TW
Tripwire
Find contracts. Test them. Review real vulns.
Confirmed Findings
2,205
crit 60 high 1157
All Findings
46,184
Across all runs
Chain
1
Mainnet focus
Signal Mix
24239
high severity in results
Findings
filter + triage
Reset
Quick filters: candidate lane confirmed only critical high detector codex
Severity Tool Title Address Value USD Validated Confirmed Found Run
low codex Fallback exposes an unchecked low-level CALL with ETH value 0x1f75047233517dcf67970d9e3c3bb385cb647f30 $31.00 no 1 week ago 019b3836-2cf4-7353-96b1-83115f1b65d9
high codex Owner can freeze arbitrary senders via a hidden boolean mapping 0x41a7820c86f4bea29e6c9239aeb0fbdba12dd790 $3.10 no 1 week ago 019b3836-2d81-72b3-ba7f-1259b9b4588e
high codex Owner-only mint can arbitrarily inflate supply 0x41a7820c86f4bea29e6c9239aeb0fbdba12dd790 $3.10 no 1 week ago 019b3836-2d81-72b3-ba7f-1259b9b4588e
medium codex allowance() does not track remaining spend; transferFrom uses a separate spent-amount mapping 0x41a7820c86f4bea29e6c9239aeb0fbdba12dd790 $3.10 no 1 week ago 019b3836-2d81-72b3-ba7f-1259b9b4588e
low codex Fallback silently accepts arbitrary calldata and ETH 0x6e724ccc59c1a72f733a31b41c8594413363d80b $310.00 no 1 week ago 019b3836-2d7f-71dc-9831-d21ecfe711e8
low codex `transfer` is non-standard: no boolean return and throw-style failures consume all gas 0x6e724ccc59c1a72f733a31b41c8594413363d80b $310.00 no 1 week ago 019b3836-2d7f-71dc-9831-d21ecfe711e8
high codex Owner-controlled blacklist/freeze path can block selected holders from transferring 0x89205a3a3b2a69de6dbf7f01ed13b2108b2c43e7 $2,767.63 no 1 week ago 019b3836-2d66-70b7-8bcd-c67d896eb78c
medium codex Privileged mint function can inflate balances and total supply without any cap visible in bytecode 0x89205a3a3b2a69de6dbf7f01ed13b2108b2c43e7 $2,767.63 no 1 week ago 019b3836-2d66-70b7-8bcd-c67d896eb78c
low codex Allowance accounting appears non-standard: `allowance()` returns the approved cap, while `transferFrom` tracks spending in a separate mapping 0x89205a3a3b2a69de6dbf7f01ed13b2108b2c43e7 $2,767.63 no 1 week ago 019b3836-2d66-70b7-8bcd-c67d896eb78c
low codex `transfer` decodes calldata without an explicit length check 0xbd247894dc95d7022363ac7c12a507a5db2e689c $71.26 no 1 week ago 019b3836-2d76-71c8-97dc-996004a4b3cf
low codex Contract appears payable and can trap ETH permanently 0xbd247894dc95d7022363ac7c12a507a5db2e689c $71.26 no 1 week ago 019b3836-2d76-71c8-97dc-996004a4b3cf
high codex State-changing authorization/accounting path is keyed off tx.origin 0x55b9a11c2e8351b4ffc7b11561148bfac9977855 $13,246.61 no 1 week ago 019b3836-28c4-7299-bb59-544b4f97f4bc
medium codex External CALLs occur before storage/accounting updates on selector 0xfd6e248e 0x55b9a11c2e8351b4ffc7b11561148bfac9977855 $13,246.61 no 1 week ago 019b3836-28c4-7299-bb59-544b4f97f4bc
low codex ABI entrypoints lack calldata length validation 0xf8fda34d8376327d223e547d044c253ecf8d40c4 $279.00 no 1 week ago 019b3836-28d6-7140-a070-9daf3631c187
