TW
Tripwire
Find contracts. Test them. Review real vulns.
Confirmed Findings
2,205
crit 60 high 1157
All Findings
46,184
Across all runs
Chain
1
Mainnet focus
Signal Mix
24239
high severity in results
Findings
filter + triage
Reset
Quick filters: candidate lane confirmed only critical high detector codex
Severity Tool Title Address Value USD Validated Confirmed Found Run
high codex Keeper-controlled pricePerShare can be stair-stepped away from real NAV and used to overmint/overwithdraw 0x04393e5c6701237d7ee836d644f8dbdd122afebc $0.00 no 1 week ago 019d5666-b2b6-72b3-991d-f09cf3f2b2ec
high codex `claimAndStakeRewardsBySig` signatures are replayable across different gardens 0x04393e5c6701237d7ee836d644f8dbdd122afebc $0.00 no 1 week ago 019d5666-b2b6-72b3-991d-f09cf3f2b2ec
medium codex First `setTimeLockRegistry` call is permissionless, enabling vesting-registry takeover 0x04393e5c6701237d7ee836d644f8dbdd122afebc $0.00 no 1 week ago 019d5666-b2b6-72b3-991d-f09cf3f2b2ec
high codex Signed actions can be replayed across different GuruFund instances 0xec8902afffb06d0b075ea2d6fb3a45ec8598c39b $0.00 no 1 week ago 019d5666-7793-71fe-8365-fe0e83fcb95f
medium codex Anyone can front-run and consume another user's signed payload nonce 0xec8902afffb06d0b075ea2d6fb3a45ec8598c39b $0.00 no 1 week ago 019d5666-7793-71fe-8365-fe0e83fcb95f
medium codex Fee-on-transfer tokens break bridge accounting and can drain pooled liquidity 0x63105ee97bfb22dfe23033b3b14a4f8fed121ee9 $41,127.55 no 1 week ago 019d5666-7238-704a-97b4-9ab40e4f0ac7
medium codex Withdraw signatures can be replayed across bridge deployments on the same chain 0x63105ee97bfb22dfe23033b3b14a4f8fed121ee9 $41,127.55 no 1 week ago 019d5666-7238-704a-97b4-9ab40e4f0ac7
medium codex Token deposits credit the requested amount, not the amount actually received 0x96541c4926a32ea3a97fd8d335aff1f81e50ffe9 $41,190.88 no 1 week ago 019d5666-7222-713e-be7e-db522974661d
medium codex Privileged owner can sweep custodial ETH and ERC20 balances 0x96541c4926a32ea3a97fd8d335aff1f81e50ffe9 $41,190.88 no 1 week ago 019d5666-7222-713e-be7e-db522974661d
high codex Version-dependent storage slots can brick the proxy and strand assets on upgrade 0xc95b806ac073df930014ac476d26c8ad918f14e0 $41,195.58 no 1 week ago 019d5666-721c-732b-98f2-8fef0dd24f32
medium codex `createLimitOrder` does not constrain CoWSwap `feeAmount`, so CALLER_ROLE can spend more than `params.amountIn` 0xc95b806ac073df930014ac476d26c8ad918f14e0 $41,195.58 no 1 week ago 019d5666-721c-732b-98f2-8fef0dd24f32
high codex Public initializer allows takeover of any uninitialized clone/proxy 0xccb57afedecc8d975ca4ae06f850a175142499de $41,269.00 no 1 week ago 019d5666-7216-7238-b7b1-e53620c8a60e
high codex Mint permission can self-issue admin keys and seize full control 0xccb57afedecc8d975ca4ae06f850a175142499de $41,269.00 no 1 week ago 019d5666-7216-7238-b7b1-e53620c8a60e
high codex Fee-on-transfer ERC20s can overmint bridge balances and drain pooled collateral 0x588801ca36558310d91234afc2511502282b1621 $41,272.95 no 1 week ago 019d5666-7210-72a7-9067-e58ac94c06d2
medium codex Irreversible state transitions can strand credited balances while backing ETH is still sweepable 0x6ee4bc4cbc09346e718fad1933f9ca32543ddc93 $41,278.86 no 1 week ago 019d5666-720b-73fb-be2d-e65507781793
