code-423n4 2024-07-basin-validation issues

code-423n4 / 2024-07-basin-validation

0 stars 0 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

validating qa

#129 thebrittfactor opened 3 months ago
0
re-running validated hms

#128 thebrittfactor opened 3 months ago
0
adding validated HMs

#127 thebrittfactor opened 3 months ago
0
Arithmetic Precision Issue: Division Before Multiplication

#126 c4-bot-10 closed 3 months ago
1
QA Report

#125 c4-bot-10 closed 3 months ago
1
QA Report

#124 c4-bot-8 closed 3 months ago
1
Division by Zero Error in updateReserve Function

#123 c4-bot-1 closed 3 months ago
1
precision loss due to division before multiplicaton

#122 c4-bot-7 closed 3 months ago
1
Potential Division by Zero Errors in getBandC Function

#121 c4-bot-5 closed 3 months ago
1
QA Report

#120 c4-bot-5 closed 3 months ago
1
Divergence between swap and liquidity pricing functions

#119 c4-bot-5 opened 3 months ago
1
Incorrect Condition Check in `decodeWellData` Function

#118 c4-bot-6 closed 3 months ago
0
Gas Optimizations

#117 c4-bot-4 closed 3 months ago
1
QA Report

#116 c4-bot-5 closed 3 months ago
1
The `__ReentrancyGuard_init()` function should be called before any other initializations in the `init` function to ensure that reentrancy protection is established as early as possible.

#115 c4-bot-4 closed 3 months ago
1
Inaccurate Reserve Initialization in `calcReserveAtRatioLiquidity` Function Leads to Suboptimal Swap Pricing

#114 c4-bot-2 opened 3 months ago
1
QA Report

#113 c4-bot-1 closed 3 months ago
1
QA Report

#112 c4-bot-3 closed 3 months ago
1
[H-1] Incorrect check while decoding decimals of provided pair of tokens

#111 c4-bot-3 closed 3 months ago
0
Reserve address validation is incorrect; can lead to Division by Zero Error

#110 c4-bot-8 closed 3 months ago
1
"calcLpTokenSupply" should revert

#109 c4-bot-8 closed 3 months ago
0
Absence of `onlyOwner` modifier in `upgradeTo` and `upgradeToAndCall` function.

#108 c4-bot-7 closed 3 months ago
0
Incorrectly checking for `decimal1` with `decimal0`.

#107 c4-bot-4 closed 3 months ago
0
Stable2::decodeWellData() - Incorrect check leads to return of wrong decimal precision of decimal1 inside decimals array

#106 c4-bot-3 closed 3 months ago
0
QA Report

#105 c4-bot-10 closed 3 months ago
1
Stale `lp token supply` used causes wrong current price calculations

#104 c4-bot-2 opened 3 months ago
0
Most functions of `Stable2.sol` are incompatible with `Well.sol`, allowing malicious users to steal funds.

#103 c4-bot-4 opened 3 months ago
0
Incorrect `if` condition is used in the `decodeWellData()` function in `Stable2` contract

#102 c4-bot-3 closed 3 months ago
0
Due to no access control on `WellUpgradeable::_authorizeUpgrade()` anyone can change the implementation contract and can destroy the main Proxy contract.

#101 c4-bot-10 closed 3 months ago
0
Potential Inaccurate Reserve Calculations Due To Hardcoded decimals

#100 c4-bot-9 closed 3 months ago
0
QA Report

#99 c4-bot-5 closed 3 months ago
1
Incorrect Rate Calculations Due to Insufficient Decimal Handling

#98 c4-bot-1 opened 3 months ago
0
QA Report

#97 c4-bot-4 closed 3 months ago
1
Anyone can upgrade the implementation of WellUpgradeable

#96 c4-bot-7 closed 3 months ago
0
Incorrect Rounding Behaviour in calcReserve Function

#95 c4-bot-5 opened 3 months ago
1
No Storage Gap For Upgradeable Contracts (child as well as parent contracts)

#94 c4-bot-9 closed 3 months ago
5
Incorrect decimal interpretation in the function `decodeWellData` leads to incorrect results

#93 c4-bot-5 closed 3 months ago
0
Unprotected initializer in 'initNoWellToken' function allowing unauthorized reinitialization of the contract

#92 c4-bot-10 closed 3 months ago
1
Inaccurate LP Token Supply Calculation Due to Convergence Issue

#91 c4-bot-3 opened 3 months ago
1
Incorrect reserve updates for when `targetPrice` is exactly in the middle of high and low price

#90 c4-bot-1 opened 3 months ago
0
Incorrect calculations across multiply functions due to wrong decimal assignment can be harnessed by an attacker to steal from the protocol.

#89 c4-bot-4 closed 3 months ago
0
QA Report

#88 c4-bot-2 closed 3 months ago
1
Decimal Handling Flaw in decodeWellData Function Leads to Potential Miscalculations

#87 c4-bot-8 closed 3 months ago
0
Incorrect Decimal Checking in the `Stable2::decodeWellData()` function

#86 c4-bot-2 closed 3 months ago
0
QA Report

#85 c4-bot-3 closed 3 months ago
0
`getRatiosFromPriceLiquidity` lacks any price equality handling mechanism

#84 c4-bot-6 closed 3 months ago
1
StableSwap pricing for some wells would be wrong

#83 c4-bot-9 closed 3 months ago
0
Lack of Input Sanitization in Stable2LUT1.sol

#82 c4-bot-9 closed 3 months ago
1
Misuse of UUPS Upgrade Pattern and Minimal Proxies in WellUpgradeable.sol

#81 c4-bot-8 closed 3 months ago
0
Delegate Call Vulnerability in WellUpgradeable.sol

#80 c4-bot-7 closed 3 months ago
0