low codex Contract accepts ETH but exposes no recovery path 0xf8fda34d8376327d223e547d044c253ecf8d40c4 $279.00 no 1 week ago 019b3836-28d6-7140-a070-9daf3631c187
high codex Public entrypoints can trigger non-zero-value external calls from contract balance 0x98f66626d9ddb4688ef7aed01e32375d04ca1f7d $21.80 no 1 week ago 019b3836-2901-713f-8003-3b6a8dabb217
medium codex Oracle/provider selection is publicly reconfigurable 0x98f66626d9ddb4688ef7aed01e32375d04ca1f7d $21.80 no 1 week ago 019b3836-2901-713f-8003-3b6a8dabb217
low codex Privileged kill-switch can selfdestruct the contract and sweep ETH 0x98f66626d9ddb4688ef7aed01e32375d04ca1f7d $21.80 no 1 week ago 019b3836-2901-713f-8003-3b6a8dabb217
low codex Contract accepts ETH with no visible recovery path 0x87adf4d3e1eb630d41405c6ea5c0021c5b6614ff $1.55 no 1 week ago 019b3836-24ca-7168-9a2d-3c548ff7765c
medium codex Unchecked hardcoded ETH sweep can silently trap funds 0xb5eb68417e27752b4da0aaf835b7fb3d74b46371 $0.00 no 1 week ago 019b3836-2695-700f-a0d0-7f5a831b9921
low codex Fallback and visible token methods appear payable, so ETH can be trapped 0xd82a1b174822778dfaa385529468577b700749a1 $620.00 no 1 week ago 019b3836-279d-701e-8206-b3db0d62d8ad
low codex Fallback path accepts ETH and appears to trap it permanently 0xd0af1e9919f6321f1dfef2d9cbb60ef7a10d6c99 $31,000.00 no 1 week ago 019b3836-26af-7038-a6a2-7e46c2772286
low codex `transfer` selector appears to be non-standard and returns no boolean 0xd0af1e9919f6321f1dfef2d9cbb60ef7a10d6c99 $31,000.00 no 1 week ago 019b3836-26af-7038-a6a2-7e46c2772286
low codex Contract appears payable and can permanently lock ETH 0x94f27b5141e17dd8816242d752c7be8e6764bd22 $310.00 no 1 week ago 019b3836-24d7-73a9-8b25-f729a127fa1e
medium codex `transfer` path appears ERC-20-incompatible because it returns no boolean value 0x7a47bacaab34d55a5485be5c40ffd2768659716d $465.00 no 1 week ago 019b3836-273f-721b-b9f8-9c61d5da95a3
low codex Recipient balance credit uses unchecked addition 0xac514f05160d2723aa7fb27bf98abf347dd26d2d $3,100.00 no 1 week ago 019b3836-258e-70dc-8c36-57a18d72465b
low codex `transfer` appears to return `false` even when balances are updated successfully 0xac514f05160d2723aa7fb27bf98abf347dd26d2d $3,100.00 no 1 week ago 019b3836-258e-70dc-8c36-57a18d72465b
high detector ETH value transfer possible 0x89230fdc3b73851da77ebec3cc9f340e48ac0df1 $7.99 yes yes 1 week ago 019b3836-26f7-7228-9bbe-fced5cba1b95
high detector Untrusted CALL target/value reachable 0x89230fdc3b73851da77ebec3cc9f340e48ac0df1 $7.99 yes yes 1 week ago 019b3836-26f7-7228-9bbe-fced5cba1b95
low detector External CALL present 0xf8197299bcd27f586fe7583a63e49c913e6c5a06 $7,734.50 yes yes 1 week ago 019b3836-26d8-7089-9f36-baa82ab3bacc
high detector ETH value transfer possible 0x2faa316fc4624ec39adc2ef7b5301124cfb68777 $31,659.68 no no 1 week ago 019b3836-2705-70a8-b896-f416a360de8c
