TW
Tripwire
Find contracts. Test them. Review real vulns.
Confirmed Findings
2,205
crit 60 high 1157
All Findings
46,184
Across all runs
Chain
1
Mainnet focus
Signal Mix
24239
high severity in results
Findings
filter + triage
Reset
Quick filters: candidate lane confirmed only critical high detector codex
Severity Tool Title Address Value USD Validated Confirmed Found Run
critical detector Untrusted DELEGATECALL target reachable 0x15d94ec1c8e98812dac23bf6a341bd6c83e4cb11 $49,717.80 no no 2 months ago 019be3d6-81c4-7091-b835-57b1fa52d217
high detector ETH value transfer possible 0x15d94ec1c8e98812dac23bf6a341bd6c83e4cb11 $49,717.80 no no 2 months ago 019be3d6-81c4-7091-b835-57b1fa52d217
high detector Untrusted CALL target/value reachable 0x15d94ec1c8e98812dac23bf6a341bd6c83e4cb11 $49,717.80 no no 2 months ago 019be3d6-81c4-7091-b835-57b1fa52d217
medium cast DELEGATECALL present 0x15d94ec1c8e98812dac23bf6a341bd6c83e4cb11 $49,717.80 no 2 months ago 019be3d6-81c4-7091-b835-57b1fa52d217
high detector Authorization based on tx.origin 0x7865d01da4c9ba2f69b7879e6d2483ab6b354d95 $49,731.42 no 2 months ago 019be3d6-81b8-7009-88af-23d8a6bdcb6b
medium detector ETH value transfer possible 0x7865d01da4c9ba2f69b7879e6d2483ab6b354d95 $49,731.42 no no 2 months ago 019be3d6-81b8-7009-88af-23d8a6bdcb6b
medium detector Untrusted CALL target/value reachable 0x7865d01da4c9ba2f69b7879e6d2483ab6b354d95 $49,731.42 no no 2 months ago 019be3d6-81b8-7009-88af-23d8a6bdcb6b
high detector ETH value transfer possible 0xd4e96ef8eee8678dbff4d535e033ed1a4f7605b7 $49,778.58 no no 2 months ago 019be3d6-8194-730e-b0a3-4e6c5e74d3ce
high detector Untrusted CALL target/value reachable 0xd4e96ef8eee8678dbff4d535e033ed1a4f7605b7 $49,778.58 no no 2 months ago 019be3d6-8194-730e-b0a3-4e6c5e74d3ce
medium codex Incorrect withdrawal accounting enables repeated sales withdrawals after sales changes 0x5d7b782ec34cae8b38a56c1a3487337583178466 $0.00 no 3 months ago 019bb50c-36be-73f5-8aa5-abd83ca7a6ba
low codex Admin can bypass refund guarantees via arbitrary state and price changes 0x5d7b782ec34cae8b38a56c1a3487337583178466 $0.00 no 3 months ago 019bb50c-36be-73f5-8aa5-abd83ca7a6ba
low codex Computed CALL target/value may enable arbitrary external call and ETH transfer 0x5018cc0d628fb322b2a040cfcd269a36c60b1538 $0.00 no 3 months ago 019bb50c-20bf-7140-89ff-d7e92aaf7320
low codex SELFDESTRUCT opcode present (reachability unclear; may be metadata) 0x5018cc0d628fb322b2a040cfcd269a36c60b1538 $0.00 no 3 months ago 019bb50c-20bf-7140-89ff-d7e92aaf7320
medium codex Share pricing depends on manipulable Uniswap V3 spot price 0x9bf7b46c7ad5ab62034e9349ab912c0345164322 $49,817.46 no 3 months ago 019bb50b-e1b9-7171-bbd2-0204820e1613
medium slither Reentrancy in UniswapV3Pool.collectProtocol(address,uint128,uint128) (contracts/UniswapV3Pool.sol#848-868): 0x252ed96dc7a61df95594b6ee4f559a75c50384c2 $49,823.02 no 3 months ago 019bb50b-e1b0-7312-8be8-af39230a6c8f
medium slither Reentrancy in UniswapV3Pool.swap(address,bool,int256,uint160,bytes) (contracts/UniswapV3Pool.sol#596-788): 0x252ed96dc7a61df95594b6ee4f559a75c50384c2 $49,823.02 no 3 months ago 019bb50b-e1b0-7312-8be8-af39230a6c8f
medium codex Deposits mint shares based on requested amount, not actual received (fee-on-transfer tokens break accounting) 0xc9c9ff8b00f4f6b934b5fcdbf3ff246cffe63d4a $49,843.65 no 3 months ago 019bb50b-e1a6-70f2-a433-f57446ba2513
