| Attack | Target | Impact |
| ECB Mode Vulnerability | Block ciphers in ECB mode | Pattern leakage — identical plaintext = identical ciphertext |
| Padding Oracle | CBC mode with error messages | Decrypt any ciphertext without the key |
| Weak Ciphers | ROT13, Caesar, XOR, RC4 | Trivially breakable — no real security |
| SSL/TLS Misconfig | Old TLS versions, weak ciphers | BEAST, POODLE, DROWN, SWEET32 attacks |
| JWT Weak Secret | JWT with guessable HS256 key | Forge tokens for any user |
| Insecure Random | Predictable session tokens | Predict next token — session hijack |