Christoph Kania » EN security http://blogs.valtech.com/chk Just another Valtech Blog Mon, 16 Aug 2010 08:30:00 +0000 http://wordpress.org/?v=2.9.2 en hourly 1 OWASP released Top 10 List for 2010 http://blogs.valtech.com/chk/2010/04/20/owasp-released-top-10-list-for-2010/ http://blogs.valtech.com/chk/2010/04/20/owasp-released-top-10-list-for-2010/#comments Tue, 20 Apr 2010 11:28:10 +0000 Christoph Kania http://blogs.valtech.com/chk/?p=140 The Open Web Application Security Project has released an update of their Top 10 List of security risks of web applications. You can download the report for free.

The Top 10 for 2010 are:

  1. Injection
  2. Cross-Site Scripting (XSS)
  3. Broken Authentication and Session Management
  4. Insecure Direct Object References
  5. Cross-Site Request Forgery (CSRF)
  6. Security Misconfiguration
  7. Insecure Cryptographic Storage
  8. Failure to Restrict URL Access
  9. Insufficient Transport Layer Protection
  10. Unvalidated Redirects and Forwards

Source: OWASP press release

]]> http://blogs.valtech.com/chk/2010/04/20/owasp-released-top-10-list-for-2010/feed/ 1