| Uncaught Exception | |
| Server-side Request Forgery (SSRF) | |
| Directory Traversal | |
| Server-side Request Forgery (SSRF) | |
| Improper Handling of Unicode Encoding | |
| Access Control Bypass | |
| Missing Cryptographic Step | |
| Incorrect Authorization | |
| Command Injection | |
| Cleartext Transmission of Sensitive Information | |
| Command Injection | |
| Incorrect Authorization | |
| Improper Handling of Insufficient Permissions or Privileges | |
| Information Exposure | |
| Exposure of Sensitive Information to an Unauthorized Actor | |
| Improper Authorization | |
| Unverified Ownership | |
| Exposure of Data Element to Wrong Session | |
| Improper Input Validation | |
| Insufficient Verification of Data Authenticity | |
| Improper Privilege Management | |
| Remote Code Execution (RCE) | |
| Out-of-bounds Write | |
| Regular Expression Denial of Service (ReDoS) | |
| Access Restriction Bypass | |
| Sandbox Bypass | |
| Arbitrary Code Execution | |
| Privilege Escalation | |