Submission Details
Severity: high
ValidLack of access control in `buyLoan` function allows a malicious user to force another pool to pay off a borrower's loan, while also cheating them out of any future interest from the loan
Prize pool breakdown
Total prize
20,000 USDC
nSLOC
70628 USDC / LOC
High Medium
18,000 USDC
Low
2,000 USDC
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.