-
0xb0k0
Medium
# `latestRoundData()` checks in the ChainLink oracles does not check for round completeness
## Summary
Using ChainLink oracles without accounting for round completeness can lead to u…
-
# Lines of code
https://github.com/code-423n4/2023-02-ethos/blob/81ab0ff84b113f49f9d3390ea308bae57a1faa5b/Ethos-Core/contracts/PriceFeed.sol#L188
# Vulnerability details
## Impact
PriceFeed from …
-
PUSH0
medium
# L2 sequencer down will push an auction's price down, causing unfair liquidation prices, and potentially guaranteeing bad debt
## Summary
The protocol implements a L2 sequencer downt…
-
In https://github.com/OriginProtocol/origin-dollar/pull/869, we made it possible for anyone to trigger a harvest and receive an incentive in exchange. The idea was that we would eventually do the same…
-
### Environment information
* `brownie` Version: 1.18.1
* `solc` Version: 0.8.12
### What was wrong?
```
>>> c = Contract.from_explorer("0xca11bde05977b3631167028862be2a173976ca11")
Fetchi…
-
Vagner
medium
# `getPriceInEth` in `TellorOracle.sol` doesn't uses the best practices recommended by Tellor which can cause wrong pricing
## Summary
The function `getPriceInEth` it is used to call …
-
**Github username:** @ahmaddecoded
**Submission hash (on-chain):** 0xaaddde06ade66726b5b92ed5d57ec880df9135b8312a932bb9a5612276791f62
**Severity:** medium
**Description:**
**Description**\
Sequencer…
-
Currently the contract is assumed to be unique per vendor since the vendor (owner) deposits LINK in order to request chainlink oracles to validate item delivery, so all the vendor specific are curren…
-
# Lines of code
https://github.com/code-423n4/2023-03-wenwin/blob/main/src/RNSourceController.sol#L89-L104
# Vulnerability details
## Impact
A malicious randon source con frontrun calls to `swapS…
-
**Github username:** @0xLogos
**Twitter username:** --
**Submission hash (on-chain):** 0x37fc00d2a6b15947d735a80beae8f4695e9ffbd09148137a5e671b05a9d2fd5c
**Severity:** high
**Description:**
**Descri…