low codex ETH payouts use a hardcoded 2300-gas CALL, which can brick payouts to contract recipients 0x6ee4bc4cbc09346e718fad1933f9ca32543ddc93 $41,278.86 no 1 week ago 019d5666-720b-73fb-be2d-e65507781793
high codex `fillOffer` can be reentered before `filledAmount` is updated, allowing overfilled orders 0x849f4081899305a1fd24aac84db5174eb60dc28e $41,313.94 no 1 week ago 019d5666-7204-7199-9428-87c933f7acea
high codex Nominal ERC20 accounting makes fee-on-transfer collateral tokens insolvent 0x849f4081899305a1fd24aac84db5174eb60dc28e $41,313.94 no 1 week ago 019d5666-7204-7199-9428-87c933f7acea
medium codex Owner can confiscate live escrow by de-whitelisting a token before `withdrawStuckToken` 0x849f4081899305a1fd24aac84db5174eb60dc28e $41,313.94 no 1 week ago 019d5666-7204-7199-9428-87c933f7acea
high codex Anyone can call post-dispatch hooks directly for the current latest message 0x15b5d6b614242b118aa404528a7f3e2ad241e4a4 $41,345.31 no 1 week ago 019d5666-71ff-7060-88f6-c0d2b403a889
high codex Permissionless initializers let the first caller seize control and mint supply 0x15b5d6b614242b118aa404528a7f3e2ad241e4a4 $41,345.31 no 1 week ago 019d5666-71ff-7060-88f6-c0d2b403a889
low codex DestinationRecipientRoutingHook quotes the wrong hook for recipient-specific routes 0x15b5d6b614242b118aa404528a7f3e2ad241e4a4 $41,345.31 no 1 week ago 019d5666-71ff-7060-88f6-c0d2b403a889
low codex Deposits revert when no shares exist 0x50c2954613e70294088c7001d6f4a641f155b369 $41,351.32 no 1 week ago 019d5666-71fa-715c-bc73-4d8f84d559bb
low codex Reverting shareholder contracts can block share updates 0x50c2954613e70294088c7001d6f4a641f155b369 $41,351.32 no 1 week ago 019d5666-71fa-715c-bc73-4d8f84d559bb
critical codex Keeper-supplied `pricePerShare` can be ratcheted away from NAV to steal value from other LPs 0x22a591793a9dd506bb3009522dec919120dc3087 $41,484.99 no 1 week ago 019d5666-71df-70bc-b254-bdcd67639ea9
critical codex `claimRewardsBySig` trusts attacker-chosen reward amounts and can drain pooled rewards 0x22a591793a9dd506bb3009522dec919120dc3087 $41,484.99 no 1 week ago 019d5666-71df-70bc-b254-bdcd67639ea9
high codex Referrer field is never validated, enabling self-referral and cyclic referral farming 0x80c1c65463427ea785fb7b03ba84b91f49f272eb $41,641.82 no 1 week ago 019d5666-71d1-72c0-baeb-d50b2b87dd1a
medium codex Exact-output buys can mint market tokens for zero payment because rounding-down is unchecked 0x80c1c65463427ea785fb7b03ba84b91f49f272eb $41,641.82 no 1 week ago 019d5666-71d1-72c0-baeb-d50b2b87dd1a
medium codex Core behavior is delegated into an external implementation, so storage safety and auth are not verifiable from this bytecode alone 0x937478e73bf6547843af57564d7265306af024aa $41,695.00 no 1 week ago 019d5666-71ca-7272-b492-1f8f99ecb7a6
low codex Selector 0x54fd4d50 reads delegatecall output from memory without an explicit return-size check 0x937478e73bf6547843af57564d7265306af024aa $41,695.00 no 1 week ago 019d5666-71ca-7272-b492-1f8f99ecb7a6
medium codex Signed executions are not bound to chain ID 0xdde5c0acdd6921b971bc1d15b2260bb751d8fd9a $41,745.64 no 1 week ago 019d5666-71b7-716d-97e8-5def5130ef93
low codex Public one-time initializer can be hijacked if a deployment is left uninitialized 0xdde5c0acdd6921b971bc1d15b2260bb751d8fd9a $41,745.64 no 1 week ago 019d5666-71b7-716d-97e8-5def5130ef93
