Tuesday, November 17, 2009

Top 10 Risks to Web Applications

OWASP has published a release-candidate report of the top 10 risks they foresee to web applications in 2010.

Summary:



  1. Injection

  2. Cross Site Scripting (XSS)

  3. Broken Authentication and Session Management

  4. Insecure Direct Object References

  5. Cross Site Request Forgery (CSRF)

  6. Security Misconfiguration

  7. Failure to Restrict URL Access

  8. Unvalidated Redirects and Forwards

  9. Insecure Cryptographic Storage

  10. Insufficient Transport Layer Protection

Posted by at
Labels: , , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)