code-423n4 2022-10-inverse-findings issues

code-423n4 / 2022-10-inverse-findings

0 stars 0 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

Gas Optimizations

#554 code423n4 opened 2 years ago
1
Gas Optimizations

#553 code423n4 closed 2 years ago
1
A freshly added collateral token will cause the disadvantage of the borrowing price for the first borrowers.

#552 code423n4 closed 2 years ago
1
Gas Optimizations

#551 code423n4 closed 2 years ago
1
Consideration of tokens with decimals higher than 18

#550 code423n4 closed 2 years ago
5
Gas Optimizations

#549 code423n4 closed 2 years ago
1
QA Report

#548 code423n4 opened 2 years ago
1
Oracle data feed is insufficiently validated

#547 code423n4 closed 2 years ago
3
`Oracle.sol`:`setFeed` function shouldn't allow `tokenDecimals` to be set through parameter

#546 code423n4 closed 2 years ago
3
Using deprecated Chainlink function `latestAnswer` could result in wrong borrowing power

#545 code423n4 closed 2 years ago
4
Deprecated ChainLink API

#544 code423n4 closed 2 years ago
4
Hardcoded prices are subject to be abused

#543 code423n4 closed 2 years ago
5
Return value of token.transfer() is not checked

#542 code423n4 closed 1 year ago
4
Lender can be swapped out by governance without repayment

#541 code423n4 closed 2 years ago
3
Wrong decimals calculation in Oracle contract

#540 code423n4 closed 1 year ago
11
Gas Optimizations

#539 code423n4 opened 2 years ago
1
Gas Optimizations

#538 code423n4 closed 2 years ago
1
Chainlink's `latestAnswer()` is deprecated and should be checked for stale data

#537 code423n4 closed 2 years ago
4
QA Report

#536 code423n4 opened 2 years ago
1
QA Report

#535 code423n4 opened 2 years ago
1
DBR `totalSupply` function doesn't factor pending accrued debt

#534 code423n4 closed 1 year ago
4
Oracle assumes token and feed decimals will be limited to 18 decimals

#533 code423n4 opened 2 years ago
10
Gas Optimizations

#532 code423n4 opened 2 years ago
1
QA Report

#531 code423n4 opened 2 years ago
1
`Oracle`: Use of deprecated `latestAnswer`

#530 code423n4 closed 2 years ago
4
Oracle data can be stale which can lead to wrong calculations for collateral price.

#529 code423n4 closed 2 years ago
4
Gas Optimizations

#528 code423n4 opened 2 years ago
1
QA Report

#527 code423n4 opened 2 years ago
1
Oracle Price Calculation will Return Wrong Price for Certain Tokens

#526 code423n4 closed 2 years ago
6
Gas Optimizations

#525 code423n4 closed 2 years ago
1
QA Report

#524 code423n4 closed 2 years ago
1
QA Report

#523 code423n4 opened 2 years ago
1
Returning users could get forced replenished

#522 code423n4 closed 2 years ago
2
Repayment/Burn of due tokens is not enforced

#521 code423n4 closed 2 years ago
3
Gas Optimizations

#520 code423n4 closed 2 years ago
1
`forceReplenish` could be frontrun to avoid paying interests

#519 code423n4 closed 2 years ago
7
Fixed price can be extremely dangerous on volatile market conditions

#518 code423n4 closed 1 year ago
5
QA Report

#517 code423n4 opened 2 years ago
1
QA Report

#516 code423n4 opened 2 years ago
1
Gas Optimizations

#515 code423n4 opened 2 years ago
1
Important function like `setGov()` should be a 2 step procedure

#514 code423n4 closed 2 years ago
1
QA Report

#513 code423n4 opened 2 years ago
1
Flawed chainlink integration

#512 code423n4 closed 2 years ago
4
Centralization risk, single operator private key can be used to hurt user's funds

#511 code423n4 closed 2 years ago
3
QA Report

#510 code423n4 closed 2 years ago
1
The Function Contraction In Fed Contract Lacks Access Control

#509 code423n4 closed 2 years ago
4
QA Report

#508 code423n4 closed 2 years ago
1
globalSupply variable in Fed.sol could be 0 and revert contraction function

#507 code423n4 closed 2 years ago
1
Deposit functionality of market can be bricked for current SimpleERC20Escrow and GovTokenEscrow implementations

#506 code423n4 closed 2 years ago
3
Gas Optimizations

#505 code423n4 opened 2 years ago
1

Previous Next