TW
Tripwire
Find contracts. Test them. Review real vulns.
Confirmed Findings
2,205
crit 60 high 1157
All Findings
46,184
Across all runs
Chain
1
Mainnet focus
Signal Mix
24239
high severity in results
Findings
filter + triage
Reset
Quick filters: candidate lane confirmed only critical high detector codex
Severity Tool Title Address Value USD Validated Confirmed Found Run
high slither SharkPool.do_redemption() (contracts/Contract.sol#310-321) ignores return value by base_contract.transfer(owner,owner_cut) (contracts/Contract.sol#316-317) 0x29aa20fb9b23421e310bdb8a7cfb81d7fbb4a1b3 $47,924.40 no 2 months ago 019be3d6-8329-7283-9a66-0484d43643d5
medium slither Reentrancy in SharkPool.do_redemption() (contracts/Contract.sol#310-321): 0x29aa20fb9b23421e310bdb8a7cfb81d7fbb4a1b3 $47,924.40 no 2 months ago 019be3d6-8329-7283-9a66-0484d43643d5
medium slither Reentrancy in SharkPool.fallback() (contracts/Contract.sol#225-252): 0x29aa20fb9b23421e310bdb8a7cfb81d7fbb4a1b3 $47,924.40 no 2 months ago 019be3d6-8329-7283-9a66-0484d43643d5
medium codex Fallback redemption performs external token transfers before clearing balance and without reentrancy guard 0x29aa20fb9b23421e310bdb8a7cfb81d7fbb4a1b3 $47,924.40 no 2 months ago 019be3d6-8329-7283-9a66-0484d43643d5
medium codex Slot reuse bug can overwrite active users when pool is full 0x29aa20fb9b23421e310bdb8a7cfb81d7fbb4a1b3 $47,924.40 no 2 months ago 019be3d6-8329-7283-9a66-0484d43643d5
low codex Expired users are not removed from the mapping, preventing re-join and mis-accounting contributions 0x29aa20fb9b23421e310bdb8a7cfb81d7fbb4a1b3 $47,924.40 no 2 months ago 019be3d6-8329-7283-9a66-0484d43643d5
low codex Unchecked token transfer return values can zero balances without payout 0x29aa20fb9b23421e310bdb8a7cfb81d7fbb4a1b3 $47,924.40 no 2 months ago 019be3d6-8329-7283-9a66-0484d43643d5
medium codex Arbitrary external CALL (with ETH value) reachable via selector 0xf62d1888 0xbcaf70ef342378755e82c9f374225604f04a36e3 $47,944.34 no 2 months ago 019be3d6-8320-73ba-a9ee-5904a566edeb
medium codex Computed DELEGATECALL target reachable via selector 0xf62d1888 0xbcaf70ef342378755e82c9f374225604f04a36e3 $47,944.34 no 2 months ago 019be3d6-8320-73ba-a9ee-5904a566edeb
critical detector Untrusted DELEGATECALL target reachable 0x62c9e5e52351e02635f48072fa20c03bb650f787 $0.00 no no 2 months ago 019be3d7-e47d-7320-ae56-01c14905ff89
high detector ETH value transfer possible 0x62c9e5e52351e02635f48072fa20c03bb650f787 $0.00 no no 2 months ago 019be3d7-e47d-7320-ae56-01c14905ff89
high detector Untrusted CALL target/value reachable 0x62c9e5e52351e02635f48072fa20c03bb650f787 $0.00 no no 2 months ago 019be3d7-e47d-7320-ae56-01c14905ff89
medium cast DELEGATECALL present 0x62c9e5e52351e02635f48072fa20c03bb650f787 $0.00 no 2 months ago 019be3d7-e47d-7320-ae56-01c14905ff89
info cast Heavy CALL-family usage 0x62c9e5e52351e02635f48072fa20c03bb650f787 $0.00 no 2 months ago 019be3d7-e47d-7320-ae56-01c14905ff89
medium codex Liquidation escrow can become undercollateralized when pool-funded loans use the liquidation reward deposit as available capital 0x74001dcff64643b76ce4919af4dcd83da6fe1e02 $48,070.32 no 2 months ago 019be3d6-8317-73f5-b8ac-a5ffbb5f9eb3
low codex Borrower loan index is never set, corrupting loan tracking on removal 0x74001dcff64643b76ce4919af4dcd83da6fe1e02 $48,070.32 no 2 months ago 019be3d6-8317-73f5-b8ac-a5ffbb5f9eb3
