From BurpSuite Knowledge + Lab
- Authentication: authentication bypass, bruteforce, 2FA bypass
- Broken_access_control: access control, privilege escalation, IDOR
- CORS: CORS
- CSRF: CSRF
- Clickjacking: clickjacking
- Command_injection: command injection
- DOM_based_vulnerabilities: DOM XSS
- Directory_traversal: path traversal
- File_upload: file upload bypass
- GraphQL_API: query graphql API
- HTTP_Web: HTTP, SPDY, TLS, TCP Handshake
- HTTP_host_header_attacks: Host header overide, Web cache poisoning
- HTTP_request_smuggling: TE/CL request vulnerable, bypass front-end security, control next request, HTTP/2 downgrading, inject smuggle request
- Insecure_deserialization: deserialization object
- JWT: manipulate jwt
- Prototype_pollution: Prototype pollution flaws
- SQL_injection: SQL injection
- SSRF: forge server-side request
- SSTI: template injection
- Web_cache_poisoning: cache poisoning
- XSS: reflected XSS, DOM XSS, stored XSS
- XXE: XML attack