Texts from Portswigger.
Many Labs are associated, using the tool Burp Suite (very powerful to test the security of web applications).

Race Conditions            Insecure Deserialization            XXE Injection            SSRF (server-side request forgery)