TW
Tripwire
Find contracts. Test them. Review real vulns.
Confirmed Findings
2,205
crit 60 high 1157
All Findings
46,184
Across all runs
Chain
1
Mainnet focus
Signal Mix
24239
high severity in results
Findings
filter + triage
Reset
Quick filters: candidate lane confirmed only critical high detector codex
Severity Tool Title Address Value USD Validated Confirmed Found Run
high codex EIP712 domain omits chainId and verifying contract, enabling cross-contract order replay 0x241e82c79452f51fbfc89fac6d912e021db1a3b7 $2,288,604.15 no 3 months ago 0125e957-6d16-4951-9544-c9f5d3c64088
high codex Unprotected initialization allows anyone to seize ownership and drain funds if not yet initialized 0x14a635549fc5d087d39a0cd1339345b8b8c6fdba $6,290,639.88 no 3 months ago b7ce8ac8-0ea4-495f-80fb-6e8e679e5468
high codex Unprotected V3 reinitializer lets attacker become admin, swap chain-state verifier, and forge withdrawals 0x2c4df10a82cf077122ed99573aca6dacd76f2e67 $0.00 no 3 months ago 6b74e541-cb40-41fa-b381-0ac9cd0774ee
high codex Rounding-up in deposits lets dust mint full shares and drain accrued rewards 0xaeae7d602b537b2065f3da05dcce754fb23a968d $0.00 no 3 months ago d56f910c-3d71-409c-894a-2f145cc856af
high codex First depositor share inflation can zero‑mint later deposits and steal their ABR 0xbbbd1bbb4f9b936c3604906d7592a644071de884 $14,867,814.55 no 3 months ago dbcf5643-b21f-40b3-a143-69185d9bdf76
high codex Replayable owner signatures due to missing domain separation in transaction hash 0x7da82c7ab4771ff031b66538d2fb9b0b047f6cf9 $31,881,464.38 no 3 months ago 2777b685-b8a7-47d0-87a2-7c35425b4f1b
high codex Phantom token deposits via malicious ERC20 let attacker trade unbacked balances for real assets 0x8d12a197cb00d4747a1fe03395095ce2a5cc6819 $47,393,993.66 no 3 months ago c0d05ecc-5a14-4ce1-9cc4-2b103799055d
high codex executeTxWithPermits allows reentrant double-execution of the same transaction 0x471756ad2124b04dc1c5c364ee6a9e29f8c3f67a $0.00 no 3 months ago 48761642-a2bb-4ad0-8c2c-796509a9987b
high codex Replayable signed transactions (no nonce/used-hash tracking) allow repeated withdrawals 0x135bbbf1903c61fa25596ee4e27b8f14ed968c04 $123,361.40 no 3 months ago e55a7ac9-46dc-47cb-8fd2-309875709a55
high codex Plaintext answer exposure lets any EOA drain the full balance 0x821ab5215e7970480d1d9c145632e5c15d3b8bbb $0.00 no 3 months ago da09a895-da60-46f6-92dd-2d365b3161b9
high codex Reverted blocks keep stale pendingWithdrawCommits, enabling withdrawals from invalid transitions 0xf86fd6735f88d5b6aa709b357ad5be22cedf1a05 $124,833.69 no 3 months ago 7cf066a0-1657-4bcb-bb21-4badff1e973d
high codex Answer leakage via Start calldata lets anyone claim the full balance 0xa46c2b718adfff25098417ad0b5d208c832260b1 $0.00 no 3 months ago 021898af-49a7-4060-b9dc-ad1f1631fb5b
high codex First-depositor share inflation via pre-deposit donation (rounding allows value extraction from later deposits) 0x8e91d0c719d7d1c0e6cef764c2437744763f7283 $0.00 no 3 months ago 469feb27-7bd0-46d7-9fdc-ae3a5830bb40
high codex Reentrant token transfer allows repeated withdrawals before balance update 0x039fb002d21c1c5eeb400612aef3d64d49eb0d94 $0.00 no 3 months ago 9c711161-870e-44a5-9dec-202386f236a2
high codex Unprotected auction initialization allows admin/wallet hijack and theft of sale tokens 0x364b7e2d5b11b9d2016d232fa271d89d5e6065f1 $0.00 no 3 months ago f737e1d0-6060-4221-9bb6-8d056f16705e
