TW
Tripwire
Find contracts. Test them. Review real vulns.
Confirmed Findings
2,205
crit 60 high 1157
All Findings
46,184
Across all runs
Chain
1
Mainnet focus
Signal Mix
24239
high severity in results
Findings
filter + triage
Reset
Quick filters: candidate lane confirmed only critical high detector codex
Severity Tool Title Address Value USD Validated Confirmed Found Run
high slither DutchAuction.withdraw() (contracts/Auction.sol#216-237) ignores return value by token.transfer(owner,tokensLeft) (contracts/Auction.sol#237) 0x0c15da88abc4e8be39d66d83a21d6a54183250f9 $7,356.29 no 1 week ago 019b477e-be40-72f5-a268-2ebc04440b6b
high slither Reentrancy in SEEDDEX.migrateFunds(address,address[]) (contracts/Contract.sol#494-518): 0xd4cc0cda97ec567235b7019c655ec75cd361f712 $3,928.61 no 1 week ago 019b477e-b437-71e6-9deb-39cc35738843
medium slither Reentrancy in FxxxLandRush.receiveApproval(address,uint256,address,bytes) (contracts/Contract.sol#359-379): 0x3b0c1b99faafd625aacd70521d8da167807b3b82 $23,245.06 no 1 week ago 019b477e-b27a-70d8-8764-f580eaf201d6
medium slither Reentrancy in FxxxLandRush.finalise() (contracts/Contract.sol#418-421): 0x3b0c1b99faafd625aacd70521d8da167807b3b82 $23,245.06 no 1 week ago 019b477e-b27a-70d8-8764-f580eaf201d6
high slither FeeManager.claimFee(uint256) (contracts/Contract.sol#154-167) sends eth to arbitrary user 0xe87227adf0fd3f6e580e2825069a0f8e8da66ad0 $58,131.70 no 1 week ago 019b477e-b2ac-71d1-ba35-605f875a5f88
high slither SimpleExchange.gasExchangePrivate(address,uint256,uint256,uint256) (contracts/Contract.sol#692-716) uses arbitrary from in transferFrom: assert(bool)(EURO_TOKEN.transferFrom(gas... 0x4426d15ad435c156edc1183938ff47b37d3931fb $13,880.40 no 1 week ago 019b477e-b317-72ff-8bc4-eb27159612f3
high slither Reclaimable.reclaim(IBasicToken) (contracts/Contract.sol#332-345) sends eth to arbitrary user 0x4426d15ad435c156edc1183938ff47b37d3931fb $13,880.40 no 1 week ago 019b477e-b317-72ff-8bc4-eb27159612f3
medium slither Reentrancy in AccessControlled.setAccessPolicy(IAccessPolicy,address) (contracts/Contract.sol#107-125): 0x4426d15ad435c156edc1183938ff47b37d3931fb $13,880.40 no 1 week ago 019b477e-b317-72ff-8bc4-eb27159612f3
medium slither Reentrancy in Amplbitcratic.trade(address,uint256,address,uint256,uint256,uint256,address,uint8,bytes32,bytes32,uint256) (contracts/Contract.sol#219-232): 0x232ba9f3b3643ab28d28ed7ee18600708d60e5fe $9,713.63 no 1 week ago 019b477e-b00b-72d8-9a7d-41c502b090ac
medium slither Reentrancy in ETHERCExchange.trade(address,uint256,address,uint256,uint256,uint256,address,uint8,bytes32,bytes32,uint256) (contracts/Contract.sol#206-227): 0xd8d48e52f39ab2d169c8b562c53589e6c71ac4d3 $18,484.45 no 1 week ago 019b477e-adf7-7287-966d-84811f1c7826
medium slither Reentrancy in Treasury.initComptroller(_ITrComptroller) (contracts/Contract.sol#518-533): 0xdf08fb2056e0dde21dc623807853811b44c11ac8 $8,898.96 no 1 week ago 019b477e-ae85-7203-824d-5f40bec1d474
medium slither Reentrancy in Treasury.issueDividend() (contracts/Contract.sol#545-572): 0xdf08fb2056e0dde21dc623807853811b44c11ac8 $8,898.96 no 1 week ago 019b477e-ae85-7203-824d-5f40bec1d474
high slither LocalEthereumEscrows.transferToken(Token,address,uint256) (contracts/Contract.sol#407-416) ignores return value by _tokenContract.transfer(_transferTo,_value) (contracts/Contrac... 0x09678741bd50c3e74301f38fbd0136307099ae5d $15,050.36 no 1 week ago 019b477e-aaee-736d-9c98-0aa65bb34459
high slither LocalEthereumEscrows.transferMinusFees(address,uint256,uint128,uint16) (contracts/Contract.sol#360-371) sends eth to arbitrary user 0x09678741bd50c3e74301f38fbd0136307099ae5d $15,050.36 no 1 week ago 019b477e-aaee-736d-9c98-0aa65bb34459