medium codex Computed external CALLs with possible ETH transfer; target/access control unclear 0xb035e18ee8d98e6f54810c9337ab6524caeef875 $49,926.71 no 3 months ago 019bb50b-e195-72fc-abd3-1ddddddd15da
low codex Balance update signatures lack domain separation (replay across contracts/chains) 0x0c432335a0f4280d348e5ff865e02cc5e9562b3d $49,990.00 no 3 months ago 019bb50b-e18c-7289-a46a-78f23643b5ab
low codex Manual withdrawal fee is unchecked and can underflow 0x0c432335a0f4280d348e5ff865e02cc5e9562b3d $49,990.00 no 3 months ago 019bb50b-e18c-7289-a46a-78f23643b5ab
low codex Fixed 2300-gas ETH transfers can make withdrawals revert for contract recipients 0x91bf99ca34268d407f3cc8d6525ce83c6ea7bcf5 $49,992.75 no 3 months ago 019bb50b-e183-704b-ae79-33466bc022ff
medium codex Fee-on-transfer/rebasing staking tokens can break accounting and lock withdrawals 0xe2557b81f2552f21580354e922c85e1499421297 $50,000.00 no 3 months ago 019bb50b-e165-73bb-b0ac-5421102f4e04
medium codex Reward token depletion can freeze withdrawals during withdrawal interval 0xe2557b81f2552f21580354e922c85e1499421297 $50,000.00 no 3 months ago 019bb50b-e165-73bb-b0ac-5421102f4e04
low codex Self-CALL with value enables potential reentrancy via fallback/other entrypoints 0x25ab5aa1462f02edb00bdebe32e7432a30a76937 $50,015.73 no 3 months ago 019bb50b-e15a-7115-8d01-ea31f8f1f81c
medium codex Swap pricing fully trusts oracle quotes, enabling price-manipulation drains if oracle is weak 0xa5adc5484f9997fbf7d405b9aa62a7d88883c345 $50,020.56 no 3 months ago 019bb50b-e151-736d-a019-fb9174843028
low codex Integer division truncation can lock user funds for non-divisible deposits 0xa5adc5484f9997fbf7d405b9aa62a7d88883c345 $50,020.56 no 3 months ago 019bb50b-e151-736d-a019-fb9174843028
medium codex Potentially reachable SELFDESTRUCT kill-switch 0x19d683cea643a8e5f2384bd48716b5399baa3616 $50,052.35 no 3 months ago 019bb50b-e146-7046-b442-d004a2f4b5a8
low codex CALL sites with computed target/value; untrusted external call/ETH transfer not ruled out 0x19d683cea643a8e5f2384bd48716b5399baa3616 $50,052.35 no 3 months ago 019bb50b-e146-7046-b442-d004a2f4b5a8
medium codex Oraclize query failures (queryId == 0) can lock player funds and overwrite state 0x48d8f22d45e40f34cb7c10799f31246f134e9b7f $50,072.08 no 3 months ago 019bb50b-e13e-71fc-a248-22b5247e3f76
low codex Unchecked ERC20 transfer results can silently fail, causing missing rewards 0x48d8f22d45e40f34cb7c10799f31246f134e9b7f $50,072.08 no 3 months ago 019bb50b-e13e-71fc-a248-22b5247e3f76
medium codex Incorrect withdrawal accounting enables repeated sales withdrawals after parameter changes 0x52a494dbf47107cc0c624ee10703abecaf586776 $50,074.61 no 3 months ago 019bb50b-e133-727a-95cf-35a36617ffba
high detector ETH value transfer possible 0x5d7b782ec34cae8b38a56c1a3487337583178466 $0.00 no no 3 months ago 019bb50c-36be-73f5-8aa5-abd83ca7a6ba
high detector Untrusted CALL target/value reachable 0x5d7b782ec34cae8b38a56c1a3487337583178466 $0.00 no no 3 months ago 019bb50c-36be-73f5-8aa5-abd83ca7a6ba
medium slither Reentrancy in UniswapV3Pool.swap(address,bool,int256,uint160,bytes) (contracts/UniswapV3Pool.sol#596-788): 0xec64a72f36445621e040a99bc15a7500fb36ef8a $50,183.51 no 3 months ago 019bb50b-e129-720c-ad2f-a89dfdffa614
