Updated_Broken_Access_Control_Vulnerabilities

The document lists various vulnerabilities categorized by their priority levels, ranging from P1 to P3 and P4. The vulnerabilities include issues such as insecure direct object references, improper authentication, and misconfigurations. Each entry is assigned a priority indicating the severity of the vulnerability.

Uploaded by

sameerbhatti8162

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as XLSX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

3 views

Updated_Broken_Access_Control_Vulnerabilities

Uploaded by

sameerbhatti8162

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as XLSX, PDF, TXT or read online on Scribd

You are on page 1/ 10

# Vulnerability Priority

1 IDOR P1
2 Forced broP2
3 Vertical pr P1
4 Horizontal P1
5 Missing autP1
6 Insecure diP1
7 UnrestricteP1
8 Parameter P2
9 MisconfiguP2
10 API privile P1
11 Hidden fielP3
12 Path traverP1
13 Session fix P1
14 Wildcard mP2
15 CORS miscoP2
16 Cache poisP2
17 Role mism P2
18 Security thP3
19 UnprotecteP1
20 HardcodedP1
21 Open direcP3
22 Missing sesP2
23 Privilege e P1
24 Bypassing P2
25 Query paraP1
26 Lack of inpP2
27 Improper l P2
28 Default ad P1
29 Enumeration P3
30 Cookie tamP2
31 User enume P3
32 UnauthorizP1
33 Egress filt P2
34 Debug modP2
35 Backup fileP1
36 Verb tampeP2
37 Unrestrict P2
38 Directory l P3
39 Insecure S3P1
40 Wildcard s P2
41 Lack of MFP1
42 Insecure reP2
43 Role confusP2
44 Broken RB P1
45 Bypassing P1
46 Missing HTP2
47 Weak API P2
48 Token reuse P1
49 Access via P2
50 Improper oP1
51 Account takP1
52 Sensitive fiP1
53 Directory tP1
54 Missing APIP2
55 SOAP actioP2
56 Exploiting P2
57 Lack of autP1
58 Open GrapP2
59 FunctionaliP2
60 Access via P1
61 Exposed cl P1
62 Open shareP2
63 Unauthori P1
64 Trust bound P1
65 Improper dP1
66 Logging byP3
67 Bypass via P2
68 Privilege e P1
69 Cross-tenanP1
70 Improper viP1
71 Exposed adP1
72 Failure to P2
73 Lack of encP1
74 Cookie replP2
75 Insecure P1
76 MisconfiguP1
77 Forgotten aP2
78 Lack of re P2
79 Exposed con P1
80 Forgotten P2
81 Improper sP1
82 Privilege e P1
83 Lack of expP2
84 Role-basedP2
85 Exploiting P1
86 Improper P1
87 Exposed ver P2
88 Open portsP2
89 Outdated pP2
90 Lack of int P2
91 Weakly proP1
92 SubdomainP1
93 Resource eP2
94 AuthenticatP1
95 Business loP2
96 Broken se P1
97 Exploiting P2
98 Backdoor aP1
99 Improper mP2
100 UnauthorizP2
101 MisconfiguP2
102 Sensitive dP2
103 Missing owP1
104 Unprotected P2
105 Improper dP2
106 Weak domai P2
107 Security mP1
108 Credential P1
109 UnsanitizedP1
110 Exploiting P3
111 Debug endp P2
112 Improper i P2
113 Cloud acceP1
114 Third-partyP2
115 Unauthori P1
116 Hidden APIP2
117 MisconfigurP2
118 Weak transP1
119 Lack of po P2