medium slither Reentrancy in UniswapV3Pool.swap(address,bool,int256,uint160,bytes) (contracts/UniswapV3Pool.sol#596-788): 0x07a72f8f6a29cf501e7226ca82264f9ee79380e7 $48,137.98 no 2 months ago 019be3d6-8310-7186-afdf-26449cb682ac
medium slither Reentrancy in UniswapV3Pool.collectProtocol(address,uint128,uint128) (contracts/UniswapV3Pool.sol#848-868): 0x07a72f8f6a29cf501e7226ca82264f9ee79380e7 $48,137.98 no 2 months ago 019be3d6-8310-7186-afdf-26449cb682ac
medium slither Reentrancy in UniswapV3Pool.swap(address,bool,int256,uint160,bytes) (contracts/UniswapV3Pool.sol#596-788): 0xffe6008fcf63732ec8f666a91bf32e9be4eb7d56 $48,150.46 no 2 months ago 019be3d6-8306-7130-af29-96ef3941ba23
medium slither Reentrancy in UniswapV3Pool.collectProtocol(address,uint128,uint128) (contracts/UniswapV3Pool.sol#848-868): 0xffe6008fcf63732ec8f666a91bf32e9be4eb7d56 $48,150.46 no 2 months ago 019be3d6-8306-7130-af29-96ef3941ba23
low codex Value‑transferring CALL to computed target; potential reentrancy or unauthorized payout if reachable 0xdb9bdbd5a74787f4bf105cc7809b79b206a62a84 $48,174.00 no 2 months ago 019be3d6-82fe-7362-8276-89831be9667e
low codex Low‑level CALL to computed target/value with unconfirmed checks 0xa55951b2dcb3574eab8a54a6b5ec0ecf3f6fff95 $48,285.89 no 2 months ago 019be3d6-82f5-73ce-b152-f0dadbc57205
medium slither Reentrancy in UniswapV3Pool.collectProtocol(address,uint128,uint128) (contracts/UniswapV3Pool.sol#848-868): 0x8cd6c8c449918d92d2ad4658c32f2e2ff1e7096d $48,421.40 no 2 months ago 019be3d6-82dc-73b4-9386-5095751a94d4
medium slither Reentrancy in UniswapV3Pool.swap(address,bool,int256,uint160,bytes) (contracts/UniswapV3Pool.sol#596-788): 0x8cd6c8c449918d92d2ad4658c32f2e2ff1e7096d $48,421.40 no 2 months ago 019be3d6-82dc-73b4-9386-5095751a94d4
medium codex Computed external CALLs with potential value transfer and no detected access control 0x6f4dca180149a0b3b4df532054a7f0fecbb96170 $48,430.63 no 2 months ago 019be3d6-82d3-72f2-8366-aba489c5ca7b
low codex CALLCODE opcode present (reachability uncertain) 0x6f4dca180149a0b3b4df532054a7f0fecbb96170 $48,430.63 no 2 months ago 019be3d6-82d3-72f2-8366-aba489c5ca7b
medium codex Payouts can be permanently blocked when recipient rejects ETH 0x22e84cb17a55d618138911549e28310a84f888de $48,437.50 no 2 months ago 019be3d6-82c8-710e-9648-447f5f9e0a29
low codex Unchecked arithmetic can overflow IDs and accounting counters 0x22e84cb17a55d618138911549e28310a84f888de $48,437.50 no 2 months ago 019be3d6-82c8-710e-9648-447f5f9e0a29
medium codex tx.origin used in guard logic (phishing/authorization risk) 0x9bc7a1d21a2d38ee313c911e1356c926948fcba1 $48,450.40 no 2 months ago 019be3d6-82bf-71fe-9a54-fe0121f37b3d
low codex Low-level CALLs with computed targets/value (potential untrusted external call / reentrancy) 0x9bc7a1d21a2d38ee313c911e1356c926948fcba1 $48,450.40 no 2 months ago 019be3d6-82bf-71fe-9a54-fe0121f37b3d
medium slither Reentrancy in UniswapV3Pool.swap(address,bool,int256,uint160,bytes) (contracts/UniswapV3Pool.sol#596-788): 0x81aee07f99be78d88881fa6d98feff7555113635 $48,463.14 no 2 months ago 019be3d6-82b6-70c4-b520-61e650c2f72e
medium slither Reentrancy in UniswapV3Pool.collectProtocol(address,uint128,uint128) (contracts/UniswapV3Pool.sol#848-868): 0x81aee07f99be78d88881fa6d98feff7555113635 $48,463.14 no 2 months ago 019be3d6-82b6-70c4-b520-61e650c2f72e
