TW
Tripwire
Find contracts. Test them. Review real vulns.
Confirmed Findings
2,205
crit 60 high 1157
All Findings
46,184
Across all runs
Chain
1
Mainnet focus
Signal Mix
24239
high severity in results
Findings
filter + triage
Reset
Quick filters: candidate lane confirmed only critical high detector codex
Severity Tool Title Address Value USD Validated Confirmed Found Run
low codex Oracle price used without sanity/staleness checks can break fee math 0x50c02710b06d6addb864d6b038010ef6fa1bcd92 $44,959.89 no 2 months ago 019c0ea9-07b9-70a2-acc1-0b6c38a3ac98
high detector Untrusted DELEGATECALL target reachable 0x965983977c29158ec53a296a6f47be145ddecc36 $0.00 no no 2 months ago 019c0ea9-e35a-710a-b93e-e2ba664180fb
medium detector Untrusted CALL target/value reachable 0x965983977c29158ec53a296a6f47be145ddecc36 $0.00 no no 2 months ago 019c0ea9-e35a-710a-b93e-e2ba664180fb
medium detector ETH value transfer possible 0x965983977c29158ec53a296a6f47be145ddecc36 $0.00 no no 2 months ago 019c0ea9-e35a-710a-b93e-e2ba664180fb
medium cast DELEGATECALL present 0x965983977c29158ec53a296a6f47be145ddecc36 $0.00 no 2 months ago 019c0ea9-e35a-710a-b93e-e2ba664180fb
info cast Heavy CALL-family usage 0x965983977c29158ec53a296a6f47be145ddecc36 $0.00 no 2 months ago 019c0ea9-e35a-710a-b93e-e2ba664180fb
info cast Heavy EXTCODE*/BALANCE usage 0x965983977c29158ec53a296a6f47be145ddecc36 $0.00 no 2 months ago 019c0ea9-e35a-710a-b93e-e2ba664180fb
high slither OwnbitMultiSig.spend(address,uint256,uint8[],bytes32[],bytes32[],bytes) (contracts/Contract.sol#116-123) sends eth to arbitrary user 0xb916796bacee1d6553b86ae05d9dd4c5e8d0b057 $45,017.10 no 2 months ago 019c0ea9-07ab-7229-8ea9-ef5c66ea8236
low codex External call result ignored; nonce advances even on failed transfer 0xb916796bacee1d6553b86ae05d9dd4c5e8d0b057 $45,017.10 no 2 months ago 019c0ea9-07ab-7229-8ea9-ef5c66ea8236
info codex Signed message lacks chain-id domain separation 0xb916796bacee1d6553b86ae05d9dd4c5e8d0b057 $45,017.10 no 2 months ago 019c0ea9-07ab-7229-8ea9-ef5c66ea8236
high codex Unrestricted initialize allows proxy takeover if not initialized atomically 0xad16edcf7deb7e90096a259c81269d811544b6b6 $45,074.25 no 2 months ago 019c0ea9-07a4-7162-9dd3-67d9c56c3671
low codex Refund recipient aliasing not enforced for explicit L1 contract addresses 0xad16edcf7deb7e90096a259c81269d811544b6b6 $45,074.25 no 2 months ago 019c0ea9-07a4-7162-9dd3-67d9c56c3671
high detector Authorization based on tx.origin 0x3203e813930bd710043c1d899fe38dd359307352 $0.00 no 2 months ago 019c0ea9-c986-7300-a119-1cc3848d4c55
medium detector Untrusted CALL target/value reachable 0x3203e813930bd710043c1d899fe38dd359307352 $0.00 no no 2 months ago 019c0ea9-c986-7300-a119-1cc3848d4c55
medium detector ETH value transfer possible 0x3203e813930bd710043c1d899fe38dd359307352 $0.00 no no 2 months ago 019c0ea9-c986-7300-a119-1cc3848d4c55
info cast Heavy CALL-family usage 0x3203e813930bd710043c1d899fe38dd359307352 $0.00 no 2 months ago 019c0ea9-c986-7300-a119-1cc3848d4c55
medium codex Low-level CALLs with computed target/value allow untrusted external interactions 0x5135f511eac08f8a49c80649d23b9d3b6d43dbac $45,108.01 no 2 months ago 019c0ea9-079c-73ed-a22f-f2b73edc06c0