120 Predictabl P2
121 Exposed JWP1
122 Multi-tenaP1
123 Broken poliP2
124 UnprotecteP1
125 Privilege e P1
126 Additional P3
127 Additional P4
128 Additional P1
129 Additional P2
130 Additional P3
131 Additional P4
132 Additional P1
133 Additional P2
134 Additional P3
135 Additional P4
136 Additional P1
137 Additional P2
138 Additional P3
139 Additional P4
140 Additional P1
141 Additional P2
142 Additional P3
143 Additional P4
144 Additional P1
145 Additional P2
146 Additional P3
147 Additional P4
148 Additional P1
149 Additional P2
150 Additional P3
151 Additional P4
152 Additional P1
153 Additional P2
154 Additional P3
155 Additional P4
156 Additional P1
157 Additional P2
158 Additional P3
159 Additional P4
160 Additional P1
161 Additional P2
162 Additional P3
163 Additional P4
164 Additional P1
165 Additional P2
166 Additional P3
167 Additional P4
168 Additional P1
169 Additional P2
170 Additional P3
171 Additional P4
172 Additional P1
173 Additional P2
174 Additional P3
175 Additional P4
176 Additional P1
177 Additional P2
178 Additional P3
179 Additional P4
180 Additional P1
181 Additional P2
182 Additional P3
183 Additional P4
184 Additional P1
185 Additional P2
186 Additional P3
187 Additional P4
188 Additional P1
189 Additional P2
190 Additional P3
191 Additional P4
192 Additional P1
193 Additional P2
194 Additional P3
195 Additional P4
196 Additional P1
197 Additional P2
198 Additional P3
199 Additional P4
200 Additional P1
201 Additional P2
202 Additional P3
203 Additional P4
204 Additional P1
205 Additional P2
206 Additional P3
207 Additional P4
208 Additional P1
209 Additional P2
210 Additional P3
211 Additional P4
212 Additional P1
213 Additional P2
214 Additional P3
215 Additional P4
216 Additional P1
217 Additional P2
218 Additional P3
219 Additional P4
220 Additional P1
221 Additional P2
222 Additional P3
223 Additional P4
224 Additional P1
225 Additional P2
226 Additional P3
227 Additional P4
228 Additional P1
229 Additional P2
230 Additional P3
231 Additional P4
232 Additional P1
233 Additional P2
234 Additional P3
235 Additional P4
236 Additional P1
237 Additional P2
238 Additional P3
239 Additional P4
240 Additional P1
241 Additional P2
242 Additional P3
243 Additional P4
244 Additional P1
245 Additional P2
246 Additional P3
247 Additional P4
248 Additional P1
249 Additional P2
250 Additional P3
251 Additional P4
252 Additional P1
253 Additional P2
254 Additional P3
255 Additional P4
256 Additional P1
257 Additional P2
258 Additional P3
259 Additional P4
260 Additional P1
261 Additional P2
262 Additional P3
263 Additional P4
264 Additional P1
265 Additional P2
266 Additional P3
267 Additional P4
268 Additional P1
269 Additional P2
270 Additional P3
271 Additional P4
