-
Tedermint core coders, Sunny Aggarwal and Dev Ojha have worked on anti-frontrunning research (which Sunny presented at Cosmos Conversations). Klaus and myself had a chat with them and we cooked up a p…
-
keccak123
high
# User specified slippage allows frontrunning
## Summary
`rebalance` and `rebalanceLite` can be called by any user. Assets are taken from a user specified `account` address which ha…
-
**Github username:** @0xmahdirostami
**Twitter username:** 0xmahdirostami
**Submission hash (on-chain):** 0xa5b4b9894d4e91e80f7a5a9a31763d4a7e23170ca42a7e834d046b8f62023549
**Severity:** medium
**De…
-
PUSH0
medium
# Frontrunning validator freeze to withdraw tokens
## Summary
Covalent implements a freeze mechanism to disable malicious Validators, this allows the protocol to block all interaction…
-
# Lines of code
https://github.com/Tapioca-DAO/tap-token-audit/blob/59749be5bc2286f0bdbf59d7ddc258ddafd49a9f/contracts/options/oTAP.sol?plain=1#L126
https://github.com/Tapioca-DAO/tap-token-audit/blo…
-
# Lines of code
# Vulnerability details
In previous code, anyone can call ```lockAndBurn``` as long as certain time has passed, this can be abused to frontrunning a ```release``` and cause that `…
-
# Handle
thank_you
# Vulnerability details
## Impact
UniswapHandler utilizes UniswapV2Router to swap, add liquidity, and remove liquidity with the UniswapV2Pair contract. In order to utilize these…
-
# Lines of code
https://github.com/code-423n4/2023-04-frankencoin/blob/main/contracts/Equity.sol#L309-L316
# Vulnerability details
## Impact
The Bank protocol is designed in such a way, if it is n…
-
**Github username:** --
**Submission hash (on-chain):** 0x1cbc5b4ccacf24a6894550780af43d53515a6b94f863bfe84c2aa536a2cc5713
**Severity:** high
**Description:**
## Description
To exit a vault, users h…
-
Since there will be plenty of questions/discussion, I am frontrunning these by opening an issue here to have all the comms in a single place.
https://code4rena.com/blog/code4rena-spring-update-2024