Security Researcher
Reviewing smart contracts and making Web3 safer one protocol at a time. Smart Contracts Security Researcher
High
Total
Medium
Total
Total Earnings
#1232 All Time
Payouts
Top 10
Top 25
Top 50
All
Sherlock
Code4rena
CodeHawks
Feb '25
high
Users Can Overwrite Existing Locks in veRAACToken Resulting in Permanent Loss of Funds
high
Incorrect Reward Claim Logic in FeeCollector::claimRewards Causes Denial of Service
high
Attackers can double voting power and veToken amount by locking and increasing
medium
Inconsistent Scaling in RToken Transfer Functions
medium
[L-1] Inaccurate boost calculations in `veRAACToken` due to wrong input parameter
low
Unauthorized Vote Casting Vulnerability
Jan '25
Dec '24
high
[H-5] Lack of access control on `CDS::updateDownsideProtected` function artificially reduces `totalCdsDepositedAmount`
high
[H-1] Wrong check in `BorrowLib::getOptionFeesToPay` allows users to call `renewOptions` on expired Options and bypass fees
medium
[H-4] Lack of checks for `ethVolatility` param inside `Borrowing::depositTokens` function allows users to mint more `USDA`
Oct '24
Sep '24