OWASP Top Ten for 2013 released

The OWASP Top Ten provides a powerful awareness document for web application security. The OWASP Top Ten represents a broad consensus about what the most critical web application security flaws are. Project members include a variety of security experts from around the world who have shared their expertise to produce this list.

OWASP Top Ten for 2013:
  1. Injection
  2. Broken Authentication and Session Management CHANGED
  3. Cross-Site Scripting (XSS) CHANGED
  4. Insecure Direct Object References
  5. Security Misconfiguration CHANGED
  6. Sensitive Data Exposure CHANGED
  7. Missing Function Level Access Control CHANGED
  8. Cross-Site Request Forgery (CSRF) CHANGED
  9. Using Known Vulnerable Components NEW
  10. Unvalidated Redirects and Forwards
Tags: , , , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)