high codex Owner can sweep arbitrary ETH/ERC20 balances to itself 0x0376a35639dac611c49327426db9b342cdb553b8 $41,773.31 no 1 week ago 019d5666-71b0-70e9-ab1a-1f24cbe5b1c0
high codex Strategy execution uses owner-controlled DELEGATECALL with full vault-storage authority 0x0376a35639dac611c49327426db9b342cdb553b8 $41,773.31 no 1 week ago 019d5666-71b0-70e9-ab1a-1f24cbe5b1c0
high codex ETH distribution accounting is never persisted, so crossing the payout threshold can brick subsequent purchases 0xda9f13722fef7a6357944622f583285da14c90a5 $41,788.00 no 1 week ago 019d5666-71a5-72ca-9f63-c22da967b9db
medium codex buyTokens performs external token delivery before round accounting and lacks the advertised reentrancy guard 0xda9f13722fef7a6357944622f583285da14c90a5 $41,788.00 no 1 week ago 019d5666-71a5-72ca-9f63-c22da967b9db
medium codex Per-address round contribution caps are unenforced because contributor totals are never updated 0xda9f13722fef7a6357944622f583285da14c90a5 $41,788.00 no 1 week ago 019d5666-71a5-72ca-9f63-c22da967b9db
high codex Signed payloads are not bound to a specific fund instance 0xba4f097d22f283e619873f8e034755fc2e5a7c90 $41,846.47 no 1 week ago 019d5666-7189-71df-84df-536a07997697
medium codex Withdrawal signatures remain valid after rebalances, fee mints, and price moves 0xba4f097d22f283e619873f8e034755fc2e5a7c90 $41,846.47 no 1 week ago 019d5666-7189-71df-84df-536a07997697
high codex Admin-style sale controls are publicly callable 0xe8741a1e198d90cf125389062fdbb686d9d9ca3b $41,850.00 no 2 weeks ago 019d4522-9aae-7105-9df9-871e21f05153
medium codex Anyone can force treasury/token sweep flows 0xe8741a1e198d90cf125389062fdbb686d9d9ca3b $41,850.00 no 2 weeks ago 019d4522-9aae-7105-9df9-871e21f05153
low codex Low-level ERC20 transfer calls do not validate boolean return values 0xe8741a1e198d90cf125389062fdbb686d9d9ca3b $41,850.00 no 2 weeks ago 019d4522-9aae-7105-9df9-871e21f05153
medium codex Initializer appears publicly callable; critical storage can be set by anyone once 0x5018cc0d628fb322b2a040cfcd269a36c60b1538 $0.00 no 2 months ago 019c0eac-1141-73a4-bb86-3f06ad5c30a9
low codex Low-level CALLs with computed targets/value; potential untrusted-call or reentrancy surface 0x5018cc0d628fb322b2a040cfcd269a36c60b1538 $0.00 no 2 months ago 019c0eac-1141-73a4-bb86-3f06ad5c30a9
low codex SELFDESTRUCT opcode present in runtime bytecode (appears unreachable) 0x5018cc0d628fb322b2a040cfcd269a36c60b1538 $0.00 no 2 months ago 019c0eac-1141-73a4-bb86-3f06ad5c30a9
medium codex Public initializers can be seized if deployment is not atomic 0x4a1dc57d949db46a456d0104f437ed87ee24422f $0.00 no 2 months ago 019c0eab-c14a-7068-a5b7-e9885803d0b8
medium codex Orders lack trader authorization; relays can execute arbitrary swaps 0x4a1dc57d949db46a456d0104f437ed87ee24422f $0.00 no 2 months ago 019c0eab-c14a-7068-a5b7-e9885803d0b8
low codex ERC20 transfer/approve return values are not checked in swap scripts 0x4a1dc57d949db46a456d0104f437ed87ee24422f $0.00 no 2 months ago 019c0eab-c14a-7068-a5b7-e9885803d0b8
high codex Unprotected proxy initializer allows market takeover 0xc06053fcad0a0df7cc32289a135bbea9030c010f $0.00 no 2 months ago 019c0eab-909f-728c-9614-1375a52b5654
low codex Unchecked ERC20 transfer return value can mask failed payouts 0xc06053fcad0a0df7cc32289a135bbea9030c010f $0.00 no 2 months ago 019c0eab-909f-728c-9614-1375a52b5654