Improper access control, information disclosure, and SSRF are among the most impactful, and most awarded, security flaws found this year. Source