Known-exploit function-selector replay

Raydium's assessment for RD-F-095 — scored not_assessed on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Cat 6A precursor signal (v1-deferred). The Dec 2022 exploit used withdraw_pnl + SyncNeedTake parameter manipulation. Both have been removed from the current AMM v4 program (post-exploit upgrade Dec 17, 2022). Any replay of the Dec 2022 exploit template would fail at the contract level — the instruction parameters no longer exist. Solana uses 8-byte Anchor instruction discriminators (not 4-byte EVM selectors), but the concept is applicable. No other known exploit-template instruction pattern specific to current Raydium programs (CLMM, CPMM, Stable) identified in public sources.

Sources #

URL
Raydium Detailed Post-Mortem and Next StepsPost-mortem confirms AmmParams::SyncNeedTake, SetLpSupply, SyncK and withdraw_pnl removed via Dec 17 2022 program upgraderetrieved 2026-04-29
GitHub
raydium-io/raydium-amm GitHub repositoryraydium-io/raydium-amm — current codebase; exploit instructions removed post-Dec 2022retrieved 2026-04-29

Methodology #

Detect whether a call-pattern matches a known-exploit replay template (specific selector sequence and calldata shape) against this protocol.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol raydium factor RD-F-095 score not_assessed collected_at 2026-04-29 12:31:55