VAD37
Rankings
#84 2024
#122 All-time
High-risk
25 Total
Medium-risk
44 Total
2 Solo
Activity
22 Audits
August 2024
15 August 2024
LoopFi
Medium-risk
Identified a finding grouped with:
`PoolV3#repayCreditAccount()` use incorrect share converting function to calculate profit and lossJuly 2024
2 July 2024
Size
Medium-risk
Identified a finding grouped with:
Size uses wrong source to query available liquidity on Aave, resulting in borrow and lend operations being bricked upon mainnet deploymentMedium-risk
Identified a finding grouped with:
Sandwich attack on loan fulfillment will temporarily prevent users from accessing their borrowed fundsMedium-risk
Identified a finding grouped with:
LiquidateWithReplacement does not charge swap fees on the borrowerHigh-risk
Identified a finding grouped with:
Risk of Overpayment Due to Race Condition Between repay and liquidateWithReplacement TransactionsHigh-risk
Identified a finding grouped with:
Users won't liquidate positions because the logic used to calculate the liquidator's profit is incorrectMay 2024
17 May 2024
NOYA
High-risk
Identified a finding grouped with:
`NoyaValueOracle.getValue` returns an incorrect price when a multi-token route is usedHigh-risk
Identified a finding grouped with:
`executeWithdraw` may be blocked if any of the users are blacklisted from the `baseToken`High-risk
Identified a finding grouped with:
`executeWithdraw` may be blocked if any of the users are blacklisted from the `baseToken`Medium-risk
Identified a finding grouped with:
Stale price can be used in `getValueFromChainlinkFeed` functionMedium-risk
Identified a finding grouped with:
Balancer flashloan contract can be DOSed completely by sending 1 wei to itHigh-risk
Identified a finding grouped with:
A Vault can steal all funds from another Vault through the Registry's flash loan contract due to insufficient access control in `Connector.sendTokensToTrustedAddress()`Medium-risk
Identified a finding grouped with:
`depositQueue.queue` in `AccountingManager` can be flooded causing a DoSMedium-risk
Identified a finding grouped with:
First depositor can make subsequent depositor lose all of her or his depositMedium-risk
Identified a finding grouped with:
CompoundConnector.sol misses unclaimed rewards in getPositionTVL, resulting in undervalued positionTVL/TVLMedium-risk
Identified a finding grouped with:
No function to claim the reward in `PancakeswapConnector`.April 2024
25 April 2024
DYAD
High-risk
Identified a finding grouped with:
Design flaw and mismanagement in vault licensing leads to double counting in collateral ratios and positions collateralized entirely with kerosineHigh-risk
Identified a finding grouped with:
Users can get their Kerosene stuck until TVL becomes greater than Dyad's supplyHigh-risk
Identified a finding grouped with:
Attacker can make 0 value deposit() calls to deny user from redeeming or withdrawing collateralHigh-risk
Identified a finding grouped with:
Kerosene collateral is not being moved on liquidation, exposing liquidators to lossMedium-risk
Identified a finding grouped with:
setUnboundedKerosineVault not called during deployment, causing reverts when querying for Kerosene value after adding it as a Kerosene vaultHigh-risk
Identified a finding grouped with:
Design flaw and mismanagement in vault licensing leads to double counting in collateral ratios and positions collateralized entirely with kerosineMedium-risk
Identified a finding grouped with:
Value of kerosene can be manipulated to force liquidate usersMedium-risk
Identified a finding grouped with:
Attacker can frontrun to prevent vaults from being removed from the dNFT owner's positionMarch 2024
15 March 2024
Revert Lend
High-risk
Selected for report
February 2024
21 February 2024
AI Arena
Medium-risk
Identified a finding grouped with:
Constraints of dailyAllowanceReplenishTime and allowanceRemaining during mint() can be bypassed by using alias accounts & safeTransferFrom()High-risk
Identified a finding grouped with:
Malicious user can stake an amount which causes zero curStakeAtRisk on a loss but equal rewardPoints to a fair user on a winMedium-risk
Identified a finding grouped with:
DoS in `MergingPool::claimRewards` function and potential DoS in `RankedBattle::claimNRN` function if called after a significant amount of rounds passed.High-risk
Identified a finding grouped with:
Fighters cannot be minted after the initial generation due to uninitialized `numElements` mappingHigh-risk
Identified a finding grouped with:
Players have complete freedom to customize the fighter NFT when calling `redeemMintPass` and can redeem fighters of types Dendroid and with rare attributesMedium-risk
