issues
search
code-423n4
/
2022-06-infinity-findings
4
stars
0
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
QA Report
#267
code423n4
opened
2 years ago
0
Gas Optimizations
#266
code423n4
opened
2 years ago
0
QA Report
#265
code423n4
opened
2 years ago
0
Rescue ETH at `InfinityStaker.sol` is incorrectly implemented
#264
code423n4
closed
2 years ago
3
QA Report
#263
code423n4
opened
2 years ago
0
Gas Optimizations
#262
code423n4
opened
2 years ago
0
`rescueEth` does not transfer ether in contract
#261
code423n4
closed
2 years ago
3
The userMinOrderNonce can be set arbitrarily with cancelAllOrders().
#260
code423n4
opened
2 years ago
3
Protocol fee rate can be arbitrarily modified by the owner and the new rate will apply to all existing orders
#259
code423n4
opened
2 years ago
3
Incorrect calculation of `startGasPerOrder` will cause fund loss to the buyer of the last order due to mischarged gas cost
#258
code423n4
closed
2 years ago
3
Maker order buyer is forced to reimburse the gas cost at any `tx.gasprice`
#257
code423n4
opened
2 years ago
2
Wrong implementation of `rescueETH`, causing the fees in native tokens to be frozen in the contract
#256
code423n4
closed
2 years ago
3
Unsmooth price change due to unnecessary precision loss can cause user's order to be settled in non-optimal price
#255
code423n4
opened
2 years ago
2
Maker buy order with no specified NFT tokenIds may get fulfilled in `matchOneToManyOrders` without receiving any NFT
#254
code423n4
opened
2 years ago
2
QA Report
#253
code423n4
opened
2 years ago
2
Rescue ETH at `InfinityExchange.sol` is incorrectly implemented
#252
code423n4
closed
2 years ago
3
Issues beyond expected behavior.
#251
code423n4
closed
2 years ago
1
EIP-1271 Signature may not be able to split into r, s, v. These signature can't be used with Infinity NFT marketplace at all while it doesn't break any standard.
#250
code423n4
closed
2 years ago
2
Denial-of-service issues beyond expected behavior.
#249
code423n4
closed
2 years ago
2
The timestamp of the specified duration is reset after the position is added via stake().
#248
code423n4
closed
2 years ago
2
QA Report
#247
code423n4
opened
2 years ago
0
Accidental ETH transfers to `InfinityStaker` cannot be withdrawn
#246
code423n4
closed
2 years ago
3
Not working with data on transfer NFT that restrict transfer with some data requirement
#245
code423n4
closed
2 years ago
2
Overpayment of native ETH is not refunded to buyer
#244
code423n4
opened
2 years ago
2
ETH fees paid to `InfinityExchange` cannot be withdrawn
#243
code423n4
closed
2 years ago
3
Gas Optimizations
#242
code423n4
opened
2 years ago
0
Admin can lock the `rageQuit` function, locking user funds
#241
code423n4
closed
2 years ago
1
Gas Optimizations
#240
code423n4
opened
2 years ago
0
QA Report
#239
code423n4
opened
2 years ago
2
Having one of the `*_MONTH_PENALTY` equal to zero will make the `rageQuit` function revert
#238
code423n4
closed
2 years ago
1
QA Report
#237
code423n4
opened
2 years ago
0
Gas Optimizations
#236
code423n4
opened
2 years ago
0
Gas Optimizations
#235
code423n4
opened
2 years ago
0
QA Report
#234
code423n4
opened
2 years ago
0
`INFINITY_TREASURY` equal to `address(0)` will make the `rageQuit` function always revert
#233
code423n4
closed
2 years ago
1
QA Report
#232
code423n4
opened
2 years ago
7
DoS: `_transferFees` may be reverted by malicious sellers
#231
code423n4
closed
2 years ago
1
It should prevent users from sending more native tokens
#230
code423n4
closed
2 years ago
2
User may get unexpected behavior if user doesn’t specify any token ids
#229
code423n4
closed
2 years ago
2
`protocolFee` may cause DoS
#228
code423n4
closed
2 years ago
2
Gas bomb on large arrays of orders
#227
code423n4
closed
2 years ago
2
MATCH_EXECUTOR can submit wrong constructs in matchOrders
#226
code423n4
closed
2 years ago
3
DoS: Admin can set penalties to 0 in `updatePenalties`, leading to users being unable to get tokens back
#225
code423n4
closed
2 years ago
3
Seller can steal funds
#224
code423n4
closed
2 years ago
3
Users will lose funds forever when calling `unstake`
#223
code423n4
closed
2 years ago
3
The implementation is inconsistent in `makerOrder.constraints[0]` of `areTakerNumItemsValid`
#222
code423n4
closed
2 years ago
2
Sellers may lose tokens because `numConstructedItems` may be greater than `sell.constraints[0]`
#221
code423n4
closed
2 years ago
3
Fees funds(ETH) permanent lock
#220
code423n4
closed
2 years ago
3
QA Report
#219
code423n4
opened
2 years ago
0
Gas Optimizations
#218
code423n4
opened
2 years ago
0
Previous
Next