issues
search
code-423n4
/
2022-02-aave-lens-findings
0
stars
0
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
TEST
#37
code423n4
closed
2 years ago
0
TEST
#36
code423n4
closed
2 years ago
0
Double collection + Refrain users from collecting publication
#35
code423n4
closed
2 years ago
4
Higher DAO power + Fake Follower
#34
code423n4
closed
2 years ago
3
Possible XSS and spamming possible
#33
code423n4
closed
2 years ago
2
User can impersonate other user identity by capturing handle
#32
code423n4
closed
2 years ago
5
User can collect publication at lesser fees
#31
code423n4
closed
2 years ago
2
Ineffective Whitelist
#30
code423n4
opened
2 years ago
3
Handles consisting only of `.` can be created
#29
code423n4
closed
2 years ago
2
User can bombard a publication with spam comments
#28
code423n4
closed
2 years ago
2
Name squatting
#27
code423n4
opened
2 years ago
2
Profile creation can be frontrun
#26
code423n4
opened
2 years ago
5
Treasury fees can be changed retroactively
#25
code423n4
closed
2 years ago
2
Can `collect` several times
#24
code423n4
closed
2 years ago
2
Can follow a profile several times
#23
code423n4
closed
2 years ago
3
Approvals not cleared when transferring profile
#22
code423n4
opened
2 years ago
8
Fee amount too restrictive
#21
code423n4
closed
2 years ago
2
Cashback on referral
#20
code423n4
opened
2 years ago
8
Missing validation in Handle name could cause Path traversal attacks or DOS
#19
code423n4
closed
2 years ago
2
QA Report
#18
code423n4
opened
2 years ago
1
Gas Optimizations
#17
code423n4
opened
2 years ago
1
QA Report
#16
code423n4
opened
2 years ago
1
QA Report
#15
code423n4
opened
2 years ago
1
Inconsistent behavior in the *FeeCollectModule contract can cause DOS.
#14
code423n4
closed
2 years ago
2
Gas Optimizations
#13
code423n4
opened
2 years ago
1
Unchecked input for setting _governance.
#12
code423n4
closed
2 years ago
1
SecretCodeFollowModule: passcode should not be stored in _passcodeByProfile in clear text
#11
code423n4
closed
2 years ago
1
SecretCodeFollowModule: The initializeFollowModule function should not return the plaintext of the passcode, and passcode should not be in clear text
#10
code423n4
closed
2 years ago
3
SecretCodeFollowModule: processFollow should add onlyHub modifier
#9
code423n4
closed
2 years ago
2
PublishingLogic: _initPubCollectModule fails when collectModule is 0
#8
code423n4
closed
2 years ago
2
_validateDataIsExpected() validation checks are open to manipulation
#7
code423n4
closed
2 years ago
2
No guards against following the same profile multiple times
#6
code423n4
closed
2 years ago
3
initialize() functions can be called by an attacker first
#5
code423n4
closed
2 years ago
2
flawed validation checks for permitForAll() function
#4
code423n4
closed
2 years ago
2
_setGovernance should be two step process
#3
code423n4
closed
2 years ago
2
Gas Optimizations
#2
code423n4
closed
2 years ago
3
QA Report
#1
code423n4
closed
2 years ago
3
Previous