v1.1
Available on Bugcrowd here: https://bugcrowd.com/vulnerability-rating-taxonomy/1.1
Added
- directory_listing_enabled
- directory_listing_enabled.sensitive_data_exposure
- directory_listing_enabled.non_sensitive_data_exposure
- server_security_misconfiguration.path_traversal
- cross_site_scripting_xss.reflected.self
- cross_site_scripting_xss.reflected.non_self
- cross_site_request_forgery_csrf.application_wide
- cross_site_request_forgery_csrf.application_specific
- cross_site_request_forgery_csrf.authenticated_action
- cross_site_request_forgery_csrf.unauthenticated_action
Removed
- poor_physical_security
- social_engineering
Changed
- cross_site_scripting_xss.cookie_based priority changed from P4 to P5