← All incidents

PancakeBunny

A $200M loss on BNB Chain in 2021, caused by a price manipulation flaw. Here's what happened, the vulnerability class behind it, and where it stands in ProveWall's re-proof pipeline.

$200Mreported loss
2021year
BNB Chainchain
Price manipulationvulnerability class

Mechanism — flash-loan-inflated mint price

✔ Re-proven on a forked chain
We re-executed this exploit against the incident state on a forked chain; it moved value, and the patched control resisted. The signed, independently replayable receipt ships with the report.

What this class of bug is

Price-manipulation attacks feed a contract a distorted price — often via a flash-loaned pool imbalance — so it mints, borrows, or redeems at a value that drains honest liquidity.

How to read this page. The dollar figure is the publicly reported loss attributed to this incident. A ProveWall re-proof reproduces the vulnerability class/mechanism by execution on a forked chain, with a signed receipt — we say so explicitly only once that execution has passed.

Other price manipulation exploits

Same vulnerability class, re-proven or queued on the wall: Harvest Finance · Deus Finance · bZx flash-oracle

Want your own contract actually proven — not guessed?

Static tools and LLM auditors ask "is there a check here?" and miss the check that exists but is wrong. OmniGuard Labs runs the exploit on a forked chain and sends you a signed pass/fail receipt. Request a proof-backed audit →