Table of contents Secure Coding Handbook Resources Client side Cross-Site Scripting [XSS] Cross-Site Request Forgery [CSRF] Clickjacking Open Redirects Server Side SQL Injections [SQLi] XML External Entity Injection [XXE] OS Command Injection [Command Execution] File Upload Server-Side Request Forgery [SSRF] Host Header Injection Authentication Directory Traversal Template Injection [SSTI] API Broken Object Level Authorization Excessive Data Exposure Mass Assignment Auxiliary Vulnerable Dependency Management Deserialization Logging Solidity Re-Entrancy