Data Validation Testing

Reflected Cross-Site Scripting

Stored Cross-Site Scripting

HTTP Verb Tampering

HTTP Parameter Pollution

SQL Injection

Oracle

MySQL

Microsoft SQL

PostgreSQL

Microsoft Access

NoSQL

LDAP Injection

ORM Injection

XML Injection

SSI Injection

XPath Injection

IMAP/SMTP Injection

Code Injection

Local File Inclusion

Remote File Inclusion

Command Injection

Overflow

Buffer

Heap

Stack

Format String

Incubated Vulnerabilities

HTTP Splitting/Smuggling