Mehdi Karimi
Results
2
issues of
Mehdi Karimi
### Summary The `executePaymentQueue()` function in `PP_Queue_ManualExecution_v1` is vulnerable to a Denial-of-Service (DoS) attack due to unbounded growth of the `_queue` linked list. A malicious actor can repeatedly submit redeem...
The _processProtocolFeeViaTransfer function attempts to transfer collateralProtocolFeeAmount to the collateralTreasury. However, since _handleCollateralTokensBeforeBuy transfers all the funds to the project treasury, no collateral remains in the funding manager, causing _buyOrder...