-
xiaoming90
medium
# Signature is malleable
## Summary
The signature is malleable. When a signature is malleable, it means that it is possible to produce another valid signature for the sam…
-
PUSH0
medium
# Frontrunning validator freeze to withdraw tokens
## Summary
Covalent implements a freeze mechanism to disable malicious Validators, this allows the protocol to block all interaction…
-
# Lines of code
https://github.com/code-423n4/2022-09-frax/blob/main/src/frxETHMinter.sol#L120
# Vulnerability details
## Impact
Frontrunning by malicious validator changing withdrawal credentials…
-
# Handle
leastwood
# Vulnerability details
## Impact
There are a few instances whereby a malicious actor could monitor the blockchain for instances of bytecode matching any of MISO's suite of sma…
-
Find a way to simulate a front running attack with foundry.
Anvil or cheatcodes could help
-
# Lines of code
https://github.com/code-423n4/2022-03-biconomy/blob/04751283f85c9fc94fb644ff2b489ec339cd9ffc/contracts/hyphen/WhitelistPeriodManager.sol#L202-L208
# Vulnerability details
## Impact…
-
Tedermint core coders, Sunny Aggarwal and Dev Ojha have worked on anti-frontrunning research (which Sunny presented at Cosmos Conversations). Klaus and myself had a chat with them and we cooked up a p…
-
**Github username:** @https://github.com/SB-Security
**Twitter username:** https://x.com/SBSecurity_
**Submission hash (on-chain):** 0x7572df1458aa3f722de2f64344c5792a8b3fcad7e81a698a728606f03db279f3…
-
# Lines of code
https://github.com/Tapioca-DAO/tap-token-audit/blob/59749be5bc2286f0bdbf59d7ddc258ddafd49a9f/contracts/options/oTAP.sol?plain=1#L126
https://github.com/Tapioca-DAO/tap-token-audit/blo…
-
keccak123
high
# User specified slippage allows frontrunning
## Summary
`rebalance` and `rebalanceLite` can be called by any user. Assets are taken from a user specified `account` address which ha…