high slither LocalEthereumEscrows.transferTokenFrom(Token,address,address,uint256) (contracts/Contract.sol#416-426) uses arbitrary from in transferFrom: _tokenContract.transferFrom(_transfer... 0x09678741bd50c3e74301f38fbd0136307099ae5d $15,050.36 no 1 week ago 019b477e-aaee-736d-9c98-0aa65bb34459
high slither LocalEthereumEscrows.transferTokenFrom(Token,address,address,uint256) (contracts/Contract.sol#416-426) ignores return value by _tokenContract.transferFrom(_transferTo,_transferF... 0x09678741bd50c3e74301f38fbd0136307099ae5d $15,050.36 no 1 week ago 019b477e-aaee-736d-9c98-0aa65bb34459
high slither Escapable.escapeHatch(address) (contracts/Contract.sol#171-185) ignores return value by token.transfer(escapeHatchDestination,balance) (contracts/Contract.sol#181-182) 0x0efef0b34638addc8833ba729ae20016b5f24ffc $536,460.10 no 1 week ago 019b477e-ab20-71e3-9b1a-b03a6b26e931
high slither Reentrancy in WithdrawContract.withdraw() (contracts/Contract.sol#357-388): 0x0efef0b34638addc8833ba729ae20016b5f24ffc $536,460.10 no 1 week ago 019b477e-ab20-71e3-9b1a-b03a6b26e931
high slither WithdrawContract.doPayment(uint256,address,ERC20,uint256) (contracts/Contract.sol#471-477) sends eth to arbitrary user 0x0efef0b34638addc8833ba729ae20016b5f24ffc $536,460.10 no 1 week ago 019b477e-ab20-71e3-9b1a-b03a6b26e931
medium codex External authority check can fail open on empty returndata 0x409f95f4600ffa420d7693f87a4d73e97fc580a6 $34.10 no 1 week ago 019b3836-4abd-7241-87ee-1dadda0bffa2
low codex `transfer(address,uint256)` appears to return no boolean value 0xebf1031e6690d9befe06dc19b0114c592694abf3 $26,819.05 no 1 week ago 019b3836-4533-7185-8d7b-fedf8e215cd2
low codex Payable fallback silently accepts ETH and unknown selectors 0xebf1031e6690d9befe06dc19b0114c592694abf3 $26,819.05 no 1 week ago 019b3836-4533-7185-8d7b-fedf8e215cd2
medium codex Nonstandard cumulative allowance accounting breaks ERC20 allowance semantics 0x1ba24206d11b5e82886d57491597f04120d14826 $310.00 no 1 week ago 019b3836-45c9-71a9-901e-4ae9cf03b8e0
low codex Allowance overwrite remains front-runnable on approve-and-callback path 0x77075d05891b7e9e8f6cba29e47f7b53c8cd600b $3.10 no 1 week ago 019b3836-45fc-71aa-8579-513441de656c
high codex Privileged mint path can arbitrarily increase balances and total supply 0x9535932d6d5262e5beff6a75b19f092be3b5fba8 $1,390.04 no 1 week ago 019b3836-472f-722a-a5f8-2981e57b8c6f
medium codex Owner-reachable SELFDESTRUCT path can sweep ETH and may brick the contract on some chains 0x9535932d6d5262e5beff6a75b19f092be3b5fba8 $1,390.04 no 1 week ago 019b3836-472f-722a-a5f8-2981e57b8c6f
medium codex Owner can freeze arbitrary accounts, enabling transfer censorship 0x9535932d6d5262e5beff6a75b19f092be3b5fba8 $1,390.04 no 1 week ago 019b3836-472f-722a-a5f8-2981e57b8c6f
medium codex Allowance accounting is cumulative and can become permanently unusable 0x049338e813eb0128ee1bff707a8748fadc7cd4d4 $310.00 no 1 week ago 019b3836-473e-70f1-9e66-6c2c1ba534a3
high codex Owner-controlled source address can redirect public token payouts to arbitrary holder balances 0x2083ba165b902a02a6bf931287dfedd50a4ddd21 $3.10 no 1 week ago 019b3836-3ff6-7390-948c-69931f834a03
medium codex Token-for-ETH payout path ignores CALL failure after moving balances 0x2083ba165b902a02a6bf931287dfedd50a4ddd21 $3.10 no 1 week ago 019b3836-3ff6-7390-948c-69931f834a03
medium codex `allowance()` appears to report the approved amount, not the remaining spendable amount 0x2083ba165b902a02a6bf931287dfedd50a4ddd21 $3.10 no 1 week ago 019b3836-3ff6-7390-948c-69931f834a03
