| CVE-2019-2708 | |
| SQL Injection | |
| SQL Injection | |
| Allocation of Resources Without Limits or Throttling | |
| Loop with Unreachable Exit Condition ('Infinite Loop') | |
| Improper Resource Shutdown or Release | |
| Improper Cross-boundary Removal of Sensitive Data | |
| Directory Traversal | |
| Improper Input Validation | |
| CVE-2021-45115 | |
| Out-of-bounds Write | |
| CVE-2021-44420 | |
| HTTP Request Smuggling | |
| Deserialization of Untrusted Data | |
| Authorization Bypass Through User-Controlled Key | |
| HTTP Request Smuggling | |
| OS Command Injection | |
| Out-of-bounds Write | |
| Out-of-bounds Write | |
| Out-of-bounds Write | |
| Out-of-bounds Write | |
| Resource Exhaustion | |
| Buffer Overflow | |
| Cross-site Scripting (XSS) | |
| HTTP Request Smuggling | |
| HTTP Request Smuggling | |
| Creation of Temporary File With Insecure Permissions | |
| SQL Injection | |
| Cross-site Scripting (XSS) | |
| Arbitrary Argument Injection | |
| Inefficient Regular Expression Complexity | |
| Cross-site Scripting (XSS) | |
| Resource Exhaustion | |
| Resource Exhaustion | |
| Directory Traversal | |
| Arbitrary Code Injection | |