272 Additional P1
273 Additional P2
274 Additional P3
275 Additional P4
276 Additional P1
277 Additional P2
278 Additional P3
279 Additional P4
280 Additional P1
281 Additional P2
282 Additional P3
283 Additional P4
284 Additional P1
285 Additional P2
286 Additional P3
287 Additional P4
288 Additional P1
289 Additional P2
290 Additional P3
291 Additional P4
292 Additional P1
293 Additional P2
294 Additional P3
295 Additional P4
296 Additional P1
297 Additional P2
298 Additional P3
299 Additional P4
300 Additional P1
301 Additional P2
302 Additional P3
303 Additional P4
304 Additional P1
305 Additional P2
306 Additional P3
307 Additional P4
308 Additional P1
309 Additional P2
310 Additional P3
311 Additional P4
312 Additional P1
313 Additional P2
314 Additional P3
315 Additional P4
316 Additional P1
317 Additional P2
318 Additional P3
319 Additional P4
320 Additional P1
321 Additional P2
322 Additional P3
323 Additional P4
324 Additional P1
325 Additional P2
326 Additional P3
327 Additional P4
328 Additional P1
329 Additional P2
330 Additional P3
331 Additional P4
332 Additional P1
333 Additional P2
334 Additional P3
335 Additional P4
336 Additional P1
337 Additional P2
338 Additional P3
339 Additional P4
340 Additional P1
341 Additional P2
342 Additional P3
343 Additional P4
344 Additional P1
345 Additional P2
346 Additional P3
347 Additional P4
348 Additional P1
349 Additional P2
350 Additional P3
126 Access conP3
127 Token leakaP4
128 Incorrect UP1
129 Missing ratP2
130 Weak sessiP3
131 Broken useP4
132 Insecure e P1
133 User profil P2
134 UnrestricteP3
135 Exposed baP4
136 Insufficien P1
137 Access thr P2
138 Weak passP3
139 UnsecuredP4
140 Insecure loP1
141 Default secP2
142 API key disP3
143 Improper re P4
144 Cross-site P1
145 Insecure e P2
146 UnvalidateP3
147 UnrestricteP4
148 Access conP1
149 Privilege e P2
150 UnprotecteP3
151 Overly per P4
152 Improper AP P1
153 Cross-tenanP2
154 MisconfiguP3
155 Broken autP4
156 Weak valida P1
157 Bypassing SP2
158 UnnecessarP3
159 Missing useP4
160 Insecure s P1
161 VulnerabiliP2
162 Lack of IP- P3
163 Unencrypted P4
164 Hidden vuln P1
165 Missing logP2
166 Weak token P3
167 Flawed APIP4
168 Access to uP1
169 UnencrypteP2
170 Insecure d P3
171 UnprotecteP4
172 MisconfiguP1
173 UnrestricteP2
174 Open netwo P3
175 Exposed usP4
176 Improper AC P1
177 Unsafe cook P2
178 Broken accP3
179 Exposing i P4
180 Failure to P1
181 Cross-site P2
182 Exposing unP3
183 Lack of mulP4
184 VulnerabiliP1
185 UnrestricteP2
186 Lack of str P3
187 Insecure c P4
188 Broken sesP1
189 Lack of ac P2
190 Insecure SSP3
191 MisconfigurP4
192 Weak accesP1
193 Insecure DP2
194 Faulty acceP3
195 InadequateP4
196 Abuse of crP1
197 Untrusted P2
198 UnprotecteP3