medium codex Best-effort inferred redemption path ignores ETH payout failure 0x3456f6ea53a44d9bdf0d3da99254860531cb0af5 $9.30 no 1 week ago 019b3836-3ff9-7388-a9e7-a9e6cfa6cf52
low codex Financial logic appears to use manipulable block data as randomness 0x3456f6ea53a44d9bdf0d3da99254860531cb0af5 $9.30 no 1 week ago 019b3836-3ff9-7388-a9e7-a9e6cfa6cf52
low codex Payable runtime likely allows ETH to be trapped permanently 0xa9161619071b56d4cacbdd0045b8c12723fcb683 $9,300.00 no 1 week ago 019b3836-4018-7355-8e4c-3fb66cb0a7df
high codex Buy path can underflow the contract inventory balance and mint unbacked tokens 0x9325f6e7767d61d934d118433666d1120863bdcd $6.19 no 1 week ago 019b3836-401c-7174-a301-f7e6710e1b3b
medium codex Economic logic depends on miner-manipulable block data for randomness 0x9325f6e7767d61d934d118433666d1120863bdcd $6.19 no 1 week ago 019b3836-401c-7174-a301-f7e6710e1b3b
medium codex Redeem/sell path burns balance before an unchecked ETH payout 0x9325f6e7767d61d934d118433666d1120863bdcd $6.19 no 1 week ago 019b3836-401c-7174-a301-f7e6710e1b3b
high codex Public selector reaches variable low-level CALLs with possible ETH transfer 0x2d7eb3b1e243595386c8e15abdb91ecfa1785452 $4.96 no 1 week ago 019b3836-4025-70d6-a7b0-45af0967529d
medium codex External CALL result is discarded after prior state write on public path 0x2d7eb3b1e243595386c8e15abdb91ecfa1785452 $4.96 no 1 week ago 019b3836-4025-70d6-a7b0-45af0967529d
low codex `transfer(0xa9059cbb)` does not return the standard ERC20 boolean 0xb0c3ffc92314c9192214f202a0d3bd022caeaa94 $3.26 no 1 week ago 019b3836-402f-712f-9b83-79c8b5f61796
low codex Fallback and function entries accept ETH, with no evident recovery path 0xb0c3ffc92314c9192214f202a0d3bd022caeaa94 $3.26 no 1 week ago 019b3836-402f-712f-9b83-79c8b5f61796
medium codex `sell(uint256)` updates balances before a low-level payout CALL whose success is ignored 0xf5540ea5638cf4bda40e6e34ebc005095926aafc $3.10 no 1 week ago 019b3836-4034-73e0-8162-117f992b4342
medium codex `buy()` uses miner/validator-influenced block data as entropy for value-bearing outcomes 0xf5540ea5638cf4bda40e6e34ebc005095926aafc $3.10 no 1 week ago 019b3836-4034-73e0-8162-117f992b4342
medium codex Unchecked ETH payout can debit seller balances without confirming payment 0xbe1c8694b8457b4f8dd06eb11d236b4aa4d5b2b9 $6.20 no 1 week ago 019b3836-4037-72bb-9d6d-c3ea4fe3f99f
medium codex Standard ERC20 selector 0x23b872dd does not implement transferFrom semantics 0xbe1c8694b8457b4f8dd06eb11d236b4aa4d5b2b9 $6.20 no 1 week ago 019b3836-4037-72bb-9d6d-c3ea4fe3f99f
low codex `transferOwnership` selector does not update the owner slot used by auth checks 0xbe1c8694b8457b4f8dd06eb11d236b4aa4d5b2b9 $6.20 no 1 week ago 019b3836-4037-72bb-9d6d-c3ea4fe3f99f
medium codex allowance() is decoupled from transferFrom spendability 0x3e4dbe589c76cee0baba6cc00c3dcfebd68b4398 $0.33 no 1 week ago 019b3836-4043-7330-b23a-393c16cc71e9
low codex approveAndCall performs an untrusted external callback after recording approval 0x3e4dbe589c76cee0baba6cc00c3dcfebd68b4398 $0.33 no 1 week ago 019b3836-4043-7330-b23a-393c16cc71e9
medium codex Financial outcome appears to depend on manipulable block-derived entropy 0xf8c5d9608790974068051389378cc579cd09c93c $12.40 no 1 week ago 019b3836-4048-70c9-b749-a245db678d41
medium codex Unchecked ETH payout can debit balances even when the transfer fails 0xf8c5d9608790974068051389378cc579cd09c93c $12.40 no 1 week ago 019b3836-4048-70c9-b749-a245db678d41