-
# Lines of code
https://github.com/code-423n4/2024-04-dyad/blob/cd48c684a58158de444b24854ffd8f07d046c31b/src/core/VaultManagerV2.sol#L127
# Vulnerability details
## Impact
User's withdrawals will…
-
# initialize() can be frontrun
The `initialize()` function of the deployed contracts isn't called within the same transaction according to the deployment scripts. Thus, someone could frontrun the ini…
-
# Lines of code
https://github.com/code-423n4/2024-05-loop/blob/40167e469edde09969643b6808c57e25d1b9c203/src/PrelaunchPoints.sol#L263
# Vulnerability details
## Description
According to the NatSp…
-
# Lines of code
https://github.com/code-423n4/2024-07-optimism/blob/70556044e5e080930f686c4e5acde420104bb2c4/packages/contracts-bedrock/src/cannon/PreimageOracle.sol#L605
https://github.com/code-423n…
-
# Lines of code
https://github.com/code-423n4/2023-07-moonwell/blob/main/src/core/Comptroller.sol#L419
# Vulnerability details
## Impact
Liquidation could be DOSed by the borrower.
## Proof of Co…
-
zzykxx
medium
# Users can frontrun LSTs/LRTs tokens prices decrease in order to avoid losses
## Summary
Users can redeem their `PT`/`YT` tokens before a price decrease of a supported LST/LRT token…
-
I have found that the `sandwich.profit_amount` in some cases is very inflated... I'll give an example (the amounts below are made up but I have seen many cases of this happening).
frontrun: 1,000,…
-
# Lines of code
https://github.com/code-423n4/2024-03-acala/blob/9c71c05cf2d9f0a2603984c50f76fc8a315d4d65/src/orml/rewards/src/lib.rs#L253-L261
# Vulnerability details
## Impact
The `set_share` f…
-
# Lines of code
https://github.com/code-423n4/2023-04-frankencoin/blob/1022cb106919fba963a89205d3b90bf62543f68f/contracts/MintingHub.sol#L168
https://github.com/code-423n4/2023-04-frankencoin/blob/10…
-
# Handle
tensors
# Vulnerability details
## Impact
We have previously seen that the harvest function can be exploited for almost all the tokens at stake.
Since ManualRebalance calls harvest, it is…