sherlock-audit 2023-01-ajna-judging issues

sherlock-audit / 2023-01-ajna-judging

1 stars 0 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

Avci - repayDebt function in ERC20Pool, doesn't check borrowerAddress_ is submited by msg.sender

#184 github-actions[bot] closed 1 year ago
0
hyh - RewardsManager doesn't delete old bucket snapshot info on unstaking

#183 github-actions[bot] opened 1 year ago
0
Deivitto - Unsafe cast affects asset values like `interest_rate`

#182 github-actions[bot] closed 1 year ago
0
minhtrng - Manipulation of target utilization via flash loans

#181 github-actions[bot] closed 1 year ago
0
Avci - if someone uses Lyra LP as collateral will lose OP vault reward

#180 github-actions[bot] closed 1 year ago
0
oxcm - [M] Calling `claimRewards()` or `unstake()` when `ajnaToken` is insufficient will permanently lose part or all of the rewards

#179 github-actions[bot] closed 1 year ago
0
Avci - user can borrow more than what he puts as collateral

#178 github-actions[bot] closed 1 year ago
1
koxuan - fee on transfer token will cause accounting error

#177 github-actions[bot] closed 1 year ago
0
chainNue - Initial interest rate of a pair can be front run by any user to set it to max

#176 github-actions[bot] closed 1 year ago
0
Avci - the protocol interest update 12 hours can cause problem

#175 github-actions[bot] closed 1 year ago
0
0xheynacho - Vulnerability related to ‘Optimizer Bug Regarding Memory Side Effects of Inline Assembly’

#174 github-actions[bot] closed 1 year ago
0
Tajobin - LP tokens are permanently burned if they are transferred to the same account

#173 github-actions[bot] closed 1 year ago
0
james_wu - After auction settlement, remaining loan is not re-inserted to heap

#172 github-actions[bot] closed 1 year ago
2
0xheynacho - abi.encodePacked Allows Hash Collision

#171 github-actions[bot] closed 1 year ago
0
Deivitto - Wrong index on `_fundingVote`

#170 github-actions[bot] closed 1 year ago
0
0xheynacho - the initialize function that initializes important contract state can be called by anyone. initialize() function can be called anybody when the contract is not initialized

#169 github-actions[bot] closed 1 year ago
0
kaysoft - The `deployPool` function will fail for tokens that have decimals more than 18

#168 github-actions[bot] closed 1 year ago
0
0xheynacho - Bug when Copying Dirty Bytes Arrays to Storage

#167 github-actions[bot] closed 1 year ago
0
minhtrng - Incorrect EMA implementation leads to faulty interest rate updates

#166 github-actions[bot] closed 1 year ago
2
peanuts - LenderAuctions#_removeMaxCollateral() does not check bucket's backruptcyTime.

#165 github-actions[bot] closed 1 year ago
6
Qeew - View should be used instead of pure

#164 github-actions[bot] closed 1 year ago
0
Chinmay - Buypunk function of Cryptopunks in ERC721Pool is used incorrectly

#163 github-actions[bot] opened 1 year ago
1
hyh - ERC721Pool taker callback misreports quote funds whenever there was collateral amount rounding

#162 github-actions[bot] opened 1 year ago
0
Deivitto - Pools can't get deployed for certain tokens

#161 github-actions[bot] closed 1 year ago
0
james_wu - transferLps(): we should assume allowance can be greater than actual transfer amount

#160 github-actions[bot] closed 1 year ago
0
Chinmay - Multiple ERC721 pools can be created for the same subset of TokenIDs

#159 github-actions[bot] closed 1 year ago
0
hyh - drawDebt use inverted new LUP limit check, making user-specified LUP limit control void

#158 github-actions[bot] closed 1 year ago
2
james_wu - There is no way of partial LP transfer

#157 github-actions[bot] closed 1 year ago
0
Jeiwan - Anyone can transfer approved LP tokens

#156 github-actions[bot] opened 1 year ago
1
Chinmay - Missing nonreentrant check in Position Manager mint function

#155 github-actions[bot] closed 1 year ago
0
james_wu - currentOwner != newOwner check is needed in transferLPs and approveLpOwnership

#154 github-actions[bot] closed 1 year ago
0
Jeiwan - Pools cannot be deployed with the interest rate set to the minimal or the maximal value

#153 github-actions[bot] closed 1 year ago
0
Jeiwan - The kick penalty affects taking, increasing BPF and quote/collateral tokens require for a take

#152 github-actions[bot] closed 1 year ago
1
Blockian - Permanent freezing of unclaimed yield

#151 github-actions[bot] closed 1 year ago
4
Jeiwan - Unscaled value of collateral causes invalid LP price when taking and removing liquidity

#150 github-actions[bot] closed 1 year ago
2
Jeiwan - Quote and collateral tokens cannot be added at the maximal price

#149 github-actions[bot] closed 1 year ago
3
Jeiwan - Incorrect MOMP calculation in neutral price calculation

#148 github-actions[bot] opened 1 year ago
0
Jeiwan - Tokens with decimals less than 18 are not supported

#147 github-actions[bot] closed 1 year ago
0
tsvetanovv - Not all tokens have 18 decimals

#146 github-actions[bot] closed 1 year ago
0
Jeiwan - Anyone who approved quote tokens to a pool can be forced to take

#145 github-actions[bot] opened 1 year ago
0
Jeiwan - Loan can be "taken" after it became collateralized as a result of a recovered LUP

#144 github-actions[bot] closed 1 year ago
2
Blockian - Unsafe conversion may lead to Theft of unclaimed yield

#143 github-actions[bot] closed 1 year ago
0
Jeiwan - Missing bankruptcy detection when removing NFT collateral lets bad debt accumulate

#142 github-actions[bot] closed 1 year ago
0
Blockian - Unsafe conversion may lead to Theft of unclaimed yield

#141 github-actions[bot] closed 1 year ago
0
Jeiwan - CryptoPunks NFTs may be stolen via deposit frontrunning

#140 github-actions[bot] opened 1 year ago
1
hyh - scaledQuoteTokenAmount isn't updated to be collateral sell value in the quote token constraint case of _calculateTakeFlowsAndBondChange

#139 github-actions[bot] opened 1 year ago
0
james_wu - Auctions should be removed when the loan becomes over collateralized by external reason

#138 github-actions[bot] closed 1 year ago
0
Blockian - Unsafe conversion may lead to Theft of unclaimed yield

#137 github-actions[bot] closed 1 year ago
0
Blockian - Unsafe conversion may lead to Theft of unclaimed yield

#136 github-actions[bot] closed 1 year ago
0
Blockian - Permanent freezing of unclaimed yield

#135 github-actions[bot] closed 1 year ago
0