https://portswigger.net/web-security/all-labs
- Access Control
- Authentication
- Business Logic Flaws
- Command Injection
- Cross Site Scripting
- Directory Traversal
- File Upload
- Information Disclosure
- SQL Injection
- Server Side Request Forgery
- XML External Entities