| Improper Authorization | |
| Allocation of Resources Without Limits or Throttling | |
| Incorrect Authorization | |
| Incorrect Authorization | |
| Insufficient Session Expiration | |
| Use of a Broken or Risky Cryptographic Algorithm | |
| Improper Check for Unusual or Exceptional Conditions | |
| Incorrect Authorization | |
| Incorrect Authorization | |
| Incorrect Authorization | |
| Uncontrolled Recursion | |
| Incorrect Authorization | |
| Missing Authorization | |
| Uncontrolled Recursion | |
| Incorrect Authorization | |
| Information Exposure | |
| Race Condition | |
| Improper Check for Unusual or Exceptional Conditions | |
| Session Fixation | |
| Incorrect Authorization | |
| Information Exposure | |
| Uncontrolled Recursion | |
| Server-side Request Forgery (SSRF) | |
| Information Exposure | |
| Unintended Proxy or Intermediary ('Confused Deputy') | |
| Incorrect Authorization | [,2.1.9)[2.2.0,2.2.8)[2.3.0,2.3.8)[3.0.0-alpha.1,3.0.0-alpha.8) |
| Uncaught Exception | |
| Uncaught Exception | |
| Uncaught Exception | |
| Improper Authorization | |
| Uncaught Exception | |
| Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) | [,1.5.5)[2.0.0-beta.1,2.0.0-beta.3) |
| Improper Authentication | [,1.5.4)[2.0.0-alpha.1,2.0.0-alpha.6) |
| Uncaught Exception | |
| Uncaught Exception | |
| Uncontrolled Recursion | |
| Uncontrolled Resource Consumption ('Resource Exhaustion') | |
| Uncaught Exception | |
| Uncontrolled Resource Consumption ('Resource Exhaustion') | |
| Incorrect Default Permissions | |