-
zzykxx
high
# Exchange rate is calculated incorrectly when the vault is closed, potentially leading to funds being stolen
## Summary
The exchange ratio between shares and assets is calculated incor…
-
# Lines of code
https://github.com/code-423n4/2022-02-tribe-turbo/blob/66f27fe51083f49f7935e3fe594ab2380b75dee8/src/TurboSafe.sol#L339
# Vulnerability details
## Impact
The `TurboGibber.impound` f…
-
-
bin2chen
high
# claimCOMPAndTransfer() COMP may be locked into the contract
## Summary
Malicious users can keep front-run `claimCOMPAndTransfer() ` to trigger `COMPTROLLER.claimComp() ` first, caus…
-
I want to say something about our TON Blockchain and wellet , app / First of all, TON app of updates are needed like national ID card verification and face verification of users. Please turn on login …
-
# Lines of code
https://github.com/code-423n4/2023-07-basin/blob/main/src/Well.sol#L790
# Vulnerability details
## Impact
Based on the modifier in line 789-794, src/Well.sol, line 790 uses "block.…
-
# Lines of code
https://github.com/code-423n4/2023-12-revolutionprotocol/blob/d42cc62b873a1b2b44f57310f9d4bbfdd875e8d6/packages/revolution/src/CultureIndex.sol#L209-L248
# Vulnerability details
Cu…
-
# Handle
WatchPug
# Vulnerability details
https://github.com/code-423n4/2021-11-malt/blob/c3a204a2c0f7c653c6c2dda9f4563fd1dc1cecf3/src/contracts/ERC20Permit.sol#L112-L116
```solidity=112
functi…
-
**Bounties for Foresight Technical Groups**
Each of these will run for 6 weeks, the objective is to stimulate conversation and get people thinking about interesting and relevant future science. Sub…
-
AresAudits
High
# Frontrunning in `initializePool` Function may leads to DOS and making owner to spend more on pool initialization
## Summary
## Vulnerability Detail
The `initializePool` function…