Lucene search
K

9 matches found

Code423n4
Code423n4
โ€ขadded 2023/08/04 12:0 a.m.โ€ข9 views

BigBang liquidations causes YieldBox-tokens to be locked in contract

Lines of code Vulnerability details Impact When a position gets liquidated in BigBang the contract will receive YieldBox-assetId-tokens of which some are sent to the liquidator and penrose-fee-receiver. The rest will get stuck in the contract and cannot be claimed as fees in refreshPenroseFees...

6.9AI score
Exploits0
Code423n4
Code423n4
โ€ขadded 2023/07/09 12:0 a.m.โ€ข10 views

Upgraded Q -> 2 from #198 [1688918565387]

Judge has assessed an item in Issue 198 as 2 risk. The relevant finding follows: QA1. UlyssesPool.maxRedeem needs to consider the protocol fees. --- The text was updated successfully, but these errors were encountered: All reactions...

6.9AI score
Exploits0
Code423n4
Code423n4
โ€ขadded 2023/01/30 12:0 a.m.โ€ข16 views

Protocol fees can be withdrawn multiple times in Erc20Quest

Lines of code Vulnerability details The withdrawFee function present in the Erc20Quest contract can be used to withdraw protocol fees after a quest has ended, which are sent to the protocol fee recipient address: function withdrawFee public onlyAdminWithdrawAfterEnd...

6.8AI score
Exploits0
Code423n4
Code423n4
โ€ขadded 2023/01/27 12:0 a.m.โ€ข8 views

sqrtDiscriminant can be calculated wrong

Lines of code Vulnerability details Impact Due to the wrong calculation of short and long tokens during the leverage and deleverage process, the users can suffer financial loss while the protocol will lose fees Proof of Concept The protocol uses leverage function to deposit short tokens and recei...

6.6AI score
Exploits0
Code423n4
Code423n4
โ€ขadded 2022/12/12 12:0 a.m.โ€ข4 views

Admin can call claim fee multiple times with no restriction

Lines of code Vulnerability details Impact Admin can call claim fee multiple times to drain the fund in the pool Proof of Concept Admin can perform certain actions in the Pool.sol function adminActionuint256 action, uint16 val, address recipient external checkReentrancytrue, true; // reentrancy...

7AI score
Exploits0
Code423n4
Code423n4
โ€ขadded 2022/08/15 12:0 a.m.โ€ข10 views

MarketFees's treasury can have potentially a malicious admin

Lines of code Vulnerability details Impact / Proof of Concept In contracts/FoundationTreasury.sol, an attacker can frontrun a call to initialize to register as an admin. If the address of this treasury is shared or is already shared with NFTDropMarket's constructor line 83, then on line 87,...

6.8AI score
Exploits0
Code423n4
Code423n4
โ€ขadded 2022/06/26 12:0 a.m.โ€ข16 views

instantUnstake function can be frontrunned with fee increase

Lines of code Vulnerability details Impact instantUnstake allows user to unstake their stakingToken for a fee paid to the liquidity providers. This fee could be changed up to 100% any moment by admin. Malicious admin could frontrun users instantUnstake transaction and set fee to any value using...

6.7AI score
Exploits0
Code423n4
Code423n4
โ€ขadded 2022/05/01 12:0 a.m.โ€ข9 views

Protocol fees during origination are based on another fee rather than on the loan amount

Lines of code Vulnerability details Impact Protocol fee revenue will be much lower than expected. If the average NFT loaned on the platform is worth $900, openFeeShare will be $9, and protocolFeeShare will be only $0.90. There would have to be more than 50,000 such loans to cover the cost of this...

6.8AI score
Exploits0
Code423n4
Code423n4
โ€ขadded 2021/10/27 12:0 a.m.โ€ข11 views

FeePoolV0.sol#distributeMochi() will unexpectedly flush treasuryShare, causing the protocol fee cannot be properly accounted for and collected

Handle WatchPug Vulnerability details distributeMochi will call buyMochi to convert mochiShare to Mochi token and call shareMochi to send Mochi to vMochi Vault and veCRV Holders. It wont touch the treasuryShare. However, in the current implementation, treasuryShare will be reset to 0. This is...

6.9AI score
Exploits0
Rows per page
Query Builder