Bug Bounty Playbook V2v
No ratings yet
Bug Bounty Playbook V2v
250 pages
Retiport21: User Manual
No ratings yet
Retiport21: User Manual
62 pages
Web Application Advanced
No ratings yet
Web Application Advanced
118 pages
MS-Excel Practical File
No ratings yet
MS-Excel Practical File
69 pages
DPET Whitepaper 210519 Clean
No ratings yet
DPET Whitepaper 210519 Clean
19 pages
Apis Fuzzing For Bug Bounty: Tools
No ratings yet
Apis Fuzzing For Bug Bounty: Tools
7 pages
A Study On API Security Pentesting
No ratings yet
A Study On API Security Pentesting
108 pages
V 4 Apidocs
No ratings yet
V 4 Apidocs
101 pages
github-com-inonshk-31-days-of-API-Security-Tips
No ratings yet
github-com-inonshk-31-days-of-API-Security-Tips
8 pages
Hacking and Defending APIs 1.1
No ratings yet
Hacking and Defending APIs 1.1
31 pages
API pentesting testcases
No ratings yet
API pentesting testcases
2 pages
API Calls & Status Codes
No ratings yet
API Calls & Status Codes
14 pages
Chapter 14
No ratings yet
Chapter 14
33 pages
A Web Application Vulnerability
100% (1)
A Web Application Vulnerability
43 pages
Day 1
No ratings yet
Day 1
105 pages
IDOR
No ratings yet
IDOR
5 pages
API Security Fundamentals
No ratings yet
API Security Fundamentals
14 pages
Web Application Security-AT2 question
No ratings yet
Web Application Security-AT2 question
2 pages
Web-App-Security-Self-Assessment-Checklist_Roam
No ratings yet
Web-App-Security-Self-Assessment-Checklist_Roam
14 pages
31 Days of API Security
No ratings yet
31 Days of API Security
2 pages
API Scenario Checklist-Old
No ratings yet
API Scenario Checklist-Old
14 pages
5-Android Securecoding En
No ratings yet
5-Android Securecoding En
576 pages
CyBOK v1.1.0-6
No ratings yet
CyBOK v1.1.0-6
67 pages
security-notes
No ratings yet
security-notes
29 pages
(English) Top 12 Tips For API Security (DownSub - Com)
No ratings yet
(English) Top 12 Tips For API Security (DownSub - Com)
11 pages
Trellix IPS Signature Testcase
No ratings yet
Trellix IPS Signature Testcase
100 pages
4 Passive-Recon
No ratings yet
4 Passive-Recon
7 pages
Unit 3
No ratings yet
Unit 3
111 pages
Sy0 601 14
No ratings yet
Sy0 601 14
50 pages
Secure Coding Cheatsheets PDF
No ratings yet
Secure Coding Cheatsheets PDF
72 pages
API Security Fundamentals
No ratings yet
API Security Fundamentals
14 pages
Developers Guide To The Owasp Top 10 For Api Security WP
No ratings yet
Developers Guide To The Owasp Top 10 For Api Security WP
23 pages
13 VersoningAttack
No ratings yet
13 VersoningAttack
10 pages
A Comprehensive Formal Security Analysis of OAuth
No ratings yet
A Comprehensive Formal Security Analysis of OAuth
95 pages
Index 572
No ratings yet
Index 572
3 pages
Web Security Basics 1
No ratings yet
Web Security Basics 1
16 pages
APISecurity
No ratings yet
APISecurity
6 pages
API Security Fundamentals
No ratings yet
API Security Fundamentals
14 pages
Web Application Advanced Hacking by Maor Tal (2020)
No ratings yet
Web Application Advanced Hacking by Maor Tal (2020)
118 pages
Bughutnig List of Vulnerabilities
No ratings yet
Bughutnig List of Vulnerabilities
2 pages
Understanding OWASP Top 10
No ratings yet
Understanding OWASP Top 10
26 pages
api-vulnerabilities-and-risks-2024sr004-1
No ratings yet
api-vulnerabilities-and-risks-2024sr004-1
28 pages
API Security Testing
No ratings yet
API Security Testing
1 page
API Pentesting Notes 1722248626
No ratings yet
API Pentesting Notes 1722248626
11 pages
API Securing
No ratings yet
API Securing
24 pages
Impacts
No ratings yet
Impacts
8 pages
The Ultimate API Security Audit & VAPT Checklist
No ratings yet
The Ultimate API Security Audit & VAPT Checklist
9 pages
Snort++ User Manual
No ratings yet
Snort++ User Manual
145 pages
Sy0 601 14
No ratings yet
Sy0 601 14
50 pages
hackanythingfor-blogspot-com-2020-07-api-testing-checklist-html
No ratings yet
hackanythingfor-blogspot-com-2020-07-api-testing-checklist-html
5 pages
Index 504
No ratings yet
Index 504
11 pages
Web Pentesting Course Slides
No ratings yet
