-
Bandit
high
# Shares Minted Can Round In Favor Of User
## Summary
In share minting, the denominator _rounds down_, which can lead to the result _rounding up_.
## Vulnerability Detail
Here's a ge…
-
0xAnmol
medium
# Incorrect use of `bidId` can cause DOS.
## Summary
`LenderCommitmentForwarder_G2:_acceptCommitment` is using `bidId` to check for the principal token support by commitment but the …
-
Bigsam
medium
# Lack of Modifier onlyGreenlisted(msg.sender) in function withdrawToken will make frontrunning of admin who calls blacklist/pause while the malicious user withdraws his token succesf…
-
MightyRaju
medium
# EETH Deposits Would Be Non-Functional If WhiteListing Is Turned On
## Summary
Note this is unrelated to if external admins are trusted , this is a feature which can be toggled …
-
# Lines of code
https://github.com/code-423n4/2024-06-thorchain/blob/e3fd3c75ff994dce50d6eb66eb290d467bd494f5/chain/ethereum/contracts/THORChain_Router.sol#L143
https://github.com/code-423n4/2024-06-…
-
**Purpose**: This issue compiles meeting notes for the Gno Core Staff's recurring meetings.
**Process**:
1. **Drafting**: Notes are initially taken in Hackmd or Google Docs during meetings.
2. *…
-
bughuntoor
medium
# In case the user's interest is more than their principal, they can wait to `liquidateDefaultedLoanWithIncentive` for profit
## Summary
If the user has taken a loan from `LenderC…
-
nikhil840096
Medium
# Improper Handling of Request ID in `AssetsProcess.sol:createWithdrawRequest` Function.
## Summary
The function `createWithdrawRequest` in library `AssetsProcess.sol` creates …
-
-
NoOne
medium
# M-3: Reentrancy Vulnerability in burnSharesToWithdrawEarnings Function
## Summary
The `burnSharesToWithdrawEarnings` function in the smart contract allows users to convert their pool…