Payouts
Top 50
All
Code4rena
CodeHawks
Feb '25
high
Users Can Overwrite Existing Locks in veRAACToken Resulting in Permanent Loss of Funds
high
Ownership Parameter Mismatch in LendingPool’s Vault Withdrawal Logic
high
Attackers can double voting power and veToken amount by locking and increasing
medium
Wrong access control in `RAACToken::setFeeCollector`, `RAACToken::setSwapTaxRate`, `RAACToken::setBurnTaxRate`
medium
Paused Protocol Prevents Critical Functions Including Debt Repayment and Liquidations
low
`mint` function in RToken contract doesn't return the correct expected values, leading to emission of ReserveLibrary `Deposit` event and LendingPool `Deposit` event with incorrect values.
low
Limited veRaac Token Supply Triggers DoS, Hampering Proper Governance Participation.
low
`DebtToken::burn`'s Return Values are wrong
low
`DebtToken::burn()` event parameters and return values are incorrect
Dec '24
Oct '24
Aug '24
Jul '24
May '24
Mar '24
Dec '23