Python

Title	Severity
XML Injection	high
Weak Password Requirements	medium
Weak Password Requirements	medium
Weak Password Requirements	low
Use of Obsolete Function	low
Use of Insufficiently Random Values	medium
Use of Incorrectly-Resolved Name or Reference	low
Use of Hard-coded Credentials	high
Use of Hard-coded Credentials	low
Use of Externally-Controlled Format String	low
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	high
Use of a Broken or Risky Cryptographic Algorithm	low
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	high
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	high
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	medium
Use of a Broken or Risky Cryptographic Algorithm	medium
URL Redirection to Untrusted Site ('Open Redirect')	medium
URL Redirection to Untrusted Site ('Open Redirect')	low
Unprotected Transport of Credentials	low
Uncontrolled Resource Consumption	medium
Server-Side Request Forgery (SSRF)	high
Server-Side Request Forgery (SSRF)	high
Server-Side Request Forgery (SSRF)	low
Server-Side Request Forgery (SSRF)	medium
Server-Side Request Forgery (SSRF)	high
Sensitive Cookie Without 'HttpOnly' Flag	low
Sensitive Cookie Without 'HttpOnly' Flag	low
Sensitive Cookie Without 'HttpOnly' Flag	low
Sensitive Cookie Without 'HttpOnly' Flag	low
Sensitive Cookie with Improper SameSite Attribute	low
Sensitive Cookie with Improper SameSite Attribute	low
Sensitive Cookie with Improper SameSite Attribute	low
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute	low
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute	low
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute	low
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute	low
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute	low
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute	low
Permissive Cross-domain Policy with Untrusted Domains	medium
Permissive Cross-domain Policy with Untrusted Domains	medium
Key Exchange without Entity Authentication	low
Insufficiently Protected Credentials	low
Insufficiently Protected Credentials	low
Insufficiently Protected Credentials	high
Insertion of Sensitive Information into Log File	medium
Inefficient Regular Expression Complexity	low
Incorrect Type Conversion or Cast	medium
Incorrect Type Conversion or Cast	medium
Incorrect Type Conversion or Cast	medium
Incorrect Default Permissions	medium
Inadequate Encryption Strength	medium
Inadequate Encryption Strength	medium
Inadequate Encryption Strength	medium
Inadequate Encryption Strength	medium
Inadequate Encryption Strength	medium
Inadequate Encryption Strength	low
Inadequate Encryption Strength	medium
Inadequate Encryption Strength	medium
Improperly Controlled Modification of Dynamically-Determined Object Attributes	low
Improperly Controlled Modification of Dynamically-Determined Object Attributes	low
Improper Restriction of XML External Entity Reference	low
Improper Restriction of XML External Entity Reference	medium
Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')	low
Improper Neutralization of Wildcards or Matching Symbols	low
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	low
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	medium
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	medium
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	high
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	high
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	high
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	high
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	high
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	medium
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	medium
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	medium
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	medium
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	high
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	high
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	high
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	high
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	high
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	high
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	medium
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	medium
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	medium
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	medium
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	medium
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	high
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	high
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	low
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	high
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	high
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	high
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	high
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	high
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	high
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	high
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	high
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	medium
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	medium
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	medium
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	high
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	medium
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	high
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	medium
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	medium
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	medium
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	medium
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	medium
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	low
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	medium
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	high
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	high
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	high
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	medium
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	high
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	high
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	medium
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	medium
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')	medium
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')	medium
Improper Neutralization of Special Elements in Data Query Logic	medium
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	medium
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	medium
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	medium
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	high
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	low
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	low
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	low
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	low
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	low
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	low
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	low
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	low
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	low
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	medium
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	low
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	low
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	low
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	high
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	low
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	low
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	high
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	high
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	low
Improper Neutralization of Formula Elements in a CSV File	medium
Improper Neutralization of Formula Elements in a CSV File	medium
Improper Neutralization of Formula Elements in a CSV File	low
Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection')	low
Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection')	medium
Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection')	medium
Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection')	low
Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection')	low
Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection')	low
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	high
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	high
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	high
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	high
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	medium
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	high
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	medium
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	low
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	medium
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	high
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	high
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	low
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	medium
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	medium
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	high
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	medium
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	medium
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	high
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	high
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	high
Improper Neutralization of CRLF Sequences ('CRLF Injection')	medium
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')	low
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')	low
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')	medium
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')	medium
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')	high
Improper Input Validation	medium
Improper Input Validation	low
Improper Encoding or Escaping of Output	medium
Improper Encoding or Escaping of Output	medium
Improper Certificate Validation	low
Improper Certificate Validation	high
Improper Certificate Validation	low
Improper Certificate Validation	medium
Improper Authorization in Handler for Custom URL Scheme	low
Improper Authentication	medium
External Control of File Name or Path	low
Exposure of Sensitive Information to an Unauthorized Actor	high
Exposure of Resource to Wrong Sphere	high
Exposure of Resource to Wrong Sphere	medium
Execution with Unnecessary Privileges	medium
Deserialization of Untrusted Data	medium
Deserialization of Untrusted Data	low
Deserialization of Untrusted Data	medium
Deserialization of Untrusted Data	low
Deserialization of Untrusted Data	medium
Deserialization of Untrusted Data	medium
Deserialization of Untrusted Data	medium
Deserialization of Untrusted Data	low
Deserialization of Untrusted Data	low
Deserialization of Untrusted Data	low
Deserialization of Untrusted Data	low
Deserialization of Untrusted Data	low
Cross-Site Request Forgery (CSRF)	low
Cross-Site Request Forgery (CSRF)	low
Cross-Site Request Forgery (CSRF)	low
Cross-Site Request Forgery (CSRF)	low
Cross-Site Request Forgery (CSRF)	low
Cross-Site Request Forgery (CSRF)	low
Command Shell in Externally Accessible Directory	low
Cleartext Transmission of Sensitive Information	medium
Cleartext Transmission of Sensitive Information	low
Cleartext Transmission of Sensitive Information	low
Cleartext Transmission of Sensitive Information	low
Cleartext Transmission of Sensitive Information	low
Cleartext Transmission of Sensitive Information	low
Cleartext Transmission of Sensitive Information	low
Cleartext Transmission of Sensitive Information	low
Cleartext Transmission of Sensitive Information	low
Cleartext Transmission of Sensitive Information	low
Cleartext Transmission of Sensitive Information	low
Cleartext Transmission of Sensitive Information	low
Cleartext Transmission of Sensitive Information	low
Cleartext Transmission of Sensitive Information	low
Cleartext Transmission of Sensitive Information	low
Cleartext Transmission of Sensitive Information	low
Cleartext Transmission of Sensitive Information	low
Cleartext Transmission of Sensitive Information	low
Cleartext Transmission of Sensitive Information	medium
Active Debug Code	low
Active Debug Code	low
Active Debug Code	low
Active Debug Code	low
Active Debug Code	high