Competitive Audits
First Flights
Judging
Leaderboard
Docs
Toggle theme
Sign up
Log in
All First Flights
First Flight #21: KittyFi
Submissions
First Flight #21: KittyFi
First Flight #21
First Flight #21: KittyFi
First Flight #21
Beginner Friendly
DeFi
Foundry
100
EXP
First Flights
100
EXP
Aug 1st, 2024 → Aug 8th, 2024
View repo
View results
187 / 187
Submissions
Severity
Validity
Tags
Author
#1
Minting and Burning Control
High
Invalid
Shitzu
#2
burnKittyCoin() in KittyPool.sol should check if _hasEnoughMeowllateral()
High
Invalid
0x40
#3
Critical Vulnerability in KittyVault Contract Allows Unauthorized Token Transfers Due to Improper Use of ERC20 transferFrom Function
High
Invalid
heim
#4
H-01 : Unauthorized Cross-Account Balance Manipulation and Token Burn Mismatch in `KittyPool::burnKittyCoin`
High
Invalid
syedrabeet2002
#5
Reentrancy
Medium
Invalid
Shitzu
#6
Token Approval: Safe Patterns and safeApprove
Low
Invalid
Shitzu
#7
Price Feed Manipulation
High
Invalid
Shitzu
#8
`safeTransferFrom` is vulnerable
High
Invalid
Shitzu
#9
safeTransferFrom not being used properly
Low
Invalid
Shitzu
#10
Missing Getter Function for i_euroPriceFeed Address in KittyPool Contract
Low
Invalid
purpledragon
#11
Unused Custom Error
Low
Invalid
advaita
#12
Race conditions in `KittyPool::purrgeBadPawsition` allow attackers to front run a user attempting to liquidate their position by minting more tokens causing the user to repay more than intended
High
Invalid
greese
#13
Path Error
Low
Invalid
yjl3393980084
#14
Some spelling errors
Low
Invalid
yjl3393980084
#15
permission management vulnerability
Low
Invalid
yjl3393980084
#16
In `KittyPool` users collateral could potentially lock, leading to financial loss during the withdrew all the Collateral value form vault and tries to mint `kittyCoin` without deposit any Collateral.
Low
Valid
totalCattyNip being 0 makes...
badal_sharma09
#17
Unauthorized Token Transfer via Arbitrary from Address in transferFrom
High
Invalid
soloking
#18
H-01: Lack of access control in `burnKittyCoin()` function
High
Invalid
0xlasadie
#19
Lack of Events for Minting and Burning in KittyCoin.sol
Low
Invalid
heim
#20
Inadequate Authorization Checking for pool Address in KittyCoin.sol
Medium
Invalid
heim
#21
Missing Function to Update pool Address in KittyCoin.sol
High
Invalid
heim
#22
Missing Address Verification on Minting in KittyCoin.sol
Medium
Invalid
heim
#23
Lack of Events for Critical Function Calls in KittyPool.sol
Low
Invalid
heim
#24
Missing checks in `KittyCoin` lead to unexpected errors and reverts
Low
Invalid
badal_sharma09
#25
Lack of Events for Critical Functions in KittyValue.sol
Medium
Invalid
heim
#26
Missing Authorization Check for purrrCollateralToAave and purrrCollateralFromAave in KittyVault.sol
Medium
Invalid
heim
#27
Absence of Function to Update meowntainer Address in KittyVault.sol
Medium
Invalid
heim
#28
Lack of Address Validation in Transfer Functions in KittyVault.sol
Low
Invalid
heim
#29
KittyVault::getUserVaultMeowllateralInEuros doesnt check for heartbeat or price validation
Medium
Valid
Stale Price from Chainlink ...
4rdiii
#30
One User's meowllateral stuck in the kittypool while others may have more kittyCoins than pool's limitation when user call burnKittyCoin take others's address
Medium
Invalid
bytesflow007
Previous
1
2
3
...
More pages
7
Next
Support
FAQs
Can’t find an answer? Join our Discord or follow us on Twitter.
What is Cyfrin CodeHawks?
What is a competitive audit?
How can I host a competition on CodeHawks?
How is a contest prize pool determined?
What is community judging?
How do I get rewarded?
What is a First Flight?
Give us feedback!
