TW
Tripwire
Find contracts. Test them. Review real vulns.
Confirmed Findings
2,205
crit 60 high 1157
All Findings
46,184
Across all runs
Chain
1
Mainnet focus
Signal Mix
24239
high severity in results
Findings
filter + triage
Reset
Quick filters: candidate lane confirmed only critical high detector codex
Severity Tool Title Address Value USD Validated Confirmed Found Run
medium detector Untrusted CALL target/value reachable 0x38930aae699c4cd99d1d794df9db41111b13092b $55,426.14 no no 3 months ago 019bb004-7ad2-70e7-af5b-3dd55be971b6
medium detector ETH value transfer possible 0x38930aae699c4cd99d1d794df9db41111b13092b $55,426.14 no no 3 months ago 019bb004-7ad2-70e7-af5b-3dd55be971b6
critical detector Untrusted DELEGATECALL target reachable 0x2e2c4746db09a43f03e17a6dfe70765083defa3a $55,457.43 no no 3 months ago 019bb004-7ac9-7026-8d9f-10df30b0c732
medium cast DELEGATECALL present 0x2e2c4746db09a43f03e17a6dfe70765083defa3a $55,457.43 no 3 months ago 019bb004-7ac9-7026-8d9f-10df30b0c732
high detector ETH value transfer possible 0x6b249a94182219cb1af58a197573dccd9ab94144 $55,473.89 no no 3 months ago 019bb004-7ac1-71ec-a3df-76571e731ff7
high detector Untrusted CALL target/value reachable 0x6b249a94182219cb1af58a197573dccd9ab94144 $55,473.89 no no 3 months ago 019bb004-7ac1-71ec-a3df-76571e731ff7
high detector ETH value transfer possible 0x34deff97889f3a6a483e3b9255cafcb9a6e03588 $55,492.91 no no 3 months ago 019bb004-7ab9-73fd-9028-3e51a75dab77
high detector Untrusted CALL target/value reachable 0x34deff97889f3a6a483e3b9255cafcb9a6e03588 $55,492.91 no no 3 months ago 019bb004-7ab9-73fd-9028-3e51a75dab77
medium detector CREATE/CREATE2 reachable 0x34deff97889f3a6a483e3b9255cafcb9a6e03588 $55,492.91 no no 3 months ago 019bb004-7ab9-73fd-9028-3e51a75dab77
low cast Contract creation opcode present 0x34deff97889f3a6a483e3b9255cafcb9a6e03588 $55,492.91 no 3 months ago 019bb004-7ab9-73fd-9028-3e51a75dab77
critical detector Untrusted DELEGATECALL target reachable 0x1b7d237406f51978d48bfcec2211c5eb97a344aa $55,522.08 no no 3 months ago 019bb004-7ab1-705e-a818-96d48a80f311
medium cast DELEGATECALL present 0x1b7d237406f51978d48bfcec2211c5eb97a344aa $55,522.08 no 3 months ago 019bb004-7ab1-705e-a818-96d48a80f311
high detector Authorization based on tx.origin 0xa1559cb92445cd39e3f8f16c3574e99850bc7b7d $55,529.41 no 3 months ago 019bb004-7aaa-7101-90e3-70d09190c5dd
medium detector ETH value transfer possible 0xa1559cb92445cd39e3f8f16c3574e99850bc7b7d $55,529.41 no no 3 months ago 019bb004-7aaa-7101-90e3-70d09190c5dd
medium detector Untrusted CALL target/value reachable 0xa1559cb92445cd39e3f8f16c3574e99850bc7b7d $55,529.41 no no 3 months ago 019bb004-7aaa-7101-90e3-70d09190c5dd
info cast Heavy CALL-family usage 0xa1559cb92445cd39e3f8f16c3574e99850bc7b7d $55,529.41 no 3 months ago 019bb004-7aaa-7101-90e3-70d09190c5dd
medium detector ETH value transfer possible 0xb29c98c950a9134568e370b9507cf3a6bddceb49 $55,577.12 no no 3 months ago 019bb004-7aa1-70d2-9db6-bc20a1f90f02