medium codex CREATE opcode reachable (on-chain contract deployment) 0x5135f511eac08f8a49c80649d23b9d3b6d43dbac $45,108.01 no 2 months ago 019c0ea9-079c-73ed-a22f-f2b73edc06c0
medium slither Reentrancy in UniswapV3Pool.swap(address,bool,int256,uint160,bytes) (contracts/UniswapV3Pool.sol#596-788): 0x1914256c2f70aac87e097cd8b07958e9f17f2bcd $45,127.27 no 2 months ago 019c0ea9-0795-7060-b2ab-a80b07f665bb
medium slither Reentrancy in UniswapV3Pool.collectProtocol(address,uint128,uint128) (contracts/UniswapV3Pool.sol#848-868): 0x1914256c2f70aac87e097cd8b07958e9f17f2bcd $45,127.27 no 2 months ago 019c0ea9-0795-7060-b2ab-a80b07f665bb
high slither SpokeGasToken._sendToken(address,uint256) (contracts/spoke/SpokeGasToken.sol#35-38) sends eth to arbitrary user 0xe3b0e4db870aa58a24f87d895c62d3dc5cd05883 $45,288.85 no 2 months ago 019c0ea9-078e-733e-a80c-08acc458ccbe
medium slither Reentrancy in UniswapV3Pool.collectProtocol(address,uint128,uint128) (contracts/UniswapV3Pool.sol#848-868): 0x7cdc4e78167cc17d8d389353636cc4cba6fb397d $45,308.45 no 2 months ago 019c0ea9-0786-7339-af9a-a7665b73b780
medium slither Reentrancy in UniswapV3Pool.swap(address,bool,int256,uint160,bytes) (contracts/UniswapV3Pool.sol#596-788): 0x7cdc4e78167cc17d8d389353636cc4cba6fb397d $45,308.45 no 2 months ago 019c0ea9-0786-7339-af9a-a7665b73b780
critical detector Untrusted DELEGATECALL target reachable 0x97edcc0f6bb77191b4bf69a930e6d2383397433a $0.00 no no 2 months ago 019c0ea9-9972-71e4-a291-55d964b938b2
high detector ETH value transfer possible 0x97edcc0f6bb77191b4bf69a930e6d2383397433a $0.00 no no 2 months ago 019c0ea9-9972-71e4-a291-55d964b938b2
high detector Untrusted CALL target/value reachable 0x97edcc0f6bb77191b4bf69a930e6d2383397433a $0.00 no no 2 months ago 019c0ea9-9972-71e4-a291-55d964b938b2
medium cast DELEGATECALL present 0x97edcc0f6bb77191b4bf69a930e6d2383397433a $0.00 no 2 months ago 019c0ea9-9972-71e4-a291-55d964b938b2
medium slither Contract locking ether found: 0x2791bca1f2de4661ed88a30c99a7a9449aa84174 $45,414.08 no 2 months ago 019c0ea9-076e-7168-9503-51be12255f63
high codex Unprotected initializer allows takeover of uninitialized proxy 0x2791bca1f2de4661ed88a30c99a7a9449aa84174 $45,414.08 no 2 months ago 019c0ea9-076e-7168-9503-51be12255f63
low codex Meta‑transaction signature verification allows malleable signatures 0x2791bca1f2de4661ed88a30c99a7a9449aa84174 $45,414.08 no 2 months ago 019c0ea9-076e-7168-9503-51be12255f63
medium codex Regular end-game can settle on stale signed state without freshness or challenge 0xa867bf8447ec6f614ea996057e3d769b76a8aa0e $45,437.57 no 2 months ago 019c0ea9-0766-7238-b448-39331fab7739
low codex ECDSA signature malleability due to missing `s`/`v` validation 0xa867bf8447ec6f614ea996057e3d769b76a8aa0e $45,437.57 no 2 months ago 019c0ea9-0766-7238-b448-39331fab7739
high slither Reentrancy in StakingRewardsLock.exit() (contracts/Contract.sol#712-714): 0x89f0112a9c75d987686c608ca1840f9c7344b7ff $45,478.09 no 2 months ago 019c0ea9-075d-712a-a36b-c3913c2d8471
