issues
search
sherlock-audit
/
2023-12-flatmoney-judging
9
stars
7
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Bony - Wrong calculation of `_globalPositions.marginDepositedTotal` in `FlatcoinVault.settleFundingFees`
#240
sherlock-admin2
closed
5 months ago
1
Afriauditor - Redundant validation maxAge < type(uint32).max in OracleModule:_getprice
#239
sherlock-admin
closed
5 months ago
2
ni8mare - `_getOnchainPrice` will return a price with 28 decimals rather than 18
#238
sherlock-admin2
closed
5 months ago
1
ni8mare - In `settleFundingFees`, `_globalPositions.marginDepositedTotal` can be assigned a wrong value because of improper comparisons.
#237
sherlock-admin
closed
5 months ago
1
0xblackskull - Chainlink's `latestRoundData()` might return stale or incorrect results
#236
sherlock-admin2
closed
5 months ago
1
imkapadia - Lack of Sequencer Uptime Check in OracleModule
#235
sherlock-admin
closed
5 months ago
1
dimulski - No check if Base L2 sequencer is down in Chainlink feeds
#234
sherlock-admin2
closed
5 months ago
1
vesla0xfa - Missing check if Base Sequencer is down in OracleModule
#233
sherlock-admin
closed
5 months ago
1
KingNFT - Liqudity providers effectively lost their Rocket pool staking rewards while integrating with the protocol
#232
sherlock-admin2
closed
4 months ago
11
0xvj - An attacker can bypass the leverage position NFT locking mechanism
#231
sherlock-admin
closed
5 months ago
1
santipu_ - Inability to Liquidate Certain Positions Due to Erroneous Stable Collateral Update
#230
sherlock-admin2
closed
5 months ago
2
bareli - Division by Zero:
#229
sherlock-admin
closed
5 months ago
2
bareli - Centralization Risk
#228
sherlock-admin2
closed
5 months ago
2
LTDingZhen - Malicious User can create a position that nobody can liquidate
#227
sherlock-admin
closed
4 months ago
16
bareli - refund mechanism
#226
sherlock-admin2
closed
5 months ago
2
ni8mare - Incorrect implementation of `checkSkewMax` in the `announceStableWithdraw` function
#225
sherlock-admin
closed
5 months ago
1
bareli - oracle manipulation
#224
sherlock-admin2
closed
5 months ago
1
dimulski - Users that create a limit order can get their long positions closed with a price less than the stop-loss price they specified.
#223
sherlock-admin
closed
5 months ago
2
shaka - DoS for functions with invariant modifiers
#222
sherlock-admin2
closed
4 months ago
4
shaka - `StableModule.executeWithdraw` reverts when the stable collateral per share is lower than 1e6
#221
sherlock-admin
closed
5 months ago
2
shaka - Users may not be able to adjust their leverage if there is not enough collateral in the vault
#220
sherlock-admin2
closed
5 months ago
2
shaka - Unhandled Chainlink price feed revert
#219
sherlock-admin
closed
5 months ago
2
shaka - It is not checked whether the sequencer is down when fetching the price from Chainlink
#218
sherlock-admin2
closed
5 months ago
1
alexzoid - When Secondary Offchain Oracle is Invalid, Primary Onchain Will Be Broken Too
#217
sherlock-admin
closed
5 months ago
2
shaka - Oracle can return different prices in same transaction
#216
sherlock-admin2
opened
5 months ago
34
shaka - Use of wrong collateral price
#215
sherlock-admin
closed
5 months ago
1
shaka - Accounting error for `marginDepositedTotal` in `settleFundingFees()`
#214
sherlock-admin2
closed
5 months ago
1
bareli - price manipulation
#213
sherlock-admin
closed
5 months ago
1
shaka - Trade fees can be avoided in limit orders
#212
sherlock-admin2
opened
5 months ago
14
shaka - `LeverageModule` NFT can be unlocked when there is a pending order
#211
sherlock-admin
closed
5 months ago
1
dimulski - Liquidations can be executed immediately after protocol is unpaused, not giving chance to users with long positions to increase their margin to account for the fees that they may have accrued
#210
sherlock-admin2
closed
5 months ago
1
ubl4nk - getKeeperFee is calculating the keeper fee based on the ETH price not rETH
#209
sherlock-admin
closed
5 months ago
2
KingNFT - Unfair distribution while ````stableCollateralTotal```` can not cover all traders' profit
#208
sherlock-admin2
closed
4 months ago
4
imkapadia - User can not cancel immediately
#207
sherlock-admin
closed
5 months ago
1
xiaoming90 - Positions are immediately liquidated after protocol resumes
#206
sherlock-admin2
closed
5 months ago
2
xiaoming90 - Assumption that newest timestamp equate to fresher price
#205
sherlock-admin
closed
4 months ago
2
xiaoming90 - Unlocked points can be locked up again
#204
sherlock-admin2
closed
5 months ago
1
xiaoming90 - Leverage Calculation
#203
sherlock-admin
closed
4 months ago
3
xiaoming90 - Existing limit order is not cancelled
#202
sherlock-admin2
closed
4 months ago
2
imkapadia - Lack of validation of `priceLowerThreshold` and `priceUpperThreshold` value
#201
sherlock-admin
closed
5 months ago
2
xiaoming90 - Unlock of points can be delayed infinitely
#200
sherlock-admin2
closed
4 months ago
2
xiaoming90 - Incorrect slippage check during withdraw announcement
#199
sherlock-admin
closed
5 months ago
2
xiaoming90 - Losses of some long traders can eat into the margins of others
#198
sherlock-admin2
opened
5 months ago
13
Afriauditor - Afriauditor high OracleModule::_getPrice returns only Stale price
#197
sherlock-admin
closed
5 months ago
2
xiaoming90 - Long traders unable to withdraw their assets
#196
sherlock-admin2
opened
5 months ago
18
xiaoming90 - Long trader's deposited margin can be wiped out
#195
sherlock-admin
opened
5 months ago
16
xiaoming90 - Malicious keepers can manipulate the price when executing an order
#194
sherlock-admin2
opened
5 months ago
13
xiaoming90 - Incorrect skew check formula used during withdrawal
#193
sherlock-admin
closed
4 months ago
22
xiaoming90 - Liquidation will result in an underflow revert
#192
sherlock-admin2
closed
4 months ago
9
xiaoming90 - No incentive to liquidate positions where `settledMargin < 0`
#191
sherlock-admin
closed
4 months ago
2
Previous
Next