| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| Protection Mechanism Failure | |
| Improper Authentication | |
| Incorrect Authorization | |
| Authorization Bypass Through User-Controlled Key | |
| SQL Injection | |
| Incorrect Authorization | |
| Incorrect Authorization | |
| Incomplete Blacklist | |
| Incorrect Authorization | |
| Information Exposure | |
| Directory Traversal | |
| Information Exposure | |
| Improper Input Validation | |
| Cross-site Scripting (XSS) | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| Cross-site Scripting (XSS) | |
| Authentication Bypass | |
| Exposure of Data Element to Wrong Session | |
| Cross-site Scripting (XSS) | |
| Missing Authentication for Critical Function | |
| Improper Handling of Highly Compressed Data (Data Amplification) | |
| SQL Injection | |
| SQL Injection | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| Arbitrary Argument Injection | |
| SQL Injection | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| Authorization Bypass Through User-Controlled Key | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |