Content is hidden
Information Exposure
Other
Application-Level Denial-of-Service (DoS)
Server-Side Request Forgery (SSRF)
No Rate Limiting on Form
Business Logic Errors
Lack of Password Confirmation