_addCredIdPerAddress is public which can allow unauthorized manipulation. https://github.com/code-423n4/2024-08-phi/blob/8c0985f7a10b231f916a51af5d506dd6b0c54120/src/Cred.sol#L685
removeCredIdPerAddress is public which can allow unauthorized manipulation https://github.com/code-423n4/2024-08-phi/blob/8c0985f7a10b231f916a51af5d506dd6b0c54120/src/Cred.sol#L695
The getPositionsForCurator function in the Cred contract uses incorrect indexing when populating return arrays, potentially leading to out-of-bounds access. https://github.com/code-423n4/2024-08-phi/blob/8c0985f7a10b231f916a51af5d506dd6b0c54120/src/Cred.sol#L513

solidityCopycredIds = new uint256[](stopIndex - start_);
amounts = new uint256[](stopIndex - start_);

for (uint256 i = start_; i < stopIndex; i++) {
    // ... 
    credIds[i] = credId;  // Incorrect: should use [index]
    amounts[i] = amount;  // Incorrect: should use [index]
    // ...
}

The getCreatorFee function contains a logical error where it sets creatorFee to 0 when supply is 0, but then overwrites this value regardless of the supply. This may lead to incorrect fee calculations. https://github.com/code-423n4/2024-08-phi/blob/8c0985f7a10b231f916a51af5d506dd6b0c54120/src/curve/BondingCurve.sol#L142

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

0xNirix-Q.md

0xNirix-Q.md

Files

0xNirix-Q.md

Latest commit

History

0xNirix-Q.md

File metadata and controls