high detector Untrusted CALL target/value reachable 0x2faa316fc4624ec39adc2ef7b5301124cfb68777 $31,659.68 no no 1 week ago 019b3836-2705-70a8-b896-f416a360de8c
critical detector Untrusted DELEGATECALL target reachable 0x2f848984984d6c3c036174ce627703edaf780479 $785.85 no no 1 week ago 019b477e-cc1c-7013-825b-ad24fb3a22fd
high detector Authorization based on tx.origin 0x3db46644421bcc367dce7bc39f9b6bb1d16c2f46 $6,042.53 no 1 week ago 019b477e-cc1f-715f-9233-e81f2b528528
high detector ETH value transfer possible 0x2f848984984d6c3c036174ce627703edaf780479 $785.85 no no 1 week ago 019b477e-cc1c-7013-825b-ad24fb3a22fd
high detector Untrusted CALL target/value reachable 0x2f848984984d6c3c036174ce627703edaf780479 $785.85 no no 1 week ago 019b477e-cc1c-7013-825b-ad24fb3a22fd
medium detector Untrusted CALL target/value reachable 0x3db46644421bcc367dce7bc39f9b6bb1d16c2f46 $6,042.53 no no 1 week ago 019b477e-cc1f-715f-9233-e81f2b528528
medium detector ETH value transfer possible 0x3db46644421bcc367dce7bc39f9b6bb1d16c2f46 $6,042.53 no no 1 week ago 019b477e-cc1f-715f-9233-e81f2b528528
medium detector CREATE/CREATE2 reachable 0x3db46644421bcc367dce7bc39f9b6bb1d16c2f46 $6,042.53 no no 1 week ago 019b477e-cc1f-715f-9233-e81f2b528528
low detector External CALL present 0x01a4e336133145419e068536d058cfea6ecd6647 $27.90 yes yes 1 week ago 019b3836-26e5-714f-bb20-64c174bbdbc7
high detector Authorization based on tx.origin 0x1231d62a583ad4c9a006ab81b44d3521e1fd6be7 $37,237.20 no 1 week ago 019b477e-cc21-73ba-a6a5-941fa131ef1d
medium detector ETH value transfer possible 0x1231d62a583ad4c9a006ab81b44d3521e1fd6be7 $37,237.20 no no 1 week ago 019b477e-cc21-73ba-a6a5-941fa131ef1d
medium detector Untrusted CALL target/value reachable 0x1231d62a583ad4c9a006ab81b44d3521e1fd6be7 $37,237.20 no no 1 week ago 019b477e-cc21-73ba-a6a5-941fa131ef1d
medium detector SELFDESTRUCT reachable 0x1231d62a583ad4c9a006ab81b44d3521e1fd6be7 $37,237.20 no no 1 week ago 019b477e-cc21-73ba-a6a5-941fa131ef1d
high detector Authorization based on tx.origin 0x966fa7acf1b6c732458e4d3264fd2393aec840ba $12,400.00 no 1 week ago 019b477e-cc24-70cd-9e79-cfc4a046b097
medium detector Untrusted CALL target/value reachable 0x966fa7acf1b6c732458e4d3264fd2393aec840ba $12,400.00 no no 1 week ago 019b477e-cc24-70cd-9e79-cfc4a046b097
medium detector ETH value transfer possible 0x966fa7acf1b6c732458e4d3264fd2393aec840ba $12,400.00 no no 1 week ago 019b477e-cc24-70cd-9e79-cfc4a046b097
critical detector Untrusted DELEGATECALL target reachable 0x377f2fd104692e592a5259cf75756037ae180fcb $49,600.00 no no 1 week ago 019b477e-cc29-728c-a184-b962d114694e
high detector Untrusted CALL target/value reachable 0xa6bab5c303a82fc7cda8b10ceecacb2821fca670 $5,260.70 no no 1 week ago 019b477e-cc26-72d0-9701-594e524d750e
high detector ETH value transfer possible 0xa6bab5c303a82fc7cda8b10ceecacb2821fca670 $5,260.70 no no 1 week ago 019b477e-cc26-72d0-9701-594e524d750e