verifyfirst
commented
3 years ago removeForMember only works if a user sends lps to the pool contract and calls removeForMember. I.e Funds in = Funds out.
Open code423n4 opened 3 years ago
verifyfirst
commented
3 years ago removeForMember only works if a user sends lps to the pool contract and calls removeForMember. I.e Funds in = Funds out.
ghoul-sol
commented
3 years ago Per sponsor comment, making this invalid
Handle
a_delamo
Vulnerability details
Impact
On the
Pool.sol, the functionremoveForMemberis public. Allowing anyone to call the method using an address of an LP in order to remove liquidity from the pools and return to the LP account.If we combine the ability to remove liquidity and being able to do flash loans, we can alter prices and extract value from the remaining LPs.