issues
search
code-423n4
/
2023-07-moonwell-findings
1
stars
0
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Analysis
#357
code423n4
closed
11 months ago
2
QA Report
#356
code423n4
closed
11 months ago
1
exitMarket was missing reentrancy protection.
#355
code423n4
closed
11 months ago
3
QA Report
#354
code423n4
closed
11 months ago
2
QA Report
#353
code423n4
closed
11 months ago
1
Liquidator can seize more tokens than the borrower has as collateral, leading to an arithmetic underflow and locking collateral.
#352
code423n4
closed
10 months ago
4
`updatedAt` TIMESTAMP IS NOT USED TO DETECT STALE ORACLE PRICES
#351
code423n4
closed
11 months ago
3
QA Report
#350
code423n4
closed
11 months ago
2
QA Report
#349
code423n4
opened
11 months ago
3
QA Report
#348
code423n4
closed
11 months ago
1
MALICIOUS USER CAN PREVENT A BORROWER FROM ADDING LIQUIDITY TO THIER POSITION TO AVOID LIQUIDATION
#347
code423n4
closed
10 months ago
10
The project's reputation and user funds can be affected if a clear invariant is not met
#346
code423n4
closed
11 months ago
3
the `getChainlinkPrice()` function calling the latestRoundData without using the try/catch to avoid bad possible scenario
#345
code423n4
closed
11 months ago
4
## [M-07] ERC20 return values not checked
#344
code423n4
closed
11 months ago
5
BORROWERS CAN AVOID LIQUIDATIONS, IF ERC777 TOKEN IS CONFIGURED AS AN `emissionToken`
#343
code423n4
opened
11 months ago
7
Current `setUnderlyingPrice` and `setDirectPrice` open to incorrect liquidation of users' positions and result in financial losses for users
#342
code423n4
closed
10 months ago
3
Divide before multiply
#341
code423n4
closed
11 months ago
3
missing check for the max/min price in the `chainlinkOracle.sol` contract
#340
code423n4
opened
11 months ago
6
QA Report
#339
code423n4
opened
11 months ago
2
Inaccurate implementation of ECDSA creates signature malleability
#338
code423n4
closed
11 months ago
5
the `getPrice()` in ` function did not support mTokens with more than 18 decimals
#337
code423n4
opened
11 months ago
4
Missing a Proposal Canceling Functionality
#336
code423n4
opened
11 months ago
5
Potential Exploitation due to Lack of Price Range Checks in Oracle Implementation
#335
code423n4
closed
11 months ago
5
the unbounded approve function allows a front-running vulnerability due to setting unlimited allowance.
#334
code423n4
closed
10 months ago
3
No Receive functiion in TemporalGovernor contract
#333
code423n4
closed
11 months ago
4
QA Report
#332
code423n4
opened
11 months ago
2
Potential Stale Data Due to Inadequate Round Validation
#331
code423n4
closed
11 months ago
3
Analysis
#330
code423n4
opened
11 months ago
1
Chainlink's latestRoundData might return stale or incorrect results
#329
code423n4
closed
11 months ago
3
QA Report
#328
code423n4
opened
11 months ago
6
QA Report
#327
code423n4
closed
11 months ago
2
No limit on the number of emission configs per MToken in `MultiRewardDistributor`
#326
code423n4
opened
11 months ago
8
`excuteProposal` can fail due to Wormhole guardian change
#325
code423n4
opened
11 months ago
6
QA Report
#324
code423n4
closed
11 months ago
2
`ChainlinkPriceOracle` direct prices can be out of date
#323
code423n4
opened
11 months ago
5
deploy uses same `initialMintAmount` for all tokens
#322
code423n4
closed
11 months ago
2
`emissionToken` cannot be reused
#321
code423n4
opened
11 months ago
6
malicious `emissionToken` could poison rewards for a market
#320
code423n4
opened
11 months ago
11
Borrow interest rate model open for higher rate than it designed
#319
code423n4
closed
11 months ago
2
`emissionConfigOwner` owner can DoS emission end time
#318
code423n4
opened
11 months ago
6
QA Report
#317
code423n4
closed
11 months ago
2
QA Report
#316
code423n4
closed
11 months ago
2
only `guardian` can change `guardian`
#315
code423n4
opened
11 months ago
6
`TemporalGovernor` can be bricked by `guardian`
#314
code423n4
opened
11 months ago
6
Analysis
#313
code423n4
opened
11 months ago
6
same `emissionToken` on different markets can steal each others emissions
#312
code423n4
opened
11 months ago
8
`call` in `TemporalGovernor` doesn't check return value
#311
code423n4
opened
11 months ago
5
QA Report
#310
code423n4
opened
11 months ago
2
`TemporalGovernor` can send value but has no `receive`
#309
code423n4
closed
11 months ago
2
`fastTrackProposalExecution` doesn't check `intendedRecipient`
#308
code423n4
opened
11 months ago
5
Previous
Next