AuthenticationBypassUsinganAlternatePathorChannel
CleartextStorageofSensitiveInformation
CleartextTransmissionofSensitiveInformation
ClientSideEnforcementofServerSideSecurity
ConcurrentExecutionusingSharedResourcewithImproperSynchronizationRaceCondition
CrossSiteRequestForgeryCSRF
CrosssiteScriptingXSSGeneric
CrosssiteScriptingXSSReflected
CrosssiteScriptingXSSStored
CryptographicIssuesGeneric
DeserializationofUntrustedData
ExposedDangerousMethodorFunction
ExternallyControlledReferencetoaResourceinAnotherSphere
FileandDirectoryInformationExposure
ImproperAccessControlGeneric
ImproperAuthenticationGeneric
ImproperCertificateValidation
ImproperNeutralizationofEscapeMetaorControlSequences
ImproperPrivilegeManagement
InadequateEncryptionStrength
IncorrectCalculationofBufferSize
InformationExposureThroughDebugInformation
InformationExposureThroughDirectoryListing
InformationExposureThroughSentData
InformationExposureThroughanErrorMessage
InsecureDirectObjectReferenceIDOR
InsecureStorageofSensitiveInformation
InsufficientSessionExpiration
InsufficientlyProtectedCredentials
KeyExchangewithoutEntityAuthentication
MissingAuthenticationforCriticalFunction
MissingEncryptionofSensitiveData
MissingRequiredCryptographicStep
ModificationofAssumedImmutableDataMAID
PasswordinConfigurationFile
PlaintextStorageofaPassword
RelianceonCookieswithoutValidationandIntegrityCheckinginaSecurityDecision
RelianceonReverseDNSResolutionforaSecurityCriticalAction
RelianceonUntrustedInputsinaSecurityDecision
ReusingaNonceKeyPairinEncryption
ServerSideRequestForgerySSRF
TimeofcheckTimeofuseTOCTOURaceCondition
UnprotectedTransportofCredentials
UnrestrictedUploadofFilewithDangerousType
UseofCryptographicallyWeakPseudoRandomNumberGeneratorPRNG
UseofExternallyControlledFormatString
UseofHardcodedCredentials
UseofHardcodedCryptographicKey
UseofInherentlyDangerousFunction
UseofaBrokenorRiskyCryptographicAlgorithm
UseofaKeyPastitsExpirationDate
ViolationofSecureDesignPrinciples
WeakCryptographyforPasswords
WeakPasswordRecoveryMechanismforForgottenPassword
Folders and files Name Name Last commit message
Last commit date
parent directory
View all files
You can’t perform that action at this time.