issues
search
code-423n4
/
2022-09-y2k-finance-findings
3
stars
1
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Possible reentrancy attack on `deposit` function
#477
code423n4
closed
2 years ago
1
[NAZ-M2] `withdraw()` Allows Anyone Withdraw Someone Else's Shares
#476
code423n4
closed
2 years ago
2
[NAZ-M1] Race Condition in `withdraw()`
#475
code423n4
closed
2 years ago
2
QA Report
#474
code423n4
opened
2 years ago
0
Admin can prevent deposits by manipulating timewindow
#473
code423n4
closed
2 years ago
1
Gas Optimizations
#472
code423n4
opened
2 years ago
0
Deposit transfers shares not assets
#471
code423n4
closed
1 year ago
4
QA Report
#470
code423n4
opened
2 years ago
0
recoverERC20() in StakingRewards shouldn't allow transfer of rewardToken because it belongs to users who stacked their funds and owner shouldn't be able to immediately withdraw those users funds
#469
code423n4
closed
1 year ago
2
QA Report
#468
code423n4
opened
2 years ago
0
QA Report
#467
code423n4
closed
1 year ago
0
Gas Optimizations
#466
code423n4
opened
2 years ago
1
Gas Optimizations
#465
code423n4
closed
1 year ago
1
QA Report
#464
code423n4
closed
1 year ago
0
QA Report
#463
code423n4
opened
2 years ago
0
First depositor can break share minting
#462
code423n4
closed
2 years ago
1
Improper access control in withdraw at Vault.sol
#461
code423n4
closed
2 years ago
2
Functions sendTokens() and setClaimTVL() and endEpoch() should have some checks to make sure Controller called them in right cases like check for epoch end time.
#460
code423n4
closed
1 year ago
3
Lack of check if token is a contract
#459
code423n4
closed
1 year ago
2
QA Report
#458
code423n4
closed
1 year ago
1
Possible DoS when retrieving the next epoch due to a out of bounds loop
#457
code423n4
closed
1 year ago
3
[H1] Improper access control in withdraw at SemifungibleVault.sol
#456
code423n4
closed
2 years ago
2
Gas Optimizations
#455
code423n4
closed
1 year ago
1
Gas Optimizations
#454
code423n4
opened
2 years ago
0
Owner can use changeTimewindow() in VaultFactory and deny other from depositing into the Vaults (As this parameter used in epoch start Time detection). owner can use this for his/her benefits when he sees there is an good opportunity. changing this parameters should be with time-lock mechanism
#453
code423n4
closed
2 years ago
1
QA Report
#452
code423n4
opened
2 years ago
0
Gas Optimizations
#451
code423n4
opened
2 years ago
0
VaultFactory.sol : changeTreasury, changeTimewindow, changeController - all these function will not update the vault parameters as they are read from memory.
#450
code423n4
closed
1 year ago
2
FIRST DEPOSITOR CAN BREAK MINTING OF SHARES
#449
code423n4
closed
2 years ago
1
Return value of transferFrom() does not check
#448
code423n4
closed
2 years ago
1
User fund lost because they can't withdraw() their funds before epoch startTime and they have to stuck in positions that become unprofitable even when epoch is not started
#447
code423n4
opened
2 years ago
2
Gas Optimizations
#446
code423n4
closed
1 year ago
1
QA Report
#445
code423n4
closed
1 year ago
1
QA Report
#444
code423n4
closed
1 year ago
0
Gas Optimizations
#443
code423n4
opened
2 years ago
0
Gas Optimizations
#442
code423n4
opened
2 years ago
1
QA Report
#441
code423n4
closed
1 year ago
0
Some of user funds stuck in contract because of division rounding error in beforeWithdraw()
#440
code423n4
closed
1 year ago
1
Gas Optimizations
#439
code423n4
closed
1 year ago
1
QA Report
#438
code423n4
closed
1 year ago
0
QA Report
#437
code423n4
opened
2 years ago
0
Gas Optimizations
#436
code423n4
opened
2 years ago
0
Gas Optimizations
#435
code423n4
opened
2 years ago
1
Griefing attack on the Vaults is possible, withdrawing the winning side stakes
#434
code423n4
opened
2 years ago
3
QA Report
#433
code423n4
closed
1 year ago
0
withdrawal of staking doesnt check for epochs
#432
code423n4
closed
1 year ago
1
Users can lose funds because It's possible to call withdraw() in Vault without call to endEpoch() by Controller.triggerEndEpoch(),
#431
code423n4
closed
1 year ago
5
Gas Optimizations
#430
code423n4
closed
1 year ago
1
Gas Optimizations
#429
code423n4
opened
2 years ago
0
QA Report
#428
code423n4
opened
2 years ago
0
Previous
Next