Web Pentesting Course Slides
63 pages
Security Testing Report: Snakerr
No ratings yet
Security Testing Report: Snakerr
37 pages
f5-73024-final-deck_995070
No ratings yet
f5-73024-final-deck_995070
42 pages
We 7531 Exercises
No ratings yet
We 7531 Exercises
90 pages
API Security
No ratings yet
API Security
51 pages
API Testing Checklist
No ratings yet
API Testing Checklist
7 pages
WAS
No ratings yet
WAS
2 pages
Getting Data Using APIs
No ratings yet
Getting Data Using APIs
14 pages
Levelup0X Bug Bounty Hunting Training
100% (2)
Levelup0X Bug Bounty Hunting Training
8 pages
Web Attacks From Zero to Hero
No ratings yet
Web Attacks From Zero to Hero
66 pages
Motivation Why Cyber
No ratings yet
Motivation Why Cyber
8 pages
AllDaysCyberAttendence_1739020984154
No ratings yet
AllDaysCyberAttendence_1739020984154
4 pages
OverTheWireSolution
No ratings yet
OverTheWireSolution
6 pages
AWH 5Day Course Profile v3.0
No ratings yet
AWH 5Day Course Profile v3.0
8 pages
SQLMap
No ratings yet
SQLMap
3 pages
Viruses, Worms, Trojans and Anti-Viruses: Arun Kumar Roll No. 35 Section-150
No ratings yet
Viruses, Worms, Trojans and Anti-Viruses: Arun Kumar Roll No. 35 Section-150
18 pages
OMMP
No ratings yet
OMMP
37 pages
SEO Report Sample PDF
No ratings yet
SEO Report Sample PDF
16 pages
Trutzschler Drawing Fram 03 - GB
No ratings yet
Trutzschler Drawing Fram 03 - GB
32 pages
Minor Project Report
No ratings yet
Minor Project Report
23 pages
Blast 2 Sequences: Salman Khan Current Gpa in Bioinf 4 Gpa
No ratings yet
Blast 2 Sequences: Salman Khan Current Gpa in Bioinf 4 Gpa
45 pages
Certified Ethical Hacker Sample Test Exam 312-50, EC0-350 Exam
No ratings yet
Certified Ethical Hacker Sample Test Exam 312-50, EC0-350 Exam
7 pages
Working Instruction For Packaging and Distribution - v1.0
50% (2)
Working Instruction For Packaging and Distribution - v1.0
21 pages
Automation Studio E7 Automotive en High
No ratings yet
Automation Studio E7 Automotive en High
8 pages
Cobra User Manual v5
No ratings yet
Cobra User Manual v5
66 pages
AEOS Message Mapper Installation & Configuration Manual English
No ratings yet
AEOS Message Mapper Installation & Configuration Manual English
34 pages
Ssa-354910: Smbv1 Vulnerabilities in Syngo Multimodality Workplace (MMWP) Products From Siemens Healthineers
No ratings yet
Ssa-354910: Smbv1 Vulnerabilities in Syngo Multimodality Workplace (MMWP) Products From Siemens Healthineers
3 pages
Final Main
No ratings yet
Final Main
18 pages
Cad Cam PDF
No ratings yet
Cad Cam PDF
16 pages
Threat Landscape Report 2024
100% (1)
Threat Landscape Report 2024
18 pages
Ejemplos de Ensayo de Clasificación
100% (1)
Ejemplos de Ensayo de Clasificación
5 pages
Seagate Power Adapter Specifications
No ratings yet
Seagate Power Adapter Specifications
10 pages
MANALANG MA MONICA Resume
No ratings yet
MANALANG MA MONICA Resume
1 page
CS-204 (PHP) Exercises
No ratings yet
CS-204 (PHP) Exercises
4 pages
CHECKMATE User Manual
100% (1)
CHECKMATE User Manual
47 pages
Computer Paper Icse
100% (1)
Computer Paper Icse
4 pages
DLL Ict 7
100% (1)
DLL Ict 7
4 pages
UNIT-4 PPT New
No ratings yet
UNIT-4 PPT New
47 pages
WPA S800 English Issue 02
No ratings yet
WPA S800 English Issue 02
22 pages
Release Notes: Integrated Dell Remote Access Controller 6 (iDRAC6)
No ratings yet
Release Notes: Integrated Dell Remote Access Controller 6 (iDRAC6)
11 pages
Visualizing a Neural Machine Translation Model (Mechanics of Seq2seq Models With Attention) – Jay Alammar – Visualizing Machine Learning One Concept at a Time.
No ratings yet
Visualizing a Neural Machine Translation Model (Mechanics of Seq2seq Models With Attention) – Jay Alammar – Visualizing Machine Learning One Concept at a Time.
13 pages
El GRAFCET Practicas y Aplicaciones
No ratings yet
El GRAFCET Practicas y Aplicaciones
26 pages

Updated_Broken_Access_Control_Vulnerabilities

Uploaded by

Updated_Broken_Access_Control_Vulnerabilities

Uploaded by

# Vulnerability Priority

You might also like