issues
search
code-423n4
/
2022-06-badger-findings
0
stars
0
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
QA Report
#108
code423n4
opened
2 years ago
1
Swap routes are hardcoded for pools that do not exist yet.
#107
code423n4
closed
2 years ago
1
QA Report
#106
code423n4
opened
2 years ago
1
QA Report
#105
code423n4
closed
2 years ago
1
`_harvest` has no slippage protection when swapping `auraBAL` for `AURA`
#104
code423n4
opened
2 years ago
3
QA Report
#103
code423n4
opened
2 years ago
0
Harvest is vulnerable to sandwich attack.
#102
code423n4
closed
2 years ago
1
Attacker can deposit for MyStrategy in AuraLocker make it unable to withdraw all.
#101
code423n4
closed
2 years ago
1
Gas Optimizations
#100
code423n4
opened
2 years ago
1
Gas Optimizations
#99
code423n4
opened
2 years ago
0
QA Report
#98
code423n4
opened
2 years ago
1
UNDESIRED RECEIVE() BEHAVIOR
#97
code423n4
closed
2 years ago
1
QA Report
#96
code423n4
opened
2 years ago
0
Re-entrancy Guard Upgradeable Contract Is Not Initialized
#95
code423n4
closed
2 years ago
1
BADGER bribes can not be claimed
#94
code423n4
closed
2 years ago
1
Emergency withdrawals are broken
#93
code423n4
closed
2 years ago
1
Withdrawing all funds at once to vault can be DoS attacked by frontrunning and locking dust
#92
code423n4
opened
2 years ago
3
Claiming `BADGER` bribes and sweeping `BADGER` rewards tokens is broken
#91
code423n4
closed
2 years ago
1
Vulnerable OZ version `openzeppelin-contracts-upgradeable@3.4.0` used
#90
code423n4
closed
2 years ago
1
Missing slippage protection for autocompounding `auraBAL` rewards into `AURA`
#89
code423n4
closed
2 years ago
2
QA Report
#88
code423n4
opened
2 years ago
0
QA Report
#87
code423n4
closed
2 years ago
1
QA Report
#86
code423n4
closed
2 years ago
0
QA Report
#85
code423n4
opened
2 years ago
1
Gas Optimizations
#84
code423n4
closed
2 years ago
1
Gas Optimizations
#83
code423n4
closed
2 years ago
1
QA Report
#82
code423n4
opened
2 years ago
0
Gas Optimizations
#81
code423n4
closed
2 years ago
1
Gas Optimizations
#80
code423n4
opened
2 years ago
2
`_harvest()` vulnerable to sandwich attacks due to missing slippage checks
#79
code423n4
closed
2 years ago
2
QA Report
#78
code423n4
closed
2 years ago
2
Gas Optimizations
#77
code423n4
closed
2 years ago
2
Override function but with different argument location
#76
code423n4
closed
2 years ago
1
Division by 0 can lead to accidentally revert
#75
code423n4
closed
2 years ago
1
Wrong Deadline
#74
code423n4
closed
2 years ago
1
QA Report
#73
code423n4
closed
2 years ago
0
Gas Optimizations
#72
code423n4
closed
2 years ago
1
Gas Optimizations
#71
code423n4
opened
2 years ago
1
QA Report
#70
code423n4
opened
2 years ago
1
QA Report
#69
code423n4
opened
2 years ago
1
Update initializer modifier to prevent reentrancy during initialization
#68
code423n4
closed
2 years ago
1
Yield may be stolen by MEV bot by sandwiching harvest()
#67
code423n4
closed
2 years ago
2
`claimBribesFromHiddenHand()` Can Be Front-run In Calling `hiddenHandDistributor.claim()`
#66
code423n4
closed
2 years ago
1
Any User May Transfer Rewards From AuraLocker To MyStrategy These Rewards Are Unaccounted For and Stuck
#65
code423n4
closed
2 years ago
1
No slippage control on harvest
#64
code423n4
closed
2 years ago
2
QA Report
#63
code423n4
opened
2 years ago
0
Fee-on-transfer support
#62
code423n4
closed
2 years ago
1
Approval must be set to zero and after that increased to the amount you need.
#61
code423n4
closed
2 years ago
1
QA Report
#60
code423n4
opened
2 years ago
1
Gas Optimizations
#59
code423n4
opened
2 years ago
1
Previous
Next