OWASP A1 - Injection
Broken Authentication and Session Management
This module describes what incorrect implementation of authentication and session management functions are, and explains how it can allow attackers to assume other users’ identities.
Broken Access Control
This module defines and explains broken access control, which allows attackers to access unauthorized functionality and/or data.
OWASP A7 - Cross-Site Scripting (XSS)
This module covers cross-site scripting.