-
Since anyone can call the "notifyKeepStakeDiscrepancy" and "notifyNuStakeDiscrepancy" functions and take the notification reward, users run the risk when calling these functions that a bot will frontr…
-
jokr
medium
# Liquidators can prevent users from making their positions healthy during an unpause
## Summary
The Perpetual protocol admins can pause the whole system or a specific market on emerge…
-
# Lines of code
https://github.com/code-423n4/2024-03-coinbase/blob/main/src/SmartWallet/CoinbaseSmartWalletFactory.sol#L38-L56
# Vulnerability details
## Impact
- Loss of Ether and Denial of serv…
-
Ironsidesec
medium
# Sandwich attack on `OCL_ZVE.forwardYield`
## Summary
This issue is due to the wrong slippage implementation. Cannot be fixed by access control. Still, it can be sandwiched by M…
-
# Lines of code
https://github.com/code-423n4/2024-03-revert-lend/blob/main/src/V3Vault.sol#L1066
# Vulnerability details
## Impact
_sendPositionValue function have no slippage protection which m…
-
Kalyan-Singh
medium
# Dutch auction buys can be griefed resulting in Bad Debt accrual for the protocol
## Summary
Bid function in Liquidator.sol takes in askedAssetAmount[] but if even one of the …
-
### Description
With the ongoing bot trades contributions to the Spellbook, there's an emerging need to better organize bot trades on Solana. These developments underscore the importance of structure…
-
# Lines of code
https://github.com/code-423n4/2024-03-revert-lend/blob/435b054f9ad2404173f36f0f74a5096c894b12b7/src/V3Vault.sol#L1065-L1067
# Vulnerability details
## Impact
When user Decrease NFT…
-
# Lines of code
https://github.com/code-423n4/2024-02-ai-arena/blob/cd1a0e6d1b40168657d1aaee8223dc050e15f8cc/src/RankedBattle.sol#L322-L349
https://github.com/code-423n4/2024-02-ai-arena/blob/cd1a0e6…
-
# Lines of code
https://github.com/code-423n4/2024-03-revert-lend/blob/main/src/V3Vault.sol#L1066
https://github.com/code-423n4/2024-03-revert-lend/blob/main/src/transformers/AutoCompound.sol#L163-L1…