-
-
# Lines of code
https://github.com/code-423n4/2023-01-popcorn/blob/2d373f8748a140f5d7a57e738172750811449c04/src/utils/MultiRewardStaking.sol#L245
# Vulnerability details
## Impact
The raw `rewards…
-
The tranche is described as providing a wrapper to the underlying ERC4626 tokens, but does not currently support ERC4626 itself. SeniorTranche and JuniorTranche do not implement certain ERC4626 func…
-
https://snyk.io/test/github/springblock/Ethereum
1. Arbitrary Code Injection
Vulnerable module: growl
Introduced through: grunt-mocha-cli@2.1.0
2.Command Injection
Vulnerable module: shelljs
I…
-
long title Crash after error "java.lang.NullPointerException: Attempt to invoke virtual method 'boolean java.util.ArrayList.add(java.lang.Object)' on a null object reference" when select recipient for…
-
### Specific Domain(s)
https://www.stellarhall.org/ (main host domain serving n amount of fraud assets)
### The reason why you think we need to blacklist these domains
Looking at all the …
-
# Lines of code
https://github.com/code-423n4/2023-07-moonwell/blob/main/src/core/MultiRewardDistributor/MultiRewardDistributor.sol#L1214-L1218
https://github.com/code-423n4/2023-07-moonwell/blob/mai…
-
# Handle
WatchPug
# Vulnerability details
There are ERC20 tokens that charge fee for every `transfer()` or `transferFrom()`.
In the current implementation, `YaxisVaultAdapter.sol#withdraw()` assu…
-
-