| Cross-site Scripting (XSS) | |
| Allocation of Resources Without Limits or Throttling | |
| Allocation of Resources Without Limits or Throttling | |
| Allocation of Resources Without Limits or Throttling | |
| Asymmetric Resource Consumption (Amplification) | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| Improper Certificate Validation | |
| Improper Certificate Validation | |
| Cross-site Scripting (XSS) | |
| Cross-site Scripting (XSS) | |
| Cross-site Scripting (XSS) | |
| Cross-site Scripting (XSS) | |
| Improper Validation of Certificate with Host Mismatch | |
| Improper Validation of Certificate with Host Mismatch | |
| Improper Validation of Certificate with Host Mismatch | |
| Excessive Platform Resource Consumption within a Loop | |
| Excessive Platform Resource Consumption within a Loop | |
| Excessive Platform Resource Consumption within a Loop | |
| Improper Certificate Validation | |
| Improper Certificate Validation | |
| Improper Certificate Validation | |
| Improper Verification of Source of a Communication Channel | |
| Improper Verification of Source of a Communication Channel | |
| Improper Verification of Source of a Communication Channel | |
| Improper Verification of Source of a Communication Channel | |
| Reachable Assertion | |
| Reachable Assertion | |
| Reachable Assertion | |
| Improper Input Validation | |
| Improper Input Validation | |
| Improper Input Validation | |
| Creation of Immutable Text Using String Concatenation | |
| Creation of Immutable Text Using String Concatenation | |
| Creation of Immutable Text Using String Concatenation | |
| Improper Validation of Syntactic Correctness of Input | |
| Improper Validation of Syntactic Correctness of Input | |
| Improper Validation of Syntactic Correctness of Input | |
| Allocation of Resources Without Limits or Throttling | |
| Allocation of Resources Without Limits or Throttling | |
| Allocation of Resources Without Limits or Throttling | |
| Allocation of Resources Without Limits or Throttling | |
| Allocation of Resources Without Limits or Throttling | |
| Allocation of Resources Without Limits or Throttling | |
| Improper Output Neutralization for Logs | |
| Improper Output Neutralization for Logs | |
| Improper Output Neutralization for Logs | |
| Expected Behavior Violation | |
| Expected Behavior Violation | |
| Expected Behavior Violation | |
| Cross-site Scripting (XSS) | |
| Cross-site Scripting (XSS) | |
| Cross-site Scripting (XSS) | |
| Cross-site Scripting (XSS) | |
| Cross-site Scripting (XSS) | |
| Cross-site Scripting (XSS) | |
| CVE-2025-4673 | |
| CVE-2025-4673 | |
| CVE-2025-4673 | |
| Improper Handling of URL Encoding (Hex Encoding) | |
| Out-of-bounds Read | |
| Link Following | |
| Link Following | |
| Exposure of Resource to Wrong Sphere | |
| Exposure of Resource to Wrong Sphere | |
| Cross-site Scripting (XSS) | |
| Time-of-check Time-of-use (TOCTOU) | |
| Time-of-check Time-of-use (TOCTOU) | |
| Time-of-check Time-of-use (TOCTOU) | |
| Cross-site Scripting (XSS) | |
| Cross-site Scripting (XSS) | |
| Cross-site Scripting (XSS) | |
| Improper Input Validation | |
| Improper Input Validation | |
| Information Exposure | |
| Information Exposure | |
| Information Exposure | |
| Resource Exhaustion | |
| Resource Exhaustion | |
| Insufficient Verification of Data Authenticity | |
| Least Privilege Violation | |
| Least Privilege Violation | |
| Least Privilege Violation | |
| Least Privilege Violation | |
