Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') | |
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') | |
Injection | |
Deserialization of Untrusted Data | |
XML External Entity (XXE) Injection | |
Information Exposure | |
Improper Check for Unusual or Exceptional Conditions | |
Cross-site Scripting (XSS) | |
Information Exposure | |
Access Control Bypass | |
Cross-site Scripting (XSS) | |
Cross-site Scripting (XSS) | |
Cross-site Scripting (XSS) | |
Weak Password Recovery Mechanism for Forgotten Password | |
Cross-site Request Forgery (CSRF) | |
Open Redirect | |
Insufficient Session Expiration | |
Cross-site Scripting (XSS) | |
Information Exposure | |
Cross-site Scripting (XSS) | |
Cross-site Scripting (XSS) | |
Information Exposure | |
Cross-site Scripting (XSS) | |
Cross-site Scripting (XSS) | |
Cross-site Scripting (XSS) | |
SQL Injection | |
Cross-site Scripting (XSS) | |
Arbitrary Code Execution | |
Arbitrary Code Execution | |
Arbitrary Code Execution | |