|
Mass Dispel
|
Miscellaneous |
100 |
|
|
Steganography
|
Security through Obscurity |
700 |
|
|
Weird Crypto
|
Cryptographic Issues |
250 |
|
|
Meta Geo Stalking
|
Sensitive Data Exposure |
250 |
|
|
Security Policy
|
Miscellaneous |
250 |
|
|
Easter Egg
|
Broken Access Control |
700 |
|
|
Password Strength
|
Broken Authentication |
250 |
|
|
DOM XSS
|
XSS |
100 |
|
|
Login Admin
|
Injection |
250 |
|
|
Deprecated Interface
|
Security Misconfiguration |
250 |
|
|
CAPTCHA Bypass
|
Broken Anti Automation |
450 |
|
|
GDPR Data Theft
|
Sensitive Data Exposure |
700 |
|
|
Forgotten Sales Backup
|
Sensitive Data Exposure |
700 |
|
|
Poison Null Byte
|
Improper Input Validation |
700 |
|
|
Forgotten Developer Backup
|
Sensitive Data Exposure |
700 |
|
|
Access Log
|
Sensitive Data Exposure |
700 |
|
|
Score Board
|
Miscellaneous |
100 |
|
|
Error Handling
|
Security Misconfiguration |
100 |
|
|
Exposed Metrics
|
Sensitive Data Exposure |
100 |
|
|
Confidential Document
|
Sensitive Data Exposure |
100 |
|