[web]

XSS, SQLi, SSRF, session attacks, auth bypass, IDOR, and more.