| Incomplete List of Disallowed Inputs | |
| Incomplete List of Disallowed Inputs | |
| Incomplete List of Disallowed Inputs | |
| Improper Control of Dynamically-Managed Code Resources | |
| Improper Control of Dynamically-Managed Code Resources | |
| Improper Control of Dynamically-Managed Code Resources | |
| Improper Control of Dynamically-Managed Code Resources | |
| Improperly Controlled Modification of Dynamically-Determined Object Attributes | |
| Protection Mechanism Failure | |
| Arbitrary Code Injection | |
| Improper Isolation or Compartmentalization | |
| Arbitrary Code Injection | |
| Improper Isolation or Compartmentalization | |
| Symlink Attack | |
| Improper Isolation or Compartmentalization | |
| Improper Isolation or Compartmentalization | |
| Information Exposure | |
| Allocation of Resources Without Limits or Throttling | |
| Arbitrary Code Injection | |
| Arbitrary Code Injection | |
| Uncaught Exception | |
| Arbitrary Code Injection | |
| Arbitrary Code Injection | |
| Arbitrary Code Injection | |
| Arbitrary Code Injection | |
| Arbitrary Code Injection | |
| Arbitrary Code Injection | |
| Improper Control of Dynamically-Managed Code Resources | |
| Remote Code Execution (RCE) | |
| Remote Code Execution (RCE) | |
| Sandbox Bypass | |
| Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') | |
| Improper Handling of Exceptional Conditions | |
| Sandbox Escape | |
| Sandbox Escape | |
| Sandbox Bypass | |
| Sandbox Bypass | |
| Sandbox Bypass | |
| Sandbox Bypass | |
