issues
search
code-423n4
/
2022-11-looksrare-findings
0
stars
0
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
User can drain all ether from LooksRareAggregator contract
#230
code423n4
closed
1 year ago
4
`_returnETHIfAny()` can silently fail, leading to an `originator` not getting the expected refund
#229
code423n4
closed
1 year ago
2
QA Report
#228
code423n4
closed
1 year ago
1
Any user can collect tokens trapped in the aggregator
#227
code423n4
closed
1 year ago
2
QA Report
#226
code423n4
opened
1 year ago
2
calling execute() may lead to stealing funds if some ERC20 is stuck on the contract
#225
code423n4
closed
1 year ago
2
calling execute() may lead to stealing funds if some ETH is stuck on the contract
#224
code423n4
closed
1 year ago
3
QA Report
#223
code423n4
opened
1 year ago
3
transferFrom is used for ERC721 transfers instead of safeTransferFrom.
#222
code423n4
opened
1 year ago
5
QA Report
#221
code423n4
opened
1 year ago
5
Gas Optimizations
#220
code423n4
opened
1 year ago
3
QA Report
#219
code423n4
closed
1 year ago
2
Gas Optimizations
#218
code423n4
closed
1 year ago
2
QA Report
#217
code423n4
closed
1 year ago
1
Use `safeTransferFrom()` Instead of `transferFrom()` for ERC721
#216
code423n4
closed
1 year ago
4
ERC721 token could be locked in contracts
#215
code423n4
opened
1 year ago
4
Doing transfer in unbounded loop may lead to revert.
#214
code423n4
opened
1 year ago
4
ETH could be locked in LooksRareAggregator
#213
code423n4
closed
1 year ago
2
QA Report
#212
code423n4
closed
1 year ago
1
QA Report
#211
code423n4
closed
1 year ago
3
Without strictly verifying the attribution of balance and the size of the balance when refunding, hackers may use the attack to steal all ERC20 tokens!
#210
code423n4
closed
1 year ago
3
QA Report
#209
code423n4
opened
1 year ago
3
Possible malicious/unintended code execution from delegatecall leading to unexpected consequences, countermeasures needed
#208
code423n4
closed
1 year ago
3
Using `ERC721::transferFrom` instead of `ERC721::safeTransferFrom` can result in tokens stuck forever
#207
code423n4
closed
1 year ago
3
`ERC20EnabledLooksRareAggregator` won’t work with fee-on-transfer tokens
#206
code423n4
closed
1 year ago
3
Approval mechanism won’t work correctly with USDT and other tokens that have approval race protection
#205
code423n4
closed
1 year ago
4
Owner can set fee in `LooksRareAggregator::setFee` to be 100%
#204
code423n4
closed
1 year ago
5
QA Report
#203
code423n4
opened
1 year ago
2
Mitigation measures in case ownership compromise due to private info leakage
#202
code423n4
closed
1 year ago
2
QA Report
#201
code423n4
closed
1 year ago
3
Gas Optimizations
#200
code423n4
closed
1 year ago
2
QA Report
#199
code423n4
closed
1 year ago
2
QA Report
#198
code423n4
closed
1 year ago
2
Contract `LooksRareAggregator` does not verify the proxy has code when `delegatecall()` is called on the proxy
#197
code423n4
closed
1 year ago
2
QA Report
#196
code423n4
opened
1 year ago
2
Orders take an array of tokenIds & amounts, but only executes for the first item
#195
code423n4
closed
1 year ago
4
QA Report
#194
code423n4
opened
1 year ago
1
QA Report
#193
code423n4
opened
1 year ago
3
Gas Optimizations
#192
code423n4
closed
1 year ago
2
OwnableTwoStep delay not set
#191
code423n4
closed
1 year ago
7
QA Report
#190
code423n4
closed
1 year ago
1
Gas Optimizations
#189
code423n4
closed
1 year ago
1
Gas Optimizations
#188
code423n4
closed
1 year ago
1
QA Report
#187
code423n4
closed
1 year ago
1
QA Report
#186
code423n4
closed
1 year ago
1
Gas Optimizations
#185
code423n4
closed
1 year ago
2
Gas Optimizations
#184
code423n4
closed
1 year ago
2
QA Report
#183
code423n4
opened
1 year ago
3
QA Report
#182
code423n4
opened
1 year ago
3
QA Report
#181
code423n4
opened
1 year ago
3
Previous
Next