medium codex Reentrancy window in `deposit` can double-count pending rewards 0x6767d3789ff7c678612e771b7b78db7fa04a063c $48,534.34 no 2 months ago 019be3d6-82ae-711f-8841-629b0c72d040
medium codex Fee-on-transfer tokens break pool accounting and allow over-withdrawals 0x6767d3789ff7c678612e771b7b78db7fa04a063c $48,534.34 no 2 months ago 019be3d6-82ae-711f-8841-629b0c72d040
low codex ETH withdrawals use `transfer`, risking permanent withdrawal failures for contracts 0x6767d3789ff7c678612e771b7b78db7fa04a063c $48,534.34 no 2 months ago 019be3d6-82ae-711f-8841-629b0c72d040
medium slither Reentrancy in UniswapV3Pool.collectProtocol(address,uint128,uint128) (contracts/UniswapV3Pool.sol#848-868): 0x256bd88baf707eaad1b73dc8b2b8a5d599b45584 $48,537.45 no 2 months ago 019be3d6-82a4-73cd-b7c9-87f04019f0c3
medium slither Reentrancy in UniswapV3Pool.swap(address,bool,int256,uint160,bytes) (contracts/UniswapV3Pool.sol#596-788): 0x256bd88baf707eaad1b73dc8b2b8a5d599b45584 $48,537.45 no 2 months ago 019be3d6-82a4-73cd-b7c9-87f04019f0c3
high slither Reentrancy in Crate.claimPartner(address[],string,uint256,uint8,bytes32,bytes32) (contracts/crate/Crate.sol#267-301): 0x5c29376a264e9244b50076650cea0cf30172c466 $48,597.60 no 2 months ago 019be3d6-829b-7113-92ff-3299b47c7d80
high slither Crate.recoverETH() (contracts/crate/Crate.sol#303-308) sends eth to arbitrary user 0x5c29376a264e9244b50076650cea0cf30172c466 $48,597.60 no 2 months ago 019be3d6-829b-7113-92ff-3299b47c7d80
low codex recoverETH ignores low-level call success 0x5c29376a264e9244b50076650cea0cf30172c466 $48,597.60 no 2 months ago 019be3d6-829b-7113-92ff-3299b47c7d80
low codex Whale fee tier can be bypassed with temporary OTSea balance (flashloan) 0x28a2f7849f0a2bccf1f5d246cef5a6867a5bfa23 $48,623.42 no 2 months ago 019be3d6-8293-71b3-bc76-8deb30108147
high codex Relayer can finalize arbitrary transfers without proof or fee verification 0xdbf24caff1470a6d08bf2ff2c6875bafc60cf881 $48,695.70 no 2 months ago 019be3d6-828a-71dc-80f1-1fb633b503be
critical detector Untrusted DELEGATECALL target reachable 0xc973d09e51a20c9ab0214c439e4b34dbac52ad67 $0.00 no no 2 months ago 019be3d7-52ed-7231-975b-72409c137e98
high detector ETH value transfer possible 0xc973d09e51a20c9ab0214c439e4b34dbac52ad67 $0.00 no no 2 months ago 019be3d7-52ed-7231-975b-72409c137e98
high detector Untrusted CALL target/value reachable 0xc973d09e51a20c9ab0214c439e4b34dbac52ad67 $0.00 no no 2 months ago 019be3d7-52ed-7231-975b-72409c137e98
medium detector CREATE/CREATE2 reachable 0xc973d09e51a20c9ab0214c439e4b34dbac52ad67 $0.00 no no 2 months ago 019be3d7-52ed-7231-975b-72409c137e98
medium cast DELEGATECALL present 0xc973d09e51a20c9ab0214c439e4b34dbac52ad67 $0.00 no 2 months ago 019be3d7-52ed-7231-975b-72409c137e98
low cast Contract creation opcode present 0xc973d09e51a20c9ab0214c439e4b34dbac52ad67 $0.00 no 2 months ago 019be3d7-52ed-7231-975b-72409c137e98
info cast Heavy EXTCODE*/BALANCE usage 0xc973d09e51a20c9ab0214c439e4b34dbac52ad67 $0.00 no 2 months ago 019be3d7-52ed-7231-975b-72409c137e98
medium codex External CALL before state update (possible reentrancy if target untrusted) 0xb0e5bea9f6e7e66e284bcfd47e354aa3484de62e $48,725.00 no 2 months ago 019be3d6-8282-7361-9368-6a167143af5d