QuillAudits Uncovered & Mitigated 32 Critical Issues Across 5 Projects

In the fast-paced landscape of Web3, where smart contracts power the decentralized future, security has become the bedrock of trust and innovation. With billions of dollars and critical user data at stake, ensuring code is free from vulnerabilities is essential. Amid the rising demand for bulletproof audits, QuillAudits has carved out a reputation as a [...]

Oct 20, 2024 - 06:34
 0
QuillAudits Uncovered & Mitigated 32 Critical Issues Across 5 Projects

In the fast-paced landscape of Web3, where smart contracts power the decentralized future, security has become the bedrock of trust and innovation.

With billions of dollars and critical user data at stake, ensuring code is free from vulnerabilities is essential. Amid the rising demand for bulletproof audits, QuillAudits has carved out a reputation as a go-to security partner, offering tailored solutions across 20+ blockchain ecosystems. Backed by a flawless track record with 0 exploits, they are setting the standard for smart contract security, helping projects launch with confidence and peace of mind.

Recently, QuillAudits uncovered and mitigated 32 critical issues across five major projects, enhancing the security and reliability of these protocols.

Here’s a breakdown of these audits:

1. Torque

Torque is a protocol designed to optimize loan management by facilitating the refinancing of crypto assets between Aave and Radiant lending pools. It allows users to repay loans in USDC or USDCe and withdraw WBTC or WETH.

Critical Issues Identified:

  • Inadequate handling of excess funds in repay functions
  • Emergency withdraw function may fail for certain tokens

Mitigated: 6 issues found and resolved, securing the protocol for efficient asset management.

Check out the Audit Report.

2. BTCfi

Runesfi (Rebranded to BTCfi) is developing a range of products for the Runes Protocol, including a DEX, Bridge, Trading Bot, and more. Their platform requires a secure infrastructure to support these applications.

Critical Issues Identified:

  • Outdated software and plugins
  • Cpanel and webmail exposed

Mitigated: 5 issues were identified and resolved, bolstering the security of the platform’s applications.

Check out the Audit Report.

3. LicenseFlow

LicenseFlow offers a licensing platform that enables secure product licensing. Its financial functions, however, posed potential risks.

Critical Issues Identified:

  • Use of payable.transfer might cause silent failures
  • Potential loss of funds in transfer functions

Mitigated: 2 critical issues were resolved, ensuring smoother and more secure transactions.

Check out the Audit Report.

4. OMA3

OMA3 integrates token locking and staking contracts with access control mechanisms, allowing users to stake and un-stake tokens while ensuring security.

Critical Issues Identified:

  • Centralization risk due to unique address control

Mitigated: 5 issues, including centralization concerns, were successfully mitigated, ensuring a more decentralized and secure protocol.

Check out the Audit Report.

5. ERUSD

ERUSD introduces a stablecoin backed by Ethereum Classic (ETC), maintaining a soft peg to the US Dollar. Its innovative approach offers stability and global economic opportunities.

Critical Issues Identified:

  • Users cannot buy small amounts of ERUSD due to overflow
  • Initialization could be performed by anyone

Mitigated: 14 issues were resolved, fortifying the protocol to offer a reliable and secure stablecoin system.

Check out the Audit Report.

About QuillAudits

QuillAudits is a leading smart contract security firm renowned for its flawless track record and 0 exploits. Having conducted over 1,000 audits across 20+ blockchains, including any L1/L2 like Ethereum, BSC, & Solana, QuillAudits provides rigorous, customized security assessments. Their expertise ensures that Web3 projects remain secure and reliable, making them a trusted partner in the blockchain space.

What's Your Reaction?

like

dislike

love

funny

angry

sad

wow

CryptoFortress Disclosure: This article does not represent investment advice. The content and materials featured on this page are for educational purposes only.