| Time-of-check Time-of-use (TOCTOU) | |
| Resource Exhaustion | |
| Time-of-check Time-of-use (TOCTOU) | |
| Unchecked Error Condition | |
| Allocation of Resources Without Limits or Throttling | |
| Resource Exhaustion | |
| Incomplete Cleanup | |
| Improper Input Validation | |
| Information Exposure | |
| HTTP Request Smuggling | |
| Improper Input Validation | |
| Incomplete Cleanup | |
| CVE-2023-44487 | |
| Open Redirect | |
| Unprotected Transport of Credentials | |
| Allocation of Resources Without Limits or Throttling | |
| Improper Encoding or Escaping of Output | |
| HTTP Request Smuggling | |
| Race Condition | |
| Cross-site Scripting (XSS) | |
| Resource Exhaustion | |
| Improper Resource Shutdown or Release | |
| Time-of-check Time-of-use (TOCTOU) | |
| Missing Release of Resource after Effective Lifetime | |
| Improper Input Validation | |
| Improper Authentication | |
| HTTP Request Smuggling | |
| CVE-2021-25329 | |
| Information Exposure | |
| Information Exposure | |
| Information Exposure | |
| CVE-2020-13943 | |
| Out-of-Bounds | |
| Loop with Unreachable Exit Condition ('Infinite Loop') | |
| Resource Exhaustion | |
| Deserialization of Untrusted Data | |
| HTTP Request Smuggling | |
| HTTP Request Smuggling | |
| Improper Input Validation | |
| Insufficiently Protected Credentials | |
| Session Fixation | |
| Improper Locking | |
| Cross-site Scripting (XSS) | |
| Resource Exhaustion | |
