Content is hidden
Insecure Direct Object Reference (IDOR)
Cross-site scripting XSS
Information Exposure