Missing authentication for critical API endpoint, Implement authentication (JWT/OAuth/OIDC) and enforce authorization (RBAC)., Unpatched software component / Log/XML parser, Patch; upgrade vulnerable software component to current stable release, SSRF via webhook integration, 1Patch: implement strict network allow-lists for server-side HTTP requests, Hardcoded cryptographic secrets in frontend bundle, Patch; rotate keys and migrate secrets to a secure backend vault, Stored XSS in user profile, Patch; implement context-aware output encoding and strict CSP, Untrusted SSL/TLS Server X.509 certificate, Patch; upload signed certificate from trusted third-party provider

Tauler de classificació

Estil visual

Opcions

Canvia de fonament

Restaurar desada automàtica: ?