high codex Donation-based share inflation enables zero-share deposits and theft of subsequent deposits 0xace74f217aef8085f328cc1d73757d913b7eea39 $0.00 no 3 months ago ae144725-31b7-4efd-af05-6da20a974622
high codex Reentrant redeem can double-withdraw later assets in multi-token vault 0x1cb489ef513e1cc35c4657c91853a2e6ff1957de $0.00 no 3 months ago 8c5b2b5d-90da-42b1-a8ff-785f9a741c38
high codex Anyone can reset the reentrancy guard via initializePoolV2, enabling reward inflation in deposit 0xfc59ab348e0c0e789e914b0864f08cab98db1553 $0.00 no 3 months ago ff932ff9-2ce9-490b-9514-dd6f80ed85c1
high codex Unprotected reinitializer enables ownership takeover and forged withdrawals 0x2ccd5486ea1b2a52dcd387c01314f6a328f66cbb $0.00 no 3 months ago ea503cad-40e9-45b2-b499-15207ca468f7
high codex Unprotected initialize enables treasury hijack on uninitialized ATokenInstance 0xb2668573828029917ffbd1e76270373511818498 $0.00 no 3 months ago 1dde14e9-bcb7-465f-803b-2ce787c6e2d9
high codex Initializer callable by anyone enables takeover of uninitialized proxy 0x04ead25447f9371c5c1e2c33645f32aafeb337dc $0.00 no 3 months ago f87396ab-be81-49d8-86db-2ad77e0251d8
high codex Unprotected initialize lets anyone set pool interest rate 0xa2ffdc7efef98469d11370d91c0a17dc83ec2bda $161,822.91 no 3 months ago 006ad5b9-da71-47b0-b31d-5bb56d063f46
high codex Public supply functions let anyone move assets off the tracked provider, blocking withdrawals 0x83f798e925bcd4017eb265844fddabb448f1707d $159,466.24 no 3 months ago 25b64c9e-a9a5-474a-8faf-8e739aace6ae
high codex Unprotected initializer lets any caller take ownership of distribution parameters 0x9cd8d3c4380ab48d7cca425e34166efd2147ee40 $165,983.33 no 3 months ago 4b6d808e-caa6-4fa9-9cd9-5efbcbdeeda0
high codex Unprotected initializer lets anyone become OWNER_ROLE if initialization is front‑run or forgotten 0xbe607a58206180fef691bf1b5ae9670174284388 $0.00 no 3 months ago 1fa951b9-2131-457c-8c77-edb910fcb7c3
high codex NFT burn lacks ownership check, enabling destruction of others’ tokens 0xc36cf0cfcb5d905b8b513860db0cfe63f6cf9f5c $208,137.22 no 3 months ago 5ee92886-8335-43e3-bee9-4a7cb539a22c
high codex Unprotected initialize allows admin/votingEscrow takeover 0x8549ba7f483afb13b8321830d6f07f30f0a2f1de $222,172.27 no 3 months ago 09fa5a2e-f3b7-46e9-8b86-0a03ea86c5f7
high codex Reentrancy window in withdraw before balance update 0x039fb002d21c1c5eeb400612aef3d64d49eb0d94 $0.00 no 3 months ago f48b1e81-4fa5-4c5d-a3aa-b4088c28d8f0
high codex Failed execTransaction still consumes tezosOperation, enabling gas‑griefing DoS and stuck unwraps 0x5dc76fd132354be5567ad617fd1fe8fb79421d82 $250,884.11 no 3 months ago 6d9075ea-e510-4702-8437-3a8481b449fa
high codex Unprotected initializer allows manager takeover if deployment is not atomic 0xb542d5cb34ef265fb87c170181127332f7797369 $0.00 no 3 months ago 57607431-8897-4c7e-aa5c-98624726087b
high codex Unprotected initializer allows takeover of uninitialized AToken proxy 0x30d06a9a992473a6a5d8b54f56bf457fa020794d $0.00 no 3 months ago 4b4a6e13-aa21-49a9-b499-317b5b9e8f6e
high codex Public initializers enable proxy takeover if not called atomically 0x281aa2e0684439ed9fee12eff0d8ff346b755a39 $0.00 no 3 months ago 845cb09f-5c1f-4394-8c8b-28bd2c6cb69a
