Source: https://owasp.org/www-pdf-archive/OWASP_Top_10-2017_(en).pdf.pdf