sherlock-audit 2024-03-goat-trading-judging issues

sherlock-audit / 2024-03-goat-trading-judging

3 stars 2 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

AhmedAdam - lock of funds for the initial liquidity provider under some cicumstances

#102 sherlock-admin3 closed 7 months ago
7
0xk3y - Unable to Burn LP Token When Pool is Imbalanced

#101 sherlock-admin2 closed 8 months ago
1
AhmedAdam - a liquidity provider can grief LP's users rewards

#100 sherlock-admin4 closed 8 months ago
0
ayoashy - Potential DOS

#99 sherlock-admin3 closed 8 months ago
10
AhmedAdam - Initial Liquidity provider can bypass the withdrawal limit

#98 sherlock-admin2 closed 8 months ago
0
Valy001 - takeOverPool function does not consider the situation where it directly turn into amm mode - High

#97 sherlock-admin4 closed 8 months ago
0
0xAadi - Griefing Attack by Front-Running During Initial Liquidity Provision

#96 sherlock-admin3 closed 8 months ago
1
Afriaudit - LP token can be burnt during lock period.

#95 sherlock-admin2 closed 8 months ago
5
AhmedAdam - Initial Liquidity provider can bypass the withdrawal limit

#94 sherlock-admin4 opened 8 months ago
2
Valy001 - Incorrect calculation in GoatLibrary::getTokenAmountOutPresale function can cause errorneous of amountTokenOut - High

#93 sherlock-admin3 closed 8 months ago
0
FonDevs - potential DOS attack because of strict check on `balanceToken`

#92 sherlock-admin2 closed 8 months ago
1
bareli - Inheritance:

#91 sherlock-admin4 closed 8 months ago
0
Thanos - single point of failure.

#90 sherlock-admin3 closed 8 months ago
0
bareli - Approval race condition:

#89 sherlock-admin2 closed 8 months ago
1
FonDevs - incomplete check before first mint

#88 sherlock-admin4 closed 8 months ago
0
bareli - Burning funds:

#87 sherlock-admin3 closed 8 months ago
0
0xk3y - Potential Liquidity Depletion in Swap Function Due to inadequate Conditional Check

#86 sherlock-admin2 closed 8 months ago
1
ayoashy - Misplacement of mintVars.isFirstMint = true; in GoatV1Pair::mint, Potentially Disrupting Functionality and Undermining Protocol Objectives

#85 sherlock-admin4 closed 8 months ago
1
Valy001 - Sending token before GoatV1Pai contract creating can cause possible DOS attack - Medium

#84 sherlock-admin3 closed 8 months ago
1
bareli - Lack of input validation

#83 sherlock-admin2 closed 8 months ago
1
aycozynfada - anybody can withdraw Liqidity Provider rewards by calling withdrawFees()

#82 sherlock-admin4 closed 8 months ago
9
FastTiger - An attacker can use the `swap` function to receive more tokens with a smaller amount of ETH.

#81 sherlock-admin3 closed 7 months ago
2
aycozynfada - Incorrect Fee Update Address in GoatV1Pair.burn when using removeLiquidityETH()

#80 sherlock-admin2 closed 7 months ago
17
santiellena - `GoatV1Pair` may never enter pre-sale period due to DoS

#79 sherlock-admin4 closed 7 months ago
16
Valy001 - Sending Ethers to GoatV1Pair contract before creating can cause possible DOS attack - Medium

#78 sherlock-admin3 closed 8 months ago
1
FonDevs - A Denial-of-Service (DOS) attack may occur due to a check on the WETH balance in the mint function

#77 sherlock-admin2 closed 8 months ago
1
m4k2 - Risk of Asset Loss Due to Non-Atomic Functions

#76 sherlock-admin4 closed 7 months ago
2
recursiveEth - Potential Token Lock-Up Due to Insufficient Liquidity Transfer

#75 sherlock-admin3 closed 8 months ago
0
kennedy1030 - Mev check cannot prevent sandwich attack.

#74 sherlock-admin2 closed 7 months ago
2
aycozynfada - Incorrect Evaluation of Presale Deadline Due to Incorrect Equality Operator in withdrawExcessToken()

#73 sherlock-admin4 closed 7 months ago
2
recursiveEth - Potential Inconsistencies in Deadline Handling Between removeLiquidity and removeLiquidityETH Functions

#72 sherlock-admin3 closed 8 months ago
1
Thanos - Missing check if address (to) in burn function is authorized to redeem _weth/_token.

#71 sherlock-admin2 closed 8 months ago
0
recursiveEth - Lack of Minimum Threshold Check in setFeeToTreasury Function

#70 sherlock-admin4 closed 8 months ago
1
zzykxx - It's possible to create pairs that cannot be taken over

#69 sherlock-admin3 opened 8 months ago
3
m4k2 - Potential Denial of Service Attack via MEV Protection at a very low cost

#68 sherlock-admin2 closed 8 months ago
1
zzykxx - The router is not compatible with fee on transfers tokens

#67 sherlock-admin4 opened 8 months ago
7
recursiveEth - Vulnerability in createPair Function Allows Creation of Unusable Pools

#66 sherlock-admin3 closed 8 months ago
0
zzykxx - The `takeOverPool()` can be frontrun to steal funds

#65 sherlock-admin2 closed 7 months ago
11
zzykxx - Constant `k` is calculated incorrectly when performing swaps during pre-sale

#64 sherlock-admin4 closed 8 months ago
6
zzykxx - Liquidity provider fees can be stolen from any pair

#63 sherlock-admin3 opened 8 months ago
12
Silvermist - GoatV1Pair.sol#mint can be easily broken

#62 sherlock-admin2 closed 8 months ago
1
aycozynfada - possible Incorrect WETH Amount Adjustment in the addLiquidity() function

#61 sherlock-admin4 closed 8 months ago
0
Thanos - missing zero address transfer check.

#60 sherlock-admin3 closed 8 months ago
0
recursiveEth - Title: Lack of Allowance Validation in ERC20 Token Contract's transferFrom Function

#59 sherlock-admin2 closed 8 months ago
1
0xhashiman - Loss of funds for liquidity providers

#58 sherlock-admin4 closed 8 months ago
12
MaanVader - [M-4] Precision Loss Due to Truncation in getWethAmountOutAmm Function

#57 sherlock-admin3 closed 8 months ago
0
m4k2 - Potential Denial of Service Attack on user swapping

#56 sherlock-admin2 closed 8 months ago
1
MohammedRizwan - Fee on transfer tokens are not supported by protocol functions

#55 sherlock-admin4 closed 8 months ago
2
m4k2 - Liquidity Pool Deposit Accessibility

#54 sherlock-admin3 closed 8 months ago
1
m4k2 - Breakage of K Invariant

#53 sherlock-admin2 closed 7 months ago
1