Indirect Attacks * XSS - Cross-site scripting attacks * Spoofing Direct Attacks * Buffer Overflows * Path tricks * Application logic attacks