#A01:2021 - Broken Access Control
CWE-284: Improper Access Control - Nível de criticidade: média
CWE-285: Improper Authorization - Nível de criticidade: alta
#A02:2021 - Cryptographic Failures
CWE-200: Exposure of Sensitive Information to an Unauthorized Actor - Nível de criticidade: alta
#A03:2021 - Injection
CWE-79: Improper Neutralization of Input During Web Page Generation - Criticidade média
CWE-400: Uncontrolled Resource Consumption - Nível de criticidade: crítica
CWE-89: Improper Neutralization of Special Elements used in an SQL - Nível de criticidade: alta
CWE-94: Improper Control of Generation of Code - Nível de criticidade: crítica
#A05:2021 - Security Misconfiguration
CWE-22: Improper Limitation of a Pathname to a Restricted Directory - Nível de criticidade: alta
#A08:2021 - Software and Data Integrity Failures
CWE-784: Reliance on Cookies without Validation and Integrity Checking in a Security Decision - Nível de criticidade: alta