-
# Lines of code
https://github.com/code-423n4/2024-02-hydradx/blob/603187123a20e0cb8a7ea85c6a6d718429caad8d/HydraDX-node/pallets/ema-oracle/src/lib.rs#L385-L425
https://github.com/code-423n4/2024-02-…
-
dany.armstrong90
medium
# There is no deviation check between current sqrtP of pool and sqrtP which is calculated from usd rates.
## Summary
The `sqrtP` calculated from usd rates can be much differ…
-
-
# Lines of code
https://github.com/code-423n4/2024-03-dittoeth/blob/91faf46078bb6fe8ce9f55bcb717e5d2d302d22e/contracts/libraries/LibOracle.sol#L30
https://github.com/code-423n4/2024-03-dittoeth/blob/…
-
calpaliu
medium
# Chainlink's `latestRoundData` might return stale or incorrect results
## Summary
The provided Solidity code snippet retrieves data from an oracle contract to obtain the latest pr…
-
# Lines of code
https://github.com/code-423n4/2024-01-salty/blob/main/src/price_feed/CoreChainlinkFeed.sol#L21
https://github.com/code-423n4/2024-01-salty/blob/main/src/price_feed/CoreChainlinkFeed.s…
-
# Lines of code
https://github.com/code-423n4/2024-05-loop/blob/0dc8467ccff27230e7c0530b619524cc8401e22a/src/PrelaunchPoints.sol#L364-L366
# Vulnerability details
## Impact
In the event that a wh…
-
Arz
medium
# The TWAP interval is too short which makes manipulating the price easier
## Summary
The interval to get the TWAP of the Curve metapool is extremely short which makes oracle manipulati…
-
# Lines of code
https://github.com/code-423n4/2024-03-abracadabra-money/blob/1f4693fdbf33e9ad28132643e2d6f7635834c6c6/src/mimswap/libraries/PMMPricing.sol#L39-L74
https://github.com/code-423n4/2024-0…
-
Vulnerable Library - esapi-2.1.0.1.jar
The Enterprise Security API (ESAPI) project is an OWASP project
to create simple strong security controls for every web platform.
Security cont…