issues
search
sherlock-audit
/
2024-02-rubicon-finance-judging
5
stars
3
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
irresponsible - Partition rounds up which can cause orders to be unfillable because of revert
#31
sherlock-admin2
closed
7 months ago
1
KingNFT - Fillers' profit can be stolen by MEVbot or Block Proposer
#30
sherlock-admin
closed
7 months ago
2
blutorque - `PartialFillLib::partition()` unexpectedly reverts with `PartialFillOverflow` error, due to rounding up the output tokens.
#29
sherlock-admin2
closed
7 months ago
41
trauki - Medium - Flawed logic inside `getFeeOutputs()` function
#28
sherlock-admin
closed
7 months ago
1
0xDetermination - Arbitrary external call in order validation flow can cause OOG revert/error and grief the order filler
#27
sherlock-admin2
closed
7 months ago
1
Kow - Base fee will be initialised to the wrong amount when `RubiconFeeController` is deployed using a proxy
#26
sherlock-admin
closed
7 months ago
1
Tychai0s - Uninitialized Implementation Vulnerability in RubiconFeeController.sol
#25
sherlock-admin2
closed
7 months ago
1
Tychai0s - BaseGladiusReactor can be hijacked
#24
sherlock-admin
closed
7 months ago
1
Tychai0s - Lack of Storage gap in ProxyConstructor.sol
#23
sherlock-admin2
closed
7 months ago
1
thank_you - Apply fee when false still adds a base fee
#22
sherlock-admin
closed
7 months ago
2
merlinboii - Draining Remaining Native Tokens with Dust Spending
#21
sherlock-admin2
closed
7 months ago
3
mstpr-brainbot - RubiconFeeController contract initializes the "baseFee" in constructor but the contract is upgradable
#20
sherlock-admin
closed
7 months ago
6
mstpr-brainbot - Token with low decimals can have problems on fee and partial filling calculations
#19
sherlock-admin2
closed
7 months ago
13
bigbick123456789000 - Orders are considered valid even after their deadline is reached
#18
sherlock-admin
closed
7 months ago
1
pkqs90 - Orders with equal `decayStartTime` and `decayEndTime` benefit the filler instead of swapper
#17
sherlock-admin2
closed
7 months ago
2
pkqs90 - Contract upgrades may cause DoS due to `MAX_FEE` constraint
#16
sherlock-admin
closed
7 months ago
1
pkqs90 - When `applyFee` is set to false, the base fee continues to be applied rather than being disabled.
#15
sherlock-admin2
closed
7 months ago
1
bigbick123456789000 - Lack of Explicit Error Handling in Token Transfers within _prepare and _fill Functions
#14
sherlock-admin
closed
7 months ago
1
bigbick123456789000 - Lack of Protection Against Replay Attacks in PartialFillLib Contract Causing Repeated Messages
#13
sherlock-admin2
closed
7 months ago
1
bigbick123456789000 - Lack of Explicit Owner Verification in Authentication Mechanism
#12
sherlock-admin
closed
7 months ago
1
calpaliu - Avoiding the Use of address(this).balance in BaseGladiusReactor Contract
#11
sherlock-admin2
closed
7 months ago
1
Sta1400 - Front-running vulnerability in `BaseGladiusReactor`
#10
sherlock-admin
closed
7 months ago
1
Bauchibred - No check for sequencer uptime can lead to flawed implementations of the dutch orders since they could fail or execute at bad prices
#9
sherlock-admin2
closed
7 months ago
1
DJINN - Use of floating pragma
#8
sherlock-admin
closed
7 months ago
1
Kow - Filling orders may revert due to inconsistent fee rounding
#7
sherlock-admin2
closed
7 months ago
1
yujin718 - executeWithCallback() always ignore _fill()
#6
sherlock-admin
closed
7 months ago
1
itsabinashb - BaseGladiusReactor.sol::`_fill()`:There is no check for whether the token has code or not
#5
sherlock-admin2
closed
7 months ago
1
0xDemon - Initialize function can be front run by attacker
#4
sherlock-admin
closed
7 months ago
1
AgileJune - initialize() in RubiconFeeController can be frontrun
#3
sherlock-admin2
closed
7 months ago
1
AgileJune - setOwner will always revert without setting owner
#2
sherlock-admin
closed
7 months ago
1
cawfree - Rounding error in fee comparison logic resulting in denial of service.
#1
sherlock-admin2
closed
7 months ago
1
Previous