Access Subversion
005. Privilege escalation006. Authentication mechanism absence or evasion007. Cross-site request forgery013. Insecure object reference018. Improper authentication for shared folders024. Unrestricted access between network segments - AWS027. Insecure file upload031. Excessive privileges - AWS039. Improper authorization control for web services042. Insecurely generated cookies051. Cracked weak credentials056. Anonymous connection057. Asymmetric denial of service - Content length062. Concurrent sessions068. Insecure session expiration time075. Unauthorized access to files - APK Content Provider076. Insecure session management081. Lack of multi-factor authentication115. Security controls bypass or absence126. Lack of isolation methods128. Insecurely generated cookies - HttpOnly129. Insecurely generated cookies - SameSite130. Insecurely generated cookies - Secure157. Unrestricted access between network segments158. Unrestricted access between network segments - Azure AD159. Excessive privileges160. Excessive privileges - Temporary Files163. Insecure digital certificates201. Unauthorized access to files202. Unauthorized access to files - Debug APK203. Unauthorized access to files - Cloud Storage Services205. Insufficient Physical Access Controls206. Security controls bypass or absence - Anti hooking207. Security controls bypass or absence - SSLPinning208. Security controls bypass or absence - Antivirus209. Security controls bypass or absence - Emulator210. Security controls bypass or absence - Facial Recognition212. Security controls bypass or absence - Cloudflare240. Authentication mechanism absence or evasion - OTP241. Authentication mechanism absence or evasion - AWS242. Authentication mechanism absence or evasion - WiFi243. Authentication mechanism absence or evasion - Admin Console244. Authentication mechanism absence or evasion - BIOS279. Root detection control bypass280. Session Fixation286. Insecure object reference - Personal information287. Insecure object reference - Corporate information288. Insecure object reference - Financial information295. Insecure session management - Change Password298. Authentication mechanism absence or evasion - Redirect299. Authentication mechanism absence or evasion - JFROG300. Authentication mechanism absence or evasion - Azure301. Concurrent sessions control bypass305. Security controls bypass or absence - Data creation306. Insecure object reference - Files307. Insecure object reference - Data310. Unauthorized access to screen311. Unrestricted access between network segments - JSch325. Excessive privileges - Wildcards328. Insecure object reference - Session management337. Insecure session management - CSRF Fixation345. Security controls bypass or absence - Session Invalidation346. Excessive privileges - Mobile App348. Insecure digital certificates - Lifespan350. Insecure digital certificates - Chain of trust354. Insecure file upload - Files Limit368. Unrestricted access between network segments - StrictHostKeyChecking369. Insecure object reference - User deletion370. Authentication mechanism absence or evasion - Security Image374. Security controls bypass or absence - Debug Protection375. Security controls bypass or absence - Tampering Protection376. Security controls bypass or absence - Reversing Protection436. Security controls bypass or absence - Fingerprint455. Excessive LLM agency457. Unrestricted access between network segments - databases