high codex Unprotected initializer enables ownership takeover on uninitialized deployments 0xd928d07d9c2629ecd3f3b81685b27bd50383f028 $0.00 no 3 months ago 28c692cb-34be-4594-99b9-e4f1085a916a
high codex Withdrawals ignore locked collateral, enabling pool insolvency 0xb9ed94c6d594b2517c4296e24a8c517ff133fb6d $249,700.33 no 3 months ago 4512afe7-5f93-4201-92ac-099a73dc43a6
high codex Initializer can be called by anyone before owners are set 0x95ca2f7959f8848795dfb0868c1b0c59dd4e9330 $0.00 no 3 months ago e566fdea-a7ec-4850-8cb6-a61d047e3f9d
high codex Unrestricted initializer allows proxy takeover if not initialized atomically 0x30d06a9a992473a6a5d8b54f56bf457fa020794d $0.00 no 3 months ago 0589f940-a7f8-42a6-985f-77e5f0b4e9ab
high codex Delegatecall into adapter grants full vault control if adapter is compromised or upgradeable 0x7a477d6570386e2b9d0f14d03bd976b0c68b94b9 $0.00 no 3 months ago 0bcec04f-71c6-45e6-b451-df0c2c08db21
high codex Upgradeable proxy can be taken over if not initialized atomically 0x0e6590f64a82cbc838b2a087281689de1a5bc8e0 $0.00 no 3 months ago 0f2dae3b-fa8e-4cc8-9793-fb705919c460
high codex Initializer chaining uses `initializer` on parent functions, causing init revert and enabling role takeover/DoS 0xc616eaf17c5e3349c1fa493459494bb4dd0fd788 $0.00 no 3 months ago 2deaa8fd-acba-426c-b3ce-676760114af5
high codex Initializer callable by anyone can set owner if not initialized 0x5018cc0d628fb322b2a040cfcd269a36c60b1538 $0.00 no 3 months ago f0cc17b9-48e1-4232-bd71-d421f424b320
high codex Unprotected initialization enables auction takeover if not initialized atomically 0x364b7e2d5b11b9d2016d232fa271d89d5e6065f1 $0.00 no 3 months ago d49d2b94-52b3-40cd-ba7d-b3d971c536fe
high codex Unprotected initialize allows ownership takeover 0x0bc8c8212c0c74773671c4badb18999c2b07f3c6 $0.00 no 3 months ago 4bfc085c-4949-4583-ba5f-ccaa37b0cce6
high codex Signed execution appears replayable (no nonce/used-hash storage) 0x3ef1c8133d80665ec873ac41e152dda3251a7606 $389,012.80 no 3 months ago c73bdf6c-5147-4fd5-ad47-f180be523585
high codex Keeper-controlled currentBalance can arbitrarily skew pricePerShare and queued withdrawals 0xf3b466f09ef476e311ce275407cfb09a8d8de3a7 $390,642.76 no 3 months ago bb4cd4e4-bb89-4d72-9bad-ab081d2ed309
high codex Escrow initialization is externally callable without access control 0x8abf5358a88ca2586635d646aaaff172572fb0ed $0.00 no 3 months ago f5e42a86-2af2-44b4-88c7-d11e26872a6a
high codex Reentrancy in _repay can overwrite debt shares and create unbacked debt 0xa2754543f69dc036764bbfad16d2a74f5cd15667 $331,700.32 no 3 months ago 4e0da3db-4110-44e1-8969-17c73f235b0a
high codex Initializer and upgrade authorization depend on the ERC1967 admin slot, which is unset/unreachable in typical UUPS deployments 0xa4e6762eaaf259da74696f46faaf79ba9dde14e6 $0.00 no 3 months ago 4569b6c8-4f2a-475a-a123-61c4c377a66f
high codex Re-initializable setup can grant operator/flow-limiter roles to an attacker 0x8832f0381707bb29756edecf42580800207f2a9e $0.00 no 3 months ago 86d4515f-6381-4ede-ac6f-89c32fe84757
high codex Public initializer can be front-run to hijack gateway configuration 0xb4299a1f5f26ff6a98b7ba35572290c359fde900 $0.00 no 3 months ago ce4d273e-c903-4f23-ab6a-43ad55bdeb64
high codex onlyL2Bridge fails open when messenger wrapper is unset or non-contract 0x3666f603cc164936c1b87e207f36beba4ac5f18a $538,298.12 no 3 months ago d486ca60-71f4-4936-9bef-5d94fbca5fdd