medium slither Reentrancy in UniswapV3Pool.collectProtocol(address,uint128,uint128) (contracts/UniswapV3Pool.sol#848-868): 0xec64a72f36445621e040a99bc15a7500fb36ef8a $50,183.51 no 3 months ago 019bb50b-e129-720c-ad2f-a89dfdffa614
medium codex Any whitelisted account can grant withdrawal privileges to arbitrary addresses 0x5a5eff38da95b0d58b6c616f2699168b480953c9 $50,207.22 no 3 months ago 019bb50b-e120-724d-80e7-fccefb42de00
low codex Unchecked arithmetic can overflow donation/withdrawal accounting 0x5a5eff38da95b0d58b6c616f2699168b480953c9 $50,207.22 no 3 months ago 019bb50b-e120-724d-80e7-fccefb42de00
medium codex Initializer is publicly callable before first initialization, allowing ownership take-over if left uninitialized 0xffd344f7f636ddae0923a0192b3dcb03cc26141d $50,218.08 no 3 months ago 019bb50b-e116-7363-a672-73467cab804a
medium detector ETH value transfer possible 0x5018cc0d628fb322b2a040cfcd269a36c60b1538 $0.00 no no 3 months ago 019bb50c-20bf-7140-89ff-d7e92aaf7320
medium detector SELFDESTRUCT reachable 0x5018cc0d628fb322b2a040cfcd269a36c60b1538 $0.00 no no 3 months ago 019bb50c-20bf-7140-89ff-d7e92aaf7320
medium detector Untrusted CALL target/value reachable 0x5018cc0d628fb322b2a040cfcd269a36c60b1538 $0.00 no no 3 months ago 019bb50c-20bf-7140-89ff-d7e92aaf7320
high cast SELFDESTRUCT present 0x5018cc0d628fb322b2a040cfcd269a36c60b1538 $0.00 no 3 months ago 019bb50c-20bf-7140-89ff-d7e92aaf7320
high slither TinyERC721.collections (contracts/token/TinyERC721.sol#138) is never initialized. It is used in: 0xc2d6b32e533e7a8da404abb13790a5a2f606ad75 $50,318.18 no 3 months ago 019bb50b-e10c-70c0-980f-32de859907be
medium codex Unchecked ERC20 transfer/transferFrom return values can record purchases or refunds without a successful token transfer 0x11c1197798d3b1cab6970577361172c00e4c5f36 $50,400.29 no 3 months ago 019bb50b-e100-72d3-870c-6f4cd7a7987a
low codex No verification of actual tokens received allows underpayment for fee-on-transfer tokens 0x11c1197798d3b1cab6970577361172c00e4c5f36 $50,400.29 no 3 months ago 019bb50b-e100-72d3-870c-6f4cd7a7987a
high codex ERC4626-style share inflation lets early depositor steal later deposits 0x15a86c79665b61a5747563d83aed3337821a8a79 $50,444.35 no 3 months ago 019bb50b-e0f2-711c-aedb-1c48d3e2f46f
medium slither Reentrancy in UniswapV3Pool.collectProtocol(address,uint128,uint128) (contracts/UniswapV3Pool.sol#848-868): 0xb1608e16609a7ff3ac5b0da49a0539bb0c3c3d9d $50,517.47 no 3 months ago 019bb50b-e0e4-7137-aa2e-4938f2b81a9c
medium slither Reentrancy in UniswapV3Pool.swap(address,bool,int256,uint160,bytes) (contracts/UniswapV3Pool.sol#596-788): 0xb1608e16609a7ff3ac5b0da49a0539bb0c3c3d9d $50,517.47 no 3 months ago 019bb50b-e0e4-7137-aa2e-4938f2b81a9c
medium slither Reentrancy in UniswapV3Pool.swap(address,bool,int256,uint160,bytes) (contracts/UniswapV3Pool.sol#596-788): 0x22e93213e8e75f1121e2cd532d1dd9fd4e50741f $50,537.67 no 3 months ago 019bb50b-e0db-73cf-b280-07f29c66f08d
medium slither Reentrancy in UniswapV3Pool.collectProtocol(address,uint128,uint128) (contracts/UniswapV3Pool.sol#848-868): 0x22e93213e8e75f1121e2cd532d1dd9fd4e50741f $50,537.67 no 3 months ago 019bb50b-e0db-73cf-b280-07f29c66f08d