1 |
Troubles |
Memory Leak (Java heap space) |
✓ |
|
|
|
|
2 |
|
Memory Leak (PermGen space) |
✓ |
|
|
|
|
3 |
|
Memory Leak (C heap space) |
✓ |
|
|
|
|
4 |
|
Deadlock (Java) |
✓ |
|
|
|
|
5 |
|
Deadlock (SQL) |
✓ |
|
|
|
|
6 |
|
Endless Waiting Process |
✓ |
|
|
|
|
7 |
|
Infinite Loop |
✓ |
|
|
|
|
8 |
|
Redirect Loop |
✓ |
|
|
|
|
9 |
|
Forward Loop |
✓ |
|
|
|
|
10 |
|
JVM Crash |
✓ |
|
|
|
|
11 |
|
Network Socket Leak |
✓ |
|
|
|
|
12 |
|
Database Connection Leak |
✓ |
|
|
|
|
13 |
|
File Descriptor Leak |
✓ |
|
|
|
|
14 |
|
Thread Leak |
✓ |
|
|
|
|
15 |
|
Mojibake |
✓ |
|
|
|
|
16 |
|
Integer Overflow |
✓ |
|
|
|
|
17 |
|
Round Off Error |
✓ |
|
|
|
|
18 |
|
Truncation Error |
✓ |
|
|
|
|
19 |
|
Loss of Trailing Digits |
✓ |
|
|
|
|
20 |
Vulnerabilities |
XSS (Cross-Site Scripting) |
✓ |
✓ |
✓ |
✓ |
✓ |
21 |
|
SQL Injection |
✓ |
✓ |
✓ |
✓ |
✓ |
22 |
|
LDAP Injection |
✓ |
|
|
|
|
23 |
|
Code Injection |
✓ |
|
|
|
|
24 |
|
OS Command Injection |
✓ |
✓ |
|
|
|
25 |
|
OGNL Expression Injection |
(✓) |
|
|
|
|
26 |
|
Mail Header Injection |
✓ |
|
|
|
|
27 |
|
Null Byte Injection |
✓ |
|
|
|
|
28 |
|
HTML Injection |
|
|
|
✓ |
|
29 |
|
ORM Injection |
|
|
|
✓ |
|
30 |
|
XML Injection |
|
|
|
✓ |
|
31 |
|
XPath Injection |
|
|
|
✓ |
|
32 |
|
XLST Injection |
|
|
|
✓ |
|
33 |
|
Extension Unrestricted File Upload |
✓ |
✓ |
|
|
|
34 |
|
Size Unrestricted File Upload |
✓ |
✓ |
|
|
|
36 |
|
Open Redirect |
✓ |
✓ |
✓ |
✓ |
|
37 |
|
Brute-force Attack |
✓ |
|
|
|
|
38 |
|
Session Fixation Attacks |
✓ |
|
|
|
|
39 |
|
Verbose Login Error Messages |
✓ |
|
|
|
|
40 |
|
Dangerous File Inclusion |
✓ |
|
|
|
|
41 |
|
Directory Traversal |
✓ |
✓ |
|
|
|
42 |
|
Unintended File Disclosure |
✓ |
|
|
|
|
43 |
|
CSRF (Cross-Site Request Forgery) |
✓ |
|
✓ |
✓ |
? |
44 |
|
XEE (XML Entity Expansion) |
✓ |
|
|
|
|
45 |
|
XXE (XML eXternal Entity) |
✓ |
✓ |
|
|
✓ |
46 |
|
Clickjacking |
✓ |
|
|
|
|
47 |
|
JWT Vulnerability |
|
✓ |
|
|
|
48 |
|
SSRF (Server-Side Request Forgery) |
|
✓ |
|
|
? |
49 |
|
Broken Authentication and Session Management |
|
|
✓ |
✓ |
✓ |
50 |
|
IDOR (Insecure Direct Object Reference) |
|
|
✓ |
✓ |
|
51 |
|
Security Misconfiguration |
|
|
✓ |
✓ |
|
52 |
|
Sensitive Data Exposure |
|
|
✓ |
✓ |
✓ |
53 |
|
Missing Function Level Access Control |
|
|
✓ |
✓ |
? |
54 |
|
Poor Data Validation |
|
|
✓ |
|
|
55 |
|
Insecure Data Storage |
|
|
✓ |
|
|
56 |
|
Unintended Data Leakage |
|
|
✓ |
|
|
57 |
|
Poor Authentication and Authorisation |
|
|
✓ |
|
|
58 |
|
Broken crypto |
|
|
✓ |
|
|
59 |
|
Client Side Injection |
|
|
✓ |
|
|
60 |
|
Lack Of Binary Protections |
|
|
✓ |
|
|
61 |
|
Using Known Vulnerable Components |
|
|
|
✓ |
✓ |
62 |
|
Insecure Deserialization |
|
|
|
|
✓ |
63 |
Performance Degradation |
Slow Regular Expression Parsing |
✓ |
|
|
|
|
64 |
|
Delay of creating string due to +(plus) operator |
✓ |
|
|
|
|
65 |
|
Delay due to unnecessary object creation |
✓ |
|
|
|
|
66 |
Errors |
AssertionError |
✓ |
|
|
|
|
67 |
|
ExceptionInInitializerError |
✓ |
|
|
|
|
68 |
|
FactoryConfigurationError |
✓ |
|
|
|
|
69 |
|
GenericSignatureFormatError |
✓ |
|
|
|
|
70 |
|
NoClassDefFoundError |
✓ |
|
|
|
|
71 |
|
OutOfMemoryError (Java heap space) |
✓ |
|
|
|
|
72 |
|
OutOfMemoryError (Requested array size exceeds VM limit) |
✓ |
|
|
|
|
73 |
|
OutOfMemoryError (unable to create new native thread) |
✓ |
|
|
|
|
74 |
|
OutOfMemoryError (GC overhead limit exceeded) |
✓ |
|
|
|
|
75 |
|
OutOfMemoryError (PermGen space) |
✓ |
|
|
|
|
76 |
|
OutOfMemoryError (Direct buffer memory) |
✓ |
|
|
|
|
77 |
|
StackOverflowError |
✓ |
|
|
|
|
78 |
|
TransformerFactoryConfigurationError |
✓ |
|
|
|
|
79 |
|
UnsatisfiedLinkError |
✓ |
|
|
|
|