issues
search
sherlock-audit
/
2024-01-rio-vesting-escrow-judging
3
stars
2
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
0brxce - Initialize Incorrect Access Control
#122
sherlock-admin
closed
9 months ago
2
detectiveking - Problems with voting transfers across the codebase, leading to incorrect allocation of voting power
#121
sherlock-admin2
closed
9 months ago
1
sonny2k - There is no way to recover unclaimed vesting from recipient if the recipient lost their access to account and isFullyRevokable = false
#120
sherlock-admin
closed
9 months ago
1
goluu - [Calculating token is susceptible to precision loss due to division before multiplication](https://github.com/sherlock-audit/2024-01-rio-vesting-escrow-g01u/issues/1)
#119
sherlock-admin2
closed
9 months ago
1
sonny2k - Missing check on vesting end when deploying a new Vesting Escrow
#118
sherlock-admin
closed
9 months ago
1
recursiveEth - Front-Running Vulnerability in and `VestingEscrow.sol:revokeAll()` Function: Exploiting block.timestamp for Unintended Token Claims.
#117
sherlock-admin2
closed
9 months ago
1
0xlucky - Funds can be lost if any recipient or Owner is blacklisted
#116
sherlock-admin
closed
9 months ago
0
detectiveking - `recoverERC20` method does not correctly handled Proxied Tokens
#115
sherlock-admin2
closed
9 months ago
1
sonny2k - Missing validation if votingToken in OZVotingAdaptor is the same as the token specified by VestingEscrowFactory
#114
sherlock-admin
closed
9 months ago
1
recursiveEth - Front-Running Vulnerability in `VestingEscrow.sol:revokeUnvested()` Function: Exploiting block.timestamp for Unintended Token Claims.
#113
sherlock-admin2
closed
9 months ago
1
detectiveking - Reentrancy in `recoverERC20` allows drainage of all funds, even locked ones
#112
sherlock-admin
closed
9 months ago
2
recursiveEth - Fee-on-transfer tokens aren't supported
#111
sherlock-admin2
closed
9 months ago
2
0xMosh - Owner can maliciously revoke the unclaimed tokens even after the vesting duration has been ended .
#110
sherlock-admin
closed
9 months ago
2
recursiveEth - Missing Zero-Address Checks in `VestingEsrcowFactory.sol:updateVotingAdaptor` and `VestingEsrcowFactory.sol:changeManager` Functions,could lead to unintended consequences.
#109
sherlock-admin2
closed
9 months ago
1
kgothatso - `VestingEscrow :: delegate ` cause withdraw to a delegated function and loss all funds
#108
sherlock-admin
closed
9 months ago
2
recursiveEth - Ensuring Distinct Roles Owner and Manager Addresses Should Not Be the Same, as it could lead to confusion or unintended consequences.
#107
sherlock-admin2
closed
9 months ago
2
millietez - Absence of validation for input parameters
#106
sherlock-admin
closed
9 months ago
2
kgothatso - Reentrancy attack and loss of funds
#105
sherlock-admin2
closed
9 months ago
2
millietez - token regeneration leading to system overload
#104
sherlock-admin
closed
9 months ago
1
0xmystery - Front-Running Vulnerability in revokeAll Function of VestingEscrow Contract
#103
sherlock-admin2
closed
9 months ago
1
jasonxiale - `VestingEscrowFactory.deployVestingContract` deploys contracts using clone, which is suspicious of the reorg attack
#102
sherlock-admin
closed
9 months ago
1
Bauer - `deployVestingContract()` lacks validation for start time and end time
#101
sherlock-admin2
closed
9 months ago
1
0brxce - Unlimited Voting Access for OZ Governance Contracts
#100
sherlock-admin
closed
9 months ago
1
kgothatso - `VestingEscrow :: claim ` owner can front run the contract and cause a DOS attack and steal all funds
#99
sherlock-admin2
closed
9 months ago
2
CL001 - The revokeAll() method are subject to front-run attack
#98
sherlock-admin
closed
9 months ago
1
fugazzi - Missing function to cast vote with params
#97
sherlock-admin2
closed
9 months ago
12
0xk3y - Inadequate Validation of `startTime` parameter in VestingEscrowFactory Contract
#96
sherlock-admin
closed
9 months ago
1
kgothatso - `OZVotingAdaptor :: recoverEther ` loss of funds to a blacklisted address can cause a DOS attack
#95
sherlock-admin2
closed
9 months ago
0
jasonxiale - `VestingEscrow.revokeAll` can be front-run by `VestingEscrow.claim`
#94
sherlock-admin
closed
9 months ago
1
jasonxiale - `VestingEscrow.revokeAll` doesn't conform with `VestingEscrow.claim`
#93
sherlock-admin2
closed
9 months ago
2
iberry - The error logical operator && for the condition exist at _checkOwnerOrManager
#92
sherlock-admin
closed
9 months ago
1
OrderSol - Owner has excessive access to user funds
#91
sherlock-admin2
closed
9 months ago
2
0xBhumii - Access control vulnerability
#90
sherlock-admin
closed
9 months ago
0
John_Femi - Anyone can cast a vote through the Voting Adaptor
#89
sherlock-admin2
closed
9 months ago
2
itsabinashb - VotingEscrow::Unexpected behaviour in voting power
#88
sherlock-admin
closed
9 months ago
2
0xBhumii - Missing zero address check
#87
sherlock-admin2
closed
9 months ago
2
Irissme - Lack of Address Validation in recoverERC20 Function
#86
sherlock-admin
closed
9 months ago
0
phenom - Potential Contract Drain Due to Lack of User Investment Tracking
#85
sherlock-admin2
closed
9 months ago
1
Irissme - Lack of Validity Check for Governor and VotingToken Addresses
#84
sherlock-admin
closed
9 months ago
0
John_Femi - totalLocked value can be released immediately after creation
#83
sherlock-admin2
closed
9 months ago
0
slowfi - Add min/max boundaries to vesting time
#82
sherlock-admin
closed
9 months ago
0
slowfi - Unauthorized Asset Recovery
#81
sherlock-admin2
closed
9 months ago
1
slowfi - Incomplete Return Value in OZVotingAdapter
#80
sherlock-admin
closed
9 months ago
1
psb01 - The start time of the vesting contract can be set to any value.
#79
sherlock-admin2
closed
9 months ago
0
itsabinashb - VestingEscrow::locked tokens is not tracked correctly which results less token to be revoked by owner
#78
sherlock-admin
closed
9 months ago
3
Al-Qa-qa - Users can Front-run `VestingEscrow::revokeAll()` preventing owner form taking the `unclaimed` tokens
#77
sherlock-admin2
closed
9 months ago
1
0xBhumii - Possibility of Arithamatic Overflow or Underflow
#76
sherlock-admin
closed
9 months ago
2
0xlamide - Function check owner in EscrowVesting.sol not functioning as expected
#75
sherlock-admin2
closed
9 months ago
1
AlexCzm - Recoverable funds functions send the value to `recipient`
#74
sherlock-admin
closed
9 months ago
2
0xBhumii - Access control vulnerability
#73
sherlock-admin2
closed
9 months ago
1
Next