| Use of RSA Algorithm without OAEP | high |
| Use of Insufficiently Random Values | low |
| Server-Side Request Forgery (SSRF) | medium |
| Server-Side Request Forgery (SSRF) | medium |
| Server-Side Request Forgery (SSRF) | medium |
| Server-Side Request Forgery (SSRF) | medium |
| Insufficiently Protected Credentials | high |
| Insufficiently Protected Credentials | high |
| Improper Restriction of XML External Entity Reference | high |
| Improper Restriction of XML External Entity Reference | medium |
| Improper Restriction of XML External Entity Reference | medium |
| Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') | high |
| Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') | high |
| Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') | medium |
| Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') | medium |
| Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') | high |
| Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') | low |
| Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') | medium |
| Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') | medium |
| Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | high |
| Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') | low |
| Improper Control of Generation of Code ('Code Injection') | medium |