-
Here is my code:
```
const provider = anchor.AnchorProvider.env();
anchor.setProvider(provider);
const user = (provider.wallet as anchor.Wallet).payer;
const payer = user;
console.…
-
0xBoboShanti
Medium
# Vault can be temporarily bricked by using a frozen recipient ATA when ordered delivery is enabled
### Summary
_Please note - this requires that https://github.com/sherlock-…
-
Tendency
High
# Inadequate User Verification Allows Unauthorized Token Redirection
### Summary
A verified withdrawal message can be maliciously redirected to an attacker's account due to an inad…
-
Follow-up of https://github.com/AdrenaFoundation/frontend/issues/399 & related to https://github.com/AdrenaFoundation/frontend/pull/396
- `PYTH_CONNECTION` Solana RPC Connection
- `IConfiguration.…
-
LZ_security
Medium
# WOOFi Swap on Solana does not support the native token SOL.
## Summary
WOOFi Swap on Solana does not support the native token SOL.
## Vulnerability Detail
```rust
pub fn …
-
Tendency
High
# Unchecked `deposit_token` Allows Malicious Token Substitution During Withdrawals
### Summary
A verified withdrawal message can be maliciously intercepted, replacing the expected to…
-
Here are some of the differences observed so far when Exocore gateway communicates with Solana and the EVM:
1. EVM uses OrderedOptions, Solana uses UnorderedOptions
2. In the call to addTokenWhit…
-
There will be posted official CA for Solana token address of `ghpnut`.
-
S3v3ru5
Medium
# Swap function does not check `woopool_quote` is indeed a quote pool
### Summary
WooFi defines a quote pool has the pool which has `pool.token_mint == pool.quote_token_mint` i.e po…
-
dod4ufn
High
# _quote_amount is always calculated with outdated price potentially leading to loss of funds
## Summary
Wooracle uses prices that were calculated using the previous call of Pyth’s or…