high codex Liquidation drains entire pool and leaves staking accounting unchanged 0x89f0112a9c75d987686c608ca1840f9c7344b7ff $45,478.09 no 2 months ago 019c0ea9-075d-712a-a36b-c3913c2d8471
high slither Reentrancy in GROK.openTrading() (contracts/Contract.sol#298-317): 0x8390a1da07e376ef7add4be859ba74fb83aa02d5 $45,482.52 no 2 months ago 019c0ea9-0755-7161-aaea-8a07609dc9c1
high slither Reentrancy in GROK._transfer(address,address,uint256) (contracts/Contract.sol#207-251): 0x8390a1da07e376ef7add4be859ba74fb83aa02d5 $45,482.52 no 2 months ago 019c0ea9-0755-7161-aaea-8a07609dc9c1
high slither GROK.sendETHToFee(uint256) (contracts/Contract.sol#278-282) sends eth to arbitrary user 0x8390a1da07e376ef7add4be859ba74fb83aa02d5 $45,482.52 no 2 months ago 019c0ea9-0755-7161-aaea-8a07609dc9c1
medium codex Owner-controlled blacklist can freeze user funds and halt trading 0x8390a1da07e376ef7add4be859ba74fb83aa02d5 $45,482.52 no 2 months ago 019c0ea9-0755-7161-aaea-8a07609dc9c1
low codex Tax swap uses amountOutMin=0 enabling MEV sandwiching 0x8390a1da07e376ef7add4be859ba74fb83aa02d5 $45,482.52 no 2 months ago 019c0ea9-0755-7161-aaea-8a07609dc9c1
high slither Proxy._setImplementation(address,bytes) (contracts/vendor/proxy/EIP173/Proxy.sol#53-88) uses delegatecall to a input-controlled function id 0x9d4c2e232fefaca4ed414aef4ba03b60b9f40aae $45,495.63 no 2 months ago 019c0ea9-074d-73f6-b29a-57ba21057a10
high detector Authorization based on tx.origin 0x28def88a5225fd50cdd081306be18fa7368e59f9 $0.00 no 2 months ago 019c0ea9-71ec-7140-b362-268cfeffbc7f
medium detector Untrusted CALL target/value reachable 0x28def88a5225fd50cdd081306be18fa7368e59f9 $0.00 no no 2 months ago 019c0ea9-71ec-7140-b362-268cfeffbc7f
medium detector ETH value transfer possible 0x28def88a5225fd50cdd081306be18fa7368e59f9 $0.00 no no 2 months ago 019c0ea9-71ec-7140-b362-268cfeffbc7f
medium codex Untrusted low-level CALL with variable target/value (potential arbitrary external call/ETH transfer) 0xda4fbd0ebe88877df05424c10274ad9315cee83a $45,570.00 no 2 months ago 019c0ea9-0745-7141-887d-3061a28b705a
medium slither Reentrancy in FromResponsibleInvestors.FromMMM30Reload(address,uint256,uint256) (contracts/Contract.sol#274-303): 0xbb4f286f88881afff196f8170105ad91b6217e0b $45,612.58 no 2 months ago 019c0ea9-073f-707e-aad6-50c2613920db
medium codex Unchecked send can silently skip payouts while advancing indices 0xbb4f286f88881afff196f8170105ad91b6217e0b $45,612.58 no 2 months ago 019c0ea9-073f-707e-aad6-50c2613920db
low codex Imported deposit indices are mixed with main queue indices, breaking getUserDeposits 0xbb4f286f88881afff196f8170105ad91b6217e0b $45,612.58 no 2 months ago 019c0ea9-073f-707e-aad6-50c2613920db
medium codex Invalid signatures are accepted when `user` is the zero address 0xbeeb655808e3bdb83b6998f09dfe1e0f2c66a9be $45,650.60 no 2 months ago 019c0ea9-0737-72a3-99e0-ec55ab3ddde2
low codex Maker whitelist is not enforced in `trade` 0xbeeb655808e3bdb83b6998f09dfe1e0f2c66a9be $45,650.60 no 2 months ago 019c0ea9-0737-72a3-99e0-ec55ab3ddde2
medium codex Bribe points credited from input amount, not actual tokens received 0xc3e486f614e297d8e016ac2805e81707c627b2d5 $45,728.04 no 2 months ago 019c0ea9-072f-73ea-a5f8-5f68e3df6057