Any user can claim rewards infinitely from the market without respecting the accrued rewards time

Lines of code Vulnerability details Impact calculateSupplyRewardsForUser updates the user accrued rewards based on the user balance of mTokens & on global and user indicies difference which is the time difference between the last reard claim and the current time . Comptroller contract: one of the...

LocalTapiola: Enumeration in unsubscribe -function of /omatalousuk (viestinta.lahitapiola.fi)

Hi, I would like to report an issue where malicious user can unsubscribe any customer email subscription from viestinta.lahitapiola.fi. I am not sure if this in scope, but i took the liberty to bring forward to you, so that you can fix the bug. Impact Subscribe or unsubscribe is always a...