diff --git a/documentation/deliberately_vulnerable_flask_app/result.json b/documentation/deliberately_vulnerable_flask_app/result.json
index 1bda66ee845..01961b4a907 100644
--- a/documentation/deliberately_vulnerable_flask_app/result.json
+++ b/documentation/deliberately_vulnerable_flask_app/result.json
@@ -10,6 +10,61 @@
     "stop_column": 62,
     "stop_line": 52
   },
+  {
+    "code": 5008,
+    "column": 37,
+    "define": "flask.app.Flask.full_dispatch_request",
+    "description": "XSS [5008]: Data from [UserControlled] source(s) may reach [XSS] sink(s)",
+    "line": 1487,
+    "name": "XSS",
+    "path": "*",
+    "stop_column": 39,
+    "stop_line": 1487
+  },
+  {
+    "code": 5008,
+    "column": 37,
+    "define": "flask.app.Flask.full_dispatch_request",
+    "description": "XSS [5008]: Data from [UserControlled] source(s) may reach [XSS] sink(s)",
+    "line": 1487,
+    "name": "XSS",
+    "path": "*",
+    "stop_column": 39,
+    "stop_line": 1487
+  },
+  {
+    "code": 5008,
+    "column": 48,
+    "define": "flask.app.Flask.process_response",
+    "description": "XSS [5008]: Data from [UserControlled] source(s) may reach [XSS] sink(s)",
+    "line": 2005,
+    "name": "XSS",
+    "path": "*",
+    "stop_column": 52,
+    "stop_line": 2005
+  },
+  {
+    "code": 5008,
+    "column": 16,
+    "define": "flask.app.Flask.wsgi_app",
+    "description": "XSS [5008]: Data from [UserControlled] source(s) may reach [XSS] sink(s)",
+    "line": 2189,
+    "name": "XSS",
+    "path": "*",
+    "stop_column": 19,
+    "stop_line": 2189
+  },
+  {
+    "code": 5008,
+    "column": 12,
+    "define": "flask.app.Flask.wsgi_app",
+    "description": "XSS [5008]: Data from [UserControlled] source(s) may reach [XSS] sink(s)",
+    "line": 2206,
+    "name": "XSS",
+    "path": "*",
+    "stop_column": 15,
+    "stop_line": 2206
+  },
   {
     "code": 5011,
     "column": 13,
@@ -43,6 +98,61 @@
     "stop_column": 24,
     "stop_line": 57
   },
+  {
+    "code": 5015,
+    "column": 37,
+    "define": "flask.app.Flask.full_dispatch_request",
+    "description": "User input returned to user [5015]: Data from [UserControlled] source(s) may reach [ReturnedToUser] sink(s)",
+    "line": 1487,
+    "name": "User input returned to user",
+    "path": "*",
+    "stop_column": 39,
+    "stop_line": 1487
+  },
+  {
+    "code": 5015,
+    "column": 37,
+    "define": "flask.app.Flask.full_dispatch_request",
+    "description": "User input returned to user [5015]: Data from [UserControlled] source(s) may reach [ReturnedToUser] sink(s)",
+    "line": 1487,
+    "name": "User input returned to user",
+    "path": "*",
+    "stop_column": 39,
+    "stop_line": 1487
+  },
+  {
+    "code": 5015,
+    "column": 48,
+    "define": "flask.app.Flask.process_response",
+    "description": "User input returned to user [5015]: Data from [UserControlled] source(s) may reach [ReturnedToUser] sink(s)",
+    "line": 2005,
+    "name": "User input returned to user",
+    "path": "*",
+    "stop_column": 52,
+    "stop_line": 2005
+  },
+  {
+    "code": 5015,
+    "column": 16,
+    "define": "flask.app.Flask.wsgi_app",
+    "description": "User input returned to user [5015]: Data from [UserControlled] source(s) may reach [ReturnedToUser] sink(s)",
+    "line": 2189,
+    "name": "User input returned to user",
+    "path": "*",
+    "stop_column": 19,
+    "stop_line": 2189
+  },
+  {
+    "code": 5015,
+    "column": 12,
+    "define": "flask.app.Flask.wsgi_app",
+    "description": "User input returned to user [5015]: Data from [UserControlled] source(s) may reach [ReturnedToUser] sink(s)",
+    "line": 2206,
+    "name": "User input returned to user",
+    "path": "*",
+    "stop_column": 15,
+    "stop_line": 2206
+  },
   {
     "code": 5015,
     "column": 4,