medium detector Untrusted CALL target/value reachable 0xb29c98c950a9134568e370b9507cf3a6bddceb49 $55,577.12 no no 3 months ago 019bb004-7aa1-70d2-9db6-bc20a1f90f02
info cast Heavy CALL-family usage 0xb29c98c950a9134568e370b9507cf3a6bddceb49 $55,577.12 no 3 months ago 019bb004-7aa1-70d2-9db6-bc20a1f90f02
info cast Heavy EXTCODE*/BALANCE usage 0xb29c98c950a9134568e370b9507cf3a6bddceb49 $55,577.12 no 3 months ago 019bb004-7aa1-70d2-9db6-bc20a1f90f02
high detector Authorization based on tx.origin 0xecb55b39adb7c166ccab4ccb77463ded1d201de4 $55,577.52 no 3 months ago 019bb004-7a88-71a8-a984-b890b5639b62
medium detector ETH value transfer possible 0xecb55b39adb7c166ccab4ccb77463ded1d201de4 $55,577.52 no no 3 months ago 019bb004-7a88-71a8-a984-b890b5639b62
medium detector CREATE/CREATE2 reachable 0xecb55b39adb7c166ccab4ccb77463ded1d201de4 $55,577.52 no no 3 months ago 019bb004-7a88-71a8-a984-b890b5639b62
medium detector Untrusted CALL target/value reachable 0xecb55b39adb7c166ccab4ccb77463ded1d201de4 $55,577.52 no no 3 months ago 019bb004-7a88-71a8-a984-b890b5639b62
low cast Contract creation opcode present 0xecb55b39adb7c166ccab4ccb77463ded1d201de4 $55,577.52 no 3 months ago 019bb004-7a88-71a8-a984-b890b5639b62
low codex External value transfers without detected reentrancy guard 0xb468ab08385c42b086cf487ad4f1821a18ee714f $0.00 no 3 months ago 019bab3e-9728-735c-874d-13bc5911ad95
low codex Potential external CALLs with computed targets and ETH value 0xb468ab08385c42b086cf487ad4f1821a18ee714f $0.00 no 3 months ago 019bab3e-9728-735c-874d-13bc5911ad95
high codex Computed DELEGATECALL target reachable (arbitrary code execution risk) 0x6c6210232654a5b57a576f9b4434f36e0b5d3768 $0.00 no 3 months ago 019bab3e-55f8-7003-b95c-b596b34c2a96
medium codex Computed external CALLs with ETH value (potential reentrancy/arbitrary call) 0x6c6210232654a5b57a576f9b4434f36e0b5d3768 $0.00 no 3 months ago 019bab3e-55f8-7003-b95c-b596b34c2a96
high codex Old committee members remain authorized after rotation 0x49643fc85fb1f25b6775ebbbdc69295d45105abc $0.00 no 3 months ago 019bab3d-f2be-72f8-a06f-15a39da6a9c7
medium codex Oracle price validation missing allows minimum limit bypass or revert 0x49643fc85fb1f25b6775ebbbdc69295d45105abc $0.00 no 3 months ago 019bab3d-f2be-72f8-a06f-15a39da6a9c7
low codex StableSwap accounting assumes exact token transfers (fee-on-transfer breaks invariants) 0x49643fc85fb1f25b6775ebbbdc69295d45105abc $0.00 no 3 months ago 019bab3d-f2be-72f8-a06f-15a39da6a9c7
high slither TimelockController._execute(address,uint256,bytes) (lib/openzeppelin-contracts/contracts/governance/TimelockController.sol#412-415) sends eth to arbitrary user 0xc1c5b18774d0282949331b719b5ea4a21cbc62c8 $0.00 no 3 months ago 019bab3d-c746-7355-af08-a01c5cba9495
high slither VaultLib.processor(address[],uint256[],bytes[]) (src/library/VaultLib.sol#319-336) sends eth to arbitrary user 0xc1c5b18774d0282949331b719b5ea4a21cbc62c8 $0.00 no 3 months ago 019bab3d-c746-7355-af08-a01c5cba9495
