaseGauge Constructor Breaks Core Contract Functionality

Borrowers will be unfairly liquidate due to the spTKNMinimalOracle returning incorrect prices.

When redeeming leverageTokens, marketRate of bondTokens should not effect the redemption.

Wrong calculation of price from tick in BondOracleAdapter.sol.

maxSellPercent can be buypassed by selling previously bought vestings at a later time

Incorrect referral fee calculations

Incorrect listing type validation bypasses enforcement of minimum purchase amount

Fail to reset safeApprove() in Bracket.sol will revert swaps of same tokens at the same router.

Initializing a collection in `Locker.sol` does not refund unused native tokens.

The vault cannot empty funds from a market when removing it.

TokenManager - Unlimited withdraw

Native token withdrawal fails until manually approved

Token withdrawal fails until someone manually approves spending