| Improper Input Validation | |
| Directory Traversal | |
| Allocation of Resources Without Limits or Throttling | |
| Directory Traversal | |
| Link Following | |
| Information Exposure Through Log Files | |
| Link Following | |
| Improper Privilege Management | |
| CVE-2023-45288 | |
| Improper Validation of Integrity Check Value | |
| CVE-2024-24786 | |
| Improper Validation of Integrity Check Value | |
| CVE-2024-24786 | |
| Link Following | |
| Time-of-check Time-of-use (TOCTOU) | |
| Incorrect Default Permissions | |
| Placement of User into Incorrect Group | |
| Access of Resource Using Incompatible Type ('Type Confusion') | |
| Information Exposure | |
| Directory Traversal | |
| Origin Validation Error | |
| Placement of User into Incorrect Group | |
| Allocation of Resources Without Limits or Throttling | |
| CVE-2022-27191 | |
| Improper Privilege Management | |
| Access of Resource Using Incompatible Type ('Type Confusion') | |
| Information Exposure | |
| Improper Cross-boundary Removal of Sensitive Data | |
| Improper Locking | |
| Origin Validation Error | |
| Insufficiently Protected Credentials | |
| Improper Cross-boundary Removal of Sensitive Data | |