high codex processAccounting ignores buffer/strategy assets, enabling share price manipulation 0xc1c5b18774d0282949331b719b5ea4a21cbc62c8 $0.00 no 3 months ago 019bab3d-c746-7355-af08-a01c5cba9495
medium codex Share pricing fully trusts provider rates without validation or staleness checks 0xc1c5b18774d0282949331b719b5ea4a21cbc62c8 $0.00 no 3 months ago 019bab3d-c746-7355-af08-a01c5cba9495
low codex Fee-on-transfer tokens can inflate shares and totalAssets 0xc1c5b18774d0282949331b719b5ea4a21cbc62c8 $0.00 no 3 months ago 019bab3d-c746-7355-af08-a01c5cba9495
critical codex Computed DELEGATECALL target reachable (arbitrary code execution in caller storage) 0x62c9e5e52351e02635f48072fa20c03bb650f787 $0.00 no 3 months ago 019bab3d-a735-71f5-99d9-235223139c05
high codex CALLCODE to computed target enables storage/context corruption 0x62c9e5e52351e02635f48072fa20c03bb650f787 $0.00 no 3 months ago 019bab3d-a735-71f5-99d9-235223139c05
medium codex Multiple computed CALLs with ETH value may allow arbitrary external calls/ETH transfers 0x62c9e5e52351e02635f48072fa20c03bb650f787 $0.00 no 3 months ago 019bab3d-a735-71f5-99d9-235223139c05
high codex Unrestricted initializer allows takeover of uninitialized AToken instance/proxy 0x6faee7aac498326660ac2b7207b9f67666073111 $0.00 no 3 months ago 019bab3d-a126-71a9-ba02-d6d1d782d905
critical codex Initializer is publicly callable, enabling proxy takeover if not initialized atomically 0x677ecf96dbfee1defbde8d2e905a39f73aa27b89 $0.00 no 3 months ago 019bab3d-7dae-718a-bd33-ed21b428c9ba
low codex CREATE opcode reachable 0xd9537f37fb0c7c6219b1d929688d4553d7735fdc $0.00 no 3 months ago 019bab3d-3c25-70db-987e-c40123e1a189
low codex External CALLs with computed target/value (possible ETH transfer) 0xd9537f37fb0c7c6219b1d929688d4553d7735fdc $0.00 no 3 months ago 019bab3d-3c25-70db-987e-c40123e1a189
info codex Implementation appears behind an EIP-1967 proxy 0xd9537f37fb0c7c6219b1d929688d4553d7735fdc $0.00 no 3 months ago 019bab3d-3c25-70db-987e-c40123e1a189
medium codex SELFDESTRUCT instruction present and potentially reachable 0x5018cc0d628fb322b2a040cfcd269a36c60b1538 $0.00 no 3 months ago 019bab3d-0c7e-71f2-bf8e-4275a4cf132f
medium codex Computed external CALLs with possible ETH value transfer 0x5018cc0d628fb322b2a040cfcd269a36c60b1538 $0.00 no 3 months ago 019bab3d-0c7e-71f2-bf8e-4275a4cf132f
low codex Hardcoded msg.sender==0xffff... guard suggests unusual/possibly unreachable authorization 0x5018cc0d628fb322b2a040cfcd269a36c60b1538 $0.00 no 3 months ago 019bab3d-0c7e-71f2-bf8e-4275a4cf132f
medium codex Proxy can be hijacked if not initialized atomically 0x5e1e6dcf05fb49568aa66f40b9e3834c86008c8f $0.00 no 3 months ago 019bab3c-e9f9-72ab-84cf-abd0852573bf
low codex Implementation contract is left initializable 0x5e1e6dcf05fb49568aa66f40b9e3834c86008c8f $0.00 no 3 months ago 019bab3c-e9f9-72ab-84cf-abd0852573bf