issues
search
code-423n4
/
2022-11-size-findings
1
stars
0
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Gas Optimizations
#289
code423n4
closed
2 years ago
1
QA Report
#288
code423n4
opened
2 years ago
1
QA Report
#287
code423n4
opened
2 years ago
1
Casting to uint128 when valiue can exceed uint128.max
#286
code423n4
closed
2 years ago
5
Gas Optimizations
#285
code423n4
closed
2 years ago
1
QA Report
#284
code423n4
closed
2 years ago
1
Gas Optimizations
#283
code423n4
opened
2 years ago
1
QA Report
#282
code423n4
closed
2 years ago
1
Wrong `bidIndex` calculation
#281
code423n4
closed
2 years ago
2
QA Report
#280
code423n4
closed
2 years ago
1
Gas Optimizations
#279
code423n4
closed
2 years ago
1
QA Report
#278
code423n4
closed
2 years ago
1
msg.sender token balance is not checked before calling safeTransferFrom function
#277
code423n4
closed
2 years ago
2
Seller can stole users assets by create and then cancel the auction
#276
code423n4
closed
2 years ago
3
A bidder can buy `baseToken` with low price by exploiting the DOS prevention measure
#275
code423n4
closed
2 years ago
4
QA Report
#274
code423n4
opened
2 years ago
1
Gas Optimizations
#273
code423n4
opened
2 years ago
1
A total of 3 risks: one with imperfect concurrency judgment logic, one with unrobust business logic, and one with unreasonable timestamp settings
#272
code423n4
closed
2 years ago
2
Gas Optimizations
#271
code423n4
closed
2 years ago
1
QA Report
#270
code423n4
opened
2 years ago
1
Gas Optimizations
#269
code423n4
closed
2 years ago
1
Solmate's safeTransfer function does not check the existence of the contract
#268
code423n4
closed
2 years ago
3
QA Report
#267
code423n4
opened
2 years ago
1
Providing the same address for the "base" and the "quote" tokens creates a risk of fund loss for the seller.
#266
code423n4
closed
2 years ago
2
Gas Optimizations
#265
code423n4
closed
2 years ago
1
Rebasing tokens as Base tokens for the auction could be stuck in the contract or mean loss of funds for the las person to withdraw
#264
code423n4
closed
2 years ago
4
Denial of service from malicious bidder by filling up the bid index up until 1000
#263
code423n4
closed
2 years ago
3
Gas Optimizations
#262
code423n4
closed
2 years ago
1
QA Report
#261
code423n4
closed
2 years ago
1
QA Report
#260
code423n4
closed
2 years ago
1
QA Report
#259
code423n4
closed
2 years ago
1
QA Report
#258
code423n4
opened
2 years ago
1
Can't cancel bid when in the reveal period.
#257
code423n4
closed
2 years ago
2
QA Report
#256
code423n4
closed
2 years ago
1
Any use of fee-on-transfer tokens as quote tokens in auctions will result in freeze or loss of funds for users.
#255
code423n4
closed
1 year ago
10
QA Report
#254
code423n4
closed
2 years ago
1
Return value of `ecMul()` not checked in `encryptMessage()`
#253
code423n4
closed
2 years ago
2
Attacker can steal any funds in the contract by state confusion (no preconditions)
#252
code423n4
opened
2 years ago
5
Gas Optimizations
#251
code423n4
closed
2 years ago
1
Special ERC20 support
#250
code423n4
closed
2 years ago
3
Some cases maybe cause the bids unable to get their funds back.
#249
code423n4
closed
2 years ago
2
Hardcoded gas in `ecMul()`
#248
code423n4
closed
2 years ago
2
QA Report
#247
code423n4
closed
2 years ago
1
Seller can steal all the bid fund by repeatedly calling `finalize()`
#246
code423n4
closed
2 years ago
2
Gas Optimizations
#245
code423n4
closed
2 years ago
1
Seller can game the `bidIndices[]` in `finalize()`
#244
code423n4
closed
2 years ago
3
Seller suffers a severe underpricing of the sold base tokens due to attacker griefing
#243
code423n4
opened
2 years ago
5
Bidder can steal all the base token by repeatedly calling `finalize()`
#242
code423n4
closed
2 years ago
2
Bidder can abuse the `bidIndices[]` in `finalize()`
#241
code423n4
closed
2 years ago
2
A seller may profit from manipulating its own auction by placing bids using another account
#240
code423n4
closed
1 year ago
7
Previous
Next