-
**Github username:** --
**Twitter username:** --
**Submission hash (on-chain):** 0x5d0846684ac24fda885b7f4d1ee2ffbebfa050707c8c19e766a49c314d991750
**Severity:** medium
**Description:**
**Descriptio…
-
## Background
Our current system relies heavily on price oracles for critical operations such as token swaps and liquidity provision. While we have an upgradeable oracle in place, there might be a …
-
## Checklist
- [x] I have searched the existing issues and pull requests for duplicates.
## Type of Issue
- [x] New vulnerability addition
- [ ] Feature request
- [ ] Update existing vulnerabil…
-
Hi there,
Thanks for this great repo. After reading the top 10 list, IMHO, please consider to add Oracle manipulation into this (some hacks happened).
About Oracle manipulation:
# Oracle mani…
sc0Vu updated
4 months ago
-
0xAsen
High
# get_price.rs - Missing Ownership Validation on Oracle Accounts
## Summary
The contract does not verify that the `price_update` and `quote_price_update` accounts used to fetch oracle …
-
Given the recent exploitation of the Compound money markets, community members have raised concerns with Compound receiving a higher score than Aave, despite having more easily manipulatable oracles.
…
-
# Lines of code
https://github.com/code-423n4/2022-04-abranft/blob/5cd4edc3298c05748e952f8a8c93e42f930a78c2/contracts/NFTPairWithOracle.sol#L286-L288
https://github.com/code-423n4/2022-04-abranft/blo…
-
# Lines of code
https://github.com/code-423n4/2024-06-vultisig/blob/cb72b1e9053c02a58d874ff376359a83dc3f0742/hardhat-vultisig/contracts/oracles/uniswap/UniswapV3Oracle.sol#L39-L46
https://github.com/…
-
# Lines of code
https://github.com/code-423n4/2023-11-kelp/blob/main/src/LRTOracle.sol#L52
# Vulnerability details
## Impact
The getRSETHPrice() function calculates the RSETH/ETH exchange rate ba…
-
**Github username:** --
**Twitter username:** --
**Submission hash (on-chain):** 0x16754701b8930964eddc5d97184565ab7696b1a15d4705720dc86c3ff05a0bf5
**Severity:** low
**Description:**
**Description**…