Security Researcher
High
Total
Medium
Total Earnings
#685 All Time
Payouts
3rd Places
Top 10
Top 25
All
Sherlock
Code4rena
Mar '23
235.24 USDC • Code4rena • zaskoh
#11
169.8 USDC • Code4rena • zaskoh
#21
Jan '23
1,034.68 USDC • Code4rena • zaskoh
#8
208.59 USDC • 3 total findings • Sherlock • zaskoh
#18
high
If debt token has a blacklist (like USDC / tether / ...), then repay() does not work for borrower
Not checking return value for ERC20 transferFrom and transfer
medium
Missing check for decollateralized > 0 in Cooler.repay
2,821.71 USDC • 1 total finding • Code4rena • zaskoh
#5
Loss of user funds when completing CASH redemptions
339.14 USDC • Code4rena • zaskoh
#34
1,080.21 USDC • 3 total findings • Code4rena • zaskoh
Attacker can gain control of counterfactual wallet
DoS of user operations and loss of user transaction fee due to insufficient gas value submission by malicious bundler
[Medium-3] Non-compliance with EIP-4337
Dec '22
2,397.42 USDC • 3 total findings • Code4rena • zaskoh
griefing / blocking / delaying users to withdraw
Manager can get around min reserves check, draining all funds from Collateral.sol
Frontrunning for unallowed minting of Short and Long tokens
66.79 USDC • 1 total finding • Code4rena • zaskoh
#42
Use of `payable.transfer()` Might Render ETH Impossible to Withdraw
Nov '22
140.62 USDC • 1 total finding • Code4rena • zaskoh
#38
GiantMevAndFeesPool.previewAccumulatedETH function: "accumulated" variable is not updated correctly in for loop leading to result that is too low
527.83 USDC • 1 total finding • Code4rena • zaskoh
#15
Hacked owner or malicious owner can immediately steal all assets on the platform
194.39 USDC • 1 total finding • Code4rena • zaskoh
#17
Public to all funds escape
110.58 USDC • Code4rena • zaskoh
