issues
search
sherlock-audit
/
2023-02-blueberry-judging
12
stars
5
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
cducrest-brainbot - UniswapV2Oracle fails for pairs of token with more than 18 decimals
#317
github-actions[bot]
closed
1 year ago
0
banditx0x - Bad Debt Attack Using Uniswap v3 Flash Manipulation and Ichi Vault
#316
github-actions[bot]
closed
1 year ago
5
peanuts - 0 value transfer for fees should not be allowed
#315
github-actions[bot]
closed
1 year ago
0
GimelSec - Should not use Mockup contracts in production
#314
github-actions[bot]
closed
1 year ago
0
GimelSec - `getPositionIdsByOwner()` will always be reverted if `nextPositionId` is too big
#313
github-actions[bot]
closed
1 year ago
0
tives - UniV3 sandwiching attacks are possible in withdrawal functions
#312
github-actions[bot]
closed
1 year ago
0
GimelSec - Lenders didn't receive their interest.
#311
github-actions[bot]
closed
1 year ago
0
GimelSec - `BlueBerryBank.addBank` doesn't check whether `token` is the underlying token of `cToken`
#310
github-actions[bot]
closed
1 year ago
0
sakshamguruji - Protocol's usability becomes very limited when access to Chainlink oracle data feed is blocked
#309
github-actions[bot]
closed
1 year ago
0
GimelSec - Vulnerable OZ version
#308
github-actions[bot]
closed
1 year ago
0
ctf_sec - Missing deadline check allows pending transaction to be maliciously executed When performing Uniswap V3 Swap
#307
github-actions[bot]
closed
1 year ago
0
Udsen - USING VULNERABLE DEPENDENCY OF OPENZEPPELIN
#306
github-actions[bot]
closed
1 year ago
0
cducrest-brainbot - CoreOracle support returns false for supported tokens
#305
github-actions[bot]
closed
1 year ago
0
mgf15 - getPrice() function can return out dated price
#304
github-actions[bot]
closed
1 year ago
0
peanuts - maxDelayTime for oracle is too lenient
#303
github-actions[bot]
closed
1 year ago
0
tsvetanovv - Missing deadline checks when perform a swap
#302
github-actions[bot]
closed
1 year ago
1
Jeiwan - Wrong amount of LP tokens is removed from ICHI vaults when closing a position
#301
github-actions[bot]
closed
1 year ago
0
Avci - getprice function of the oracle assumes the tokens decimal is limited to 18
#300
github-actions[bot]
closed
1 year ago
0
Jeiwan - Spent token approvals can potentially cause indefinite DoS
#299
github-actions[bot]
closed
1 year ago
4
ctf_sec - IchiLpOracle is vulnerable to manipulation
#298
github-actions[bot]
closed
1 year ago
0
Jeiwan - Users may borrow more than the `MaxLTV` value of a strategy
#297
github-actions[bot]
closed
1 year ago
0
sayan_ - gas limit DoS via unbounded loop
#296
github-actions[bot]
closed
1 year ago
0
Jeiwan - Missing transaction expiration check in `withdrawInternal`
#295
github-actions[bot]
closed
1 year ago
0
Jeiwan - Users may not repay their debt partially when above the maximal LTV
#294
github-actions[bot]
closed
1 year ago
1
Jeiwan - `getPositionIdsByOwner` may be unavailable, breaking integrations
#293
github-actions[bot]
closed
1 year ago
0
Jeiwan - `UniswapV3AdapterOracle` always reports 0 price, allowing maximal borrowing and removal of entire collateral
#292
github-actions[bot]
closed
1 year ago
0
Jeiwan - Full debt of a position cannot be repaid, forcing users into unavoidable liquidations
#291
github-actions[bot]
closed
1 year ago
1
Jeiwan - Liquidations are enabled when repayments are disabled, causing borrowers to lose funds without a chance to repay
#290
github-actions[bot]
opened
1 year ago
0
Jeiwan - Earned interest is lost when withdrawing tokens lent to a bank
#289
github-actions[bot]
closed
1 year ago
0
Jeiwan - Partial liquidations leave the risk unchanged, causing more liquidations
#288
github-actions[bot]
closed
1 year ago
2
Jeiwan - Earned interest is not accounted in position's risk value, causing increased debt accumulation
#287
github-actions[bot]
closed
1 year ago
0
y1cunhui - Inflation and Deflation tokens not supported for vaults
#286
github-actions[bot]
closed
1 year ago
0
Jeiwan - `getDebtValue` doesn't accrue borrow interest, breaking integrations and allowing more than maximal LTV
#285
github-actions[bot]
closed
1 year ago
1
WatchDogs - The Oracle data feed is insufficiently validated.
#284
github-actions[bot]
closed
1 year ago
0
ctf_sec - Interest should not be accrued when repay is disabled
#283
github-actions[bot]
closed
1 year ago
0
Ch_301 - Users can avoid paying fee to the treasury, by using `openPosition()`
#282
github-actions[bot]
closed
1 year ago
1
shark - `safeApprove()` should approve 0 first
#281
github-actions[bot]
closed
1 year ago
0
y1cunhui - `WIchiFarm.burn` may fail with safeApprove
#280
github-actions[bot]
closed
1 year ago
0
tsvetanovv - Missing the feature to remove an user from whitelist
#279
github-actions[bot]
closed
1 year ago
1
Breeje - "First Deposit Bug" in cToken (CompoundV2 Fork) can lead to Stealing of funds for first depositor in `SoftVault`
#278
github-actions[bot]
closed
1 year ago
0
XKET - Liquidation logic is not correct
#277
github-actions[bot]
closed
1 year ago
0
XKET - Underlying tokens can be locked in `BlueBerryBank` after `withdrawLend`
#276
github-actions[bot]
closed
1 year ago
0
Breeje - `doCutDepositFee` and `doCutWithdrawFee` doesn't take `FEES ON TRANSFER TOKENS` in account
#275
github-actions[bot]
closed
1 year ago
0
XKET - There is no way to remove/change existing strategies in IchiVaultSpell
#274
github-actions[bot]
closed
1 year ago
0
HonorLt - A change in ERC1155 whitelist can block liquidations
#273
github-actions[bot]
closed
1 year ago
1
PRAISE - Possible Manipulation of Token prices.
#272
github-actions[bot]
closed
1 year ago
0
Breeje - `pragma experimental ABIEncoderV2` Used is deprecated
#271
github-actions[bot]
closed
1 year ago
0
cducrest-brainbot - AggregatorOracle allows for twice price deviation
#270
github-actions[bot]
closed
1 year ago
0
Ch_301 - Users can avoid paying fee to the treasury
#269
github-actions[bot]
closed
1 year ago
5
Breeje - All `initialize` methods can be Frontrun because of lack of access control
#268
github-actions[bot]
closed
1 year ago
0
Previous
Next