Content is hidden
Server-Side Request Forgery (SSRF)
Information Exposure
Insecure Direct Object Reference (IDOR)
Full Path Disclosure
Weak Login Function
Weak Password Policy