- Integer Overflow
- Buffer Overflow
- Path Traversal
- OS Command Injection
- SQL Injection
- Hardcoded Credentials
- Cross-Site Scripting (XSS)
- Log Overflow
- XML Embedded DTDs
- Log Neutralization
- Hashing without Salt
- Insecure PRNGs
- Open Redirect
- Cache Poisoning
- Java Reflection Abuse
- Cross-Site Request Forgery (CSRF)
- Uncontrolled Format String