Identified a finding grouped with:
Can mint NFT with the desired attributes by reverting transactionHigh-risk
Identified a finding grouped with:
Since you can reroll with a different fighterType than the NFT you own, you can reroll bypassing maxRerollsAllowed and reroll attributes based on a different fighterTypeJanuary 2024
30 January 2024
Salty.IO
Medium-risk
Identified a finding grouped with:
Attacker can take advantage of Chainlink price not occuring within it's 60 minute heartbeat to make PriceAggregator calls failNovember 2023
13 November 2023
NextGen
Medium-risk
Identified a finding grouped with:
On a Linear or Exponential Descending Sale Model, a user that mint on the last `block.timestamp` mint at an unexpected price.Medium-risk
Identified a finding grouped with:
The RandomizerVRF and RandomizerRNG not produce hash value.Medium-risk
Identified a finding grouped with:
Artist signatures can be forged to impersonate the artist behind a collectionHigh-risk
Identified a finding grouped with:
Adversary can block `claimAuction()` due to push-strategy to transfer assets to multiple biddersHigh-risk
Identified a finding grouped with:
Attacker can drain all ETH from AuctionDemo when block.timestamp == auctionEndTimeOctober 2023
26 October 2023
The Wildcat Protocol
September 2023
6 September 2023
Livepeer Onchain Treasury Upgrade
High-risk
Identified a finding grouped with:
Underflow in updateTranscoderWithFees can cause corrupted data and loss of winning tickets.June 2023
12 June 2023
Chainlink Cross Chain Services: CCIP and ARM Network
Identified 1 confirmed finding
Finding not yet public
April 2023
13 April 2023
Rubicon v2
Medium-risk
Identified a finding grouped with:
Use of `block.number` leads to incorrect interest calculationsJune 2022
19 June 2022
Infinity NFT Marketplace contest
Medium-risk
Identified a finding grouped with:
ETH mistakenly sent over with ERC20 based takeOrders and takeMultipleOneOrders calls will be lostMedium-risk
Identified a finding grouped with:
Malicious governance can use `updateWethTranferGas` to steal WETH from buyers
2 June 2022
veToken Finance contest
Medium-risk
Identified a finding grouped with:
`VE3DRewardPool` and `VE3DLocker` adds to an unbounded array which may potentially lock all rewards in the contractMedium-risk
Identified a finding grouped with:
Unable To Get Rewards If Admin Withdraws $VE3D tokens From `VeTokenMinter` ContractMedium-risk
Identified a finding grouped with:
Misconfiguration of Fees Incentive Might Cause Tokens To Be Stuck In `Booster` ContractMedium-risk
Selected for report
May 2022
28 May 2022
Rubicon contest
Medium-risk
Identified a finding grouped with:
Use `safeTransfer()`/`safeTransferFrom()` instead of `transfer()`/`transferFrom()`
14 May 2022
Cally contest
Medium-risk
Identified a finding grouped with:
It shouldn’t be possible to create a vault with Cally’ own tokenMedium-risk
Identified a finding grouped with:
User's may accidentally overpay in `buyOption()` and the excess will be paid to the vault creatorMedium-risk
Identified a finding grouped with:
Expiration calculation overflows if call option duration ≥ 195 daysMedium-risk
Identified a finding grouped with:
Vault is Not Compatible with Fee Tokens and Vaults with Such Tokens Could Be Exploited
8 May 2022
FactoryDAO contest
Medium-risk
Identified a finding grouped with:
safeTransferFrom is recommended instead of transfer (1)Medium-risk
Identified a finding grouped with:
amount requires to be updated to contract balance increase (1)Medium-risk
Identified a finding grouped with:
ERC20 tokens with different decimals than 18 leads to loss of funds
5 May 2022
Forgotten Runes Warrior Guild contest
Medium-risk
Selected for report
Medium-risk
Identified a finding grouped with:
Use of `.send()` May Revert if The Recipient's Fallback Function Consumes More Than 2300 GasApril 2022
27 April 2022
xTRIBE contest
Medium-risk
Selected for report
20 April 2022
Badger Citadel contest
High-risk
Identified a finding grouped with:
StakedCitadel doesn't use correct balance for internal accountingHigh-risk
Identified a finding grouped with:
StakedCitadel depositors can be attacked by the first depositor with depressing of vault token denominationMarch 2022
30 March 2022
LI.FI contest
Medium-risk
Identified a finding grouped with:
Anyone can get swaps for free given certain conditions in `swap`.Medium-risk
Identified a finding grouped with:
`msg.value` is Sent Multipletimes When Performing a SwapMedium-risk
Identified a finding grouped with:
[WP-H7] Infinite approval to an arbitrary address can be used to steal all the funds from the contract