Post Tue Jun 01, 2010 8:43 am

OWASP Annual Report - 2009 - Published

OWASP Annual Report - 2009 is online with OWASP Top 10 for 2010.

OWASP Top 10 for 2010.

A1: Injection
A2: Cross-site Scriptoing (XSS)
A3: Broken Authentication and Session Management
A4: Insecure Direct Object References
A5: Cross-Site Request Forgery (CSRF)
A6: Security Misconfiguration
A7: Insecure Cryptographic Storage
A8: Failure to Restrict URL Access
A9: Insufficient Transport Layer Protection
A10: Unvