code-423n4 2022-05-opensea-seaport-findings issues

code-423n4 / 2022-05-opensea-seaport-findings

1 stars 0 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

Can overfill orders (DoS)

#216 0xleastwood closed 2 years ago
2
Agreements & Disclosures

#215 sockdrawermoney opened 2 years ago
1
QA Report

#214 code423n4 closed 2 years ago
2
QA Report

#213 code423n4 opened 2 years ago
1
QA Report

#212 code423n4 opened 2 years ago
3
Verifying criteria is prone to known merkle proof attacks

#211 code423n4 closed 2 years ago
3
Gas Optimizations

#210 code423n4 opened 2 years ago
1
Gas Optimizations

#209 code423n4 opened 2 years ago
1
Gas Optimizations

#208 code423n4 opened 2 years ago
0
Does not set the offerer as the recipient if execution amount is nonzero

#207 code423n4 closed 2 years ago
2
EIP1271 signature will fail when length is 65

#206 code423n4 closed 2 years ago
3
`SpentItem`/`ReceivedItem` fields can be dirty and unused (potentially useful for phishing)

#205 code423n4 closed 2 years ago
2
Gas Optimizations

#204 code423n4 opened 2 years ago
1
QA Report

#203 code423n4 opened 2 years ago
5
QA Report

#202 code423n4 opened 2 years ago
2
`_verifyProof` allows empty proofs (allows malleable transactions)

#201 code423n4 closed 2 years ago
2
QA Report

#200 code423n4 closed 2 years ago
2
Gas Optimizations

#199 code423n4 opened 2 years ago
1
A malicious zone operator can piggyback other transactions, when a caller tries to fulfill the restricted order

#198 code423n4 closed 2 years ago
2
QA Report

#197 code423n4 closed 2 years ago
3
QA Report

#196 code423n4 opened 2 years ago
3
`_performERC1155BatchTransfers` passes through truncated input as complete

#195 code423n4 closed 2 years ago
2
QA Report

#194 code423n4 opened 2 years ago
2
Gas Optimizations

#193 code423n4 opened 2 years ago
3
Gas Optimizations

#192 code423n4 opened 2 years ago
1
Gas Optimizations

#191 code423n4 opened 2 years ago
1
_performERC721Transfer didnt check the return value

#190 code423n4 closed 2 years ago
7
QA Report

#189 code423n4 opened 2 years ago
1
QA Report

#188 code423n4 opened 2 years ago
2
Gas Optimizations

#187 code423n4 closed 2 years ago
0
QA Report

#186 code423n4 closed 2 years ago
2
QA Report

#185 code423n4 closed 2 years ago
2
_transfer#Executor.sol not checking all enum values

#184 code423n4 closed 2 years ago
2
DataRestrictedNFT (Both ERC721 and ERC1155) is not working with Seaport as seaport cannot send _data bytes on transfer

#183 code423n4 closed 2 years ago
2
QA Report

#182 code423n4 closed 2 years ago
3
Gas Optimizations

#181 code423n4 opened 2 years ago
1
Order partial fulfilling can be blocked by the first fulfiller

#180 code423n4 closed 2 years ago
3
QA Report

#179 code423n4 closed 2 years ago
2
Gas Optimizations

#178 code423n4 opened 2 years ago
1
[WP-H1] `OrderFulfiller.sol#_applyFractionsAndTransferEach()` Orders with `offerItem.itemType == ItemType.NATIVE` are not processed properly

#177 code423n4 closed 2 years ago
2
`_assertValidSignature` is not compatible with EIP-1271

#176 code423n4 closed 2 years ago
2
QA Report

#175 code423n4 opened 2 years ago
1
Gas Optimizations

#174 code423n4 opened 2 years ago
1
TokenTransferrer is using unsafe transferFrom for ERC721 instead of safeTransferFrom. Necessary checks will be skipped!

#173 code423n4 closed 2 years ago
2
Fulfiller will not receive unaggregated/unmatched offer items

#172 code423n4 closed 2 years ago
2
Caller always pays for ETH even for ETH offer items

#171 code423n4 closed 2 years ago
2
Can avoid paying for additional recipients' consideration items due to out of bounds read for `additionalRecipients`

#170 code423n4 closed 2 years ago
1
QA Report

#169 code423n4 closed 2 years ago
5
Merkle Tree criteria can be resolved by wrong tokenIDs

#168 code423n4 opened 2 years ago
2
QA Report

#167 code423n4 closed 2 years ago
2