-
# Handle
loop
# Vulnerability details
The function `unlock()` in PoolTemplate has a typo where it compares `insurances[_id].status` to `false` rather than setting it to `false`. If the conditions …
-
# Adding newly disclosed code4rena contest bugs.
## Contest
Contest: [Amun](https://code4rena.com/reports/2021-12-amun)
[//]: # (can be found at https://code4rena.com/reports/2022-04-ab…
-
# Lines of code
https://github.com/code-423n4/2024-06-vultisig/blob/main/src/ILOPool.sol#L25
# Vulnerability details
## Impact
The current smart contract `ILOPool` inherits ERC-721 token function…
-
# Handle
pauliax
# Vulnerability details
## Impact
There are some issues with comments/documentation, e.g.:
Misleading comment:
```solidity
* @return true if the id within the market already ex…
-
# _SAFEMINT() SHOULD BE USED RATHER THAN _MINT() WHEREVER POSSIBLE
_mint() is discouraged in favor of _safeMint() which ensures that the recipient is either an EOA or implements IERC721Receiver. Bot…
-
# Handle
cmichel
# Vulnerability details
The `Vault.withdrawRedundant` has wrong logic that allows the admins to steal the underlying vault token.
```solidity
function withdrawRedundant(address _…
-
While performing security testing https://code4rena.com/I have found the vulnerability called Clickjacking.
What is Clickjacking ?
Clickjacking (User Interface redress attack, UI redress attack, U…
-
# Handle
evertkors
# Vulnerability details
A lot of docstrings for marketIndex are ` @param marketIndex An int32 which uniquely identifies a market.` but it is a `uint32` not an `int32`
-
# The 0.3% fee Uniswap pool for the specified token pair may not be the most liquid one leading to worse price impact and slippage
### Severity
High Risk
### Relevant GitHub Links
https://github.com…
-
# Lines of code
https://github.com/code-423n4/2024-01-salty/blob/53516c2cdfdfacb662cdea6417c52f23c94d5b5b/src/SigningTools.sol#L11-L26
# Vulnerability details
## Impact
`ecrecover` is susceptible…