分类简介

常见Web安全漏洞基础扫盲

A01:2021-Broken Access Control

A02:2021-Cryptographic Failures（加密失败）

infoleak

A03:2021-Injection

cmd_injection

A04:2021-Insecure Design

logical

A05:2021-Security Misconfiguration

A06:2021-Vulnerable and Outdated Components

A07:2021-ldentification and Authentication Failures

A08:2021-Software and Data Integrity Failures

A09:2021-Security Logging and Monitoring Failures

A10:2021-Server-Side Request Forgery (SSRF)

csrf-ssrf

感谢以下师傅们的投稿

• 狼组安全团队成员@wintrysec（温酒）