- "XML external entity expansion" (
py/xxe). Results will appear by default. This query was based on an experimental query by @jorgectf. - "XML internal entity expansion" (
py/xml-bomb). Results will appear by default. This query was based on an experimental query by @jorgectf. - The query "CSRF protection weakened or disabled" (
py/csrf-protection-disabled) has been implemented. Its results will now appear by default.