issues
search
code-423n4
/
2022-05-factorydao-findings
1
stars
1
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Every funds except native token in PermissionlessBasicPoolFactory can be drain by anyone
#241
code423n4
closed
2 years ago
2
If A User Mistakenly Provides Too Much Ether To The `passThruGate()` Function, This Additional Amount Will Be Forever Locked Within The Contract
#240
code423n4
closed
2 years ago
3
PermissionlessBasicPoolFactory's pools with fee on transfer tokens can be emptied by repetitive deposit-withdraws
#239
code423n4
closed
2 years ago
1
Fund loss in passThruGate() of FixedPricePassThruGate becasue only some portion of user payed amount has been used and the rest of it don't returned to user
#238
code423n4
closed
2 years ago
2
QA Report
#237
code423n4
opened
2 years ago
1
QA Report
#236
code423n4
opened
2 years ago
1
PermissionlessBasicPoolFactory does not support fee on transfer token
#235
code423n4
closed
2 years ago
2
QA Report
#234
code423n4
opened
2 years ago
1
Gas Optimizations
#233
code423n4
opened
2 years ago
1
fund loss for user and owner of tree if there were two leaf for same user in MerkleVesting's or MerkleResistor's MerkleTree
#232
code423n4
closed
2 years ago
2
steal user funds with front-running when he calls depositTokens() of MerkleVesting and MerkleResistor with wrong treeIndex (uninitiated)
#231
code423n4
closed
2 years ago
2
SINGLE-STEP PROCESS FOR OWNERSHIP TRANSFER
#230
code423n4
closed
2 years ago
3
USDT or other ERC20 incompatible token can not be used as reward token
#229
code423n4
closed
2 years ago
1
fund loss for user and owner of tree if there were two leaf for same user in MerkleDropFactory's MerkleTree
#228
code423n4
closed
2 years ago
3
ERC20: TRANSFER() RETURN VALUE NOT CHECKED
#227
code423n4
closed
2 years ago
1
QA Report
#226
code423n4
opened
2 years ago
1
Gas Optimizations
#225
code423n4
opened
2 years ago
1
QA Report
#224
code423n4
opened
2 years ago
2
steal user funds with front-running when he calls depositTokens() of MerkleDropFactory with wrong treeIndex (uninitiated)
#223
code423n4
closed
2 years ago
2
Gas Optimizations
#222
code423n4
opened
2 years ago
1
Gas Optimizations
#221
code423n4
opened
2 years ago
1
QA Report
#220
code423n4
opened
2 years ago
2
Gas Optimizations
#219
code423n4
opened
2 years ago
1
QA Report
#218
code423n4
opened
2 years ago
1
Gas Optimizations
#217
code423n4
opened
2 years ago
1
QA Report
#216
code423n4
opened
2 years ago
1
Gas Optimizations
#215
code423n4
opened
2 years ago
1
QA Report
#214
code423n4
opened
2 years ago
2
DOS because of no bound check for tax parameter
#213
code423n4
closed
2 years ago
1
Denial of Service, Users/Pool owners are not able to withdraw invested funds
#212
code423n4
closed
2 years ago
1
Denial of Service, Users/Pool owners not able to withdraw invested funds
#211
code423n4
closed
2 years ago
1
Fee on transfer can DoS the withdrawals
#210
code423n4
closed
2 years ago
2
QA Report
#209
code423n4
opened
2 years ago
1
Gas Optimizations
#208
code423n4
opened
2 years ago
1
`PermissionlessBasicPoolFactory` does not support non-18 decimals token. Yield give 0 reward
#207
code423n4
closed
2 years ago
2
`PermissionlessBasicPoolFactory` and unexpected ERC20 burn token on transfer
#206
code423n4
closed
2 years ago
1
IERC20.transfer does not support nonstandard ERC20 token with no boolean return
#205
code423n4
closed
2 years ago
1
if user send uninitialized poolId to function deposit() of PermissionlessBasicPoolFactory, then attacker can cause user fund to be locked forever, and only unlock it if user pays ransom
#204
code423n4
closed
2 years ago
2
Gas Optimizations
#203
code423n4
opened
2 years ago
1
Gas Optimizations
#202
code423n4
opened
2 years ago
2
Unsafe usage of transfer and transferFrom
#201
code423n4
closed
2 years ago
1
Fee on transfer tokens cause wrong calculations
#200
code423n4
closed
2 years ago
1
Gas Optimizations
#199
code423n4
opened
2 years ago
2
QA Report
#198
code423n4
opened
2 years ago
1
Users will pay more than required for NFT Minting
#197
code423n4
closed
2 years ago
2
PermissionlessBasicPoolFactory.sol excessBeneficiary can't withdraw until all deposits are withdrawn
#196
code423n4
closed
2 years ago
2
Excess ETH is not returned to sender
#195
code423n4
closed
2 years ago
3
Precision loss of coinsPerSecond
#194
code423n4
closed
2 years ago
1
Gas Optimizations
#193
code423n4
opened
2 years ago
1
If multiple reward tokens configured, its possible to block withdrawTaxes of all rewardTokens
#192
code423n4
closed
2 years ago
1
Previous
Next