issues
search
code-423n4
/
2024-01-salty-findings
4
stars
3
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Checks for Zero Balance
#1016
c4-bot-2
closed
5 months ago
1
Gas Optimizations
#1015
c4-bot-8
opened
5 months ago
4
QA Report
#1014
c4-bot-10
opened
5 months ago
1
Gas Optimizations
#1013
c4-bot-7
opened
5 months ago
1
Timelock Bypass
#1012
c4-bot-9
closed
5 months ago
1
If chainlink oracle get deprecated, there is no way to update new address
#1011
c4-bot-9
closed
4 months ago
2
Malicious borrower can spam borrows with less than dust positions leading to many insolvent ans unliquidatable positions in the protocol
#1010
c4-bot-9
closed
4 months ago
6
Persistent Contract Call revert prevents finalizing a ballot
#1009
c4-bot-9
opened
5 months ago
8
Analysis
#1008
c4-bot-9
opened
5 months ago
3
Lack of voting power checkpoint per account and proposal can be used to decide proposals
#1007
c4-bot-3
closed
4 months ago
9
Confirmation wallet can bypass 30-day timelock completely or postpone confirmed wallet change infinitely
#1006
c4-bot-3
closed
5 months ago
2
Slippage and Front-Running
#1005
c4-bot-5
closed
5 months ago
1
Vested Salt tokens not sent to the DAO as required
#1004
c4-bot-5
closed
5 months ago
4
QA Report
#1003
c4-bot-9
closed
5 months ago
1
Gas Optimizations
#1002
c4-bot-8
opened
5 months ago
1
When the pool is unwhitelisted the SALT in the emitter is stuck
#1001
c4-bot-4
opened
5 months ago
3
DOS creation of proposal
#1000
c4-bot-5
closed
5 months ago
3
Borrower can frontrun liquidator to avoid liquidation of their insolvent position
#999
c4-bot-5
closed
5 months ago
2
There is No Refund Mechanism for Excess Ether Sent for Confirming or Rejecting Wallet Proposals in `receive()` function in `ManagedWallet` contract
#998
c4-bot-8
closed
4 months ago
4
WBTC Price becomes problematic if WBTC depegs
#997
c4-bot-8
closed
5 months ago
2
Rounding Errors
#996
c4-bot-5
closed
5 months ago
1
BootstrapBallot contract is rendered useless after finalizeBallot is invoked when startExchangeNo exceeds startExchangeYes
#995
c4-bot-1
closed
5 months ago
2
Gas Optimizations
#994
c4-bot-5
opened
5 months ago
1
Centralization Risk
#993
c4-bot-9
closed
5 months ago
1
Parameters can be adjusted to below or above the specified range in DAOConfig.sol and PriceAggregator.sol
#992
c4-bot-9
closed
5 months ago
2
Creation of token whitelisting proposals can be DOS'd
#991
c4-bot-2
opened
5 months ago
9
When a user’s borrow position becomes insolvent within cooldown period, the position cannot be liquidated
#990
c4-bot-2
closed
5 months ago
4
If the confirmation wallet rejects the proposal, the managedwallet will never be able to upgrade
#989
c4-bot-6
closed
5 months ago
3
tokens transfer fees.
#988
c4-bot-7
closed
5 months ago
1
Token unwhitelisting does not update rewards earned by the token's Pools
#987
c4-bot-1
closed
4 months ago
8
Some SALT rewards can get stuck in the Airdrop contract.
#986
c4-bot-2
closed
4 months ago
4
Precision loss in Airdrop contract
#985
c4-bot-7
closed
5 months ago
1
Unstaking xSALT does not remove cast votes meaning user can double vote
#984
c4-bot-10
closed
4 months ago
6
QA Report
#983
c4-bot-7
closed
5 months ago
1
Attacker can manipulate the requiredQuorum for Different Ballots at once and prevent finalization
#982
c4-bot-2
closed
4 months ago
7
Cooldown in _decreaseUserShare can cause Liquidity to fail
#981
c4-bot-2
closed
5 months ago
2
Confirmation proposals can be front run and DOS'd
#980
c4-bot-2
closed
4 months ago
8
Alphabet Case inconsitency can break the proposeCountryExclusion(...) and proposeCountryInclusion(...) functionality - See Coded POC
#979
c4-bot-2
closed
4 months ago
4
QA Report
#978
c4-bot-9
opened
5 months ago
1
No Quorum Requirement
#977
c4-bot-9
closed
5 months ago
3
Gas Optimizations
#976
c4-bot-10
opened
5 months ago
1
QA Report
#975
c4-bot-10
opened
5 months ago
1
It is possible to create a proposal with an invalid parameter type
#974
c4-bot-5
closed
4 months ago
6
LACK OF SLIPPAGE PROTECTION IN THE SWAP OPERATION PERFORMED IN THE `Liquidity._dualZapInLiquidity` FUNCTION
#973
c4-bot-3
closed
5 months ago
2
Division Leading to Loss of Precision
#972
c4-bot-6
closed
5 months ago
1
Users cannot be liquidated during cooldown
#971
c4-bot-6
closed
5 months ago
3
THE `PriceAggregator.setInitialFeeds` FUNCTION CAN BE CALLED MULTIPLE TIMES BY THE `owner` EVEN THOUGH IT SHOULD BE CALLED ONLY ONCE AS PER THE FUNCTION DESIGN
#970
c4-bot-9
opened
5 months ago
7
ManagedWallet: Rejecting a proposal to change the wallet addresses prohibits future proposals
#969
c4-bot-8
closed
4 months ago
5
Using the collateral assets' oracle price at 100% of its value to mint USDS without a fee can be used for arbitrage
#968
c4-bot-8
closed
5 months ago
2
QA Report
#967
c4-bot-2
opened
5 months ago
1
Previous
Next