Reflective XSS
Authorisation Issue
Auth issues
Stored XSS
SQL Injection
Open Redirect
Application/Business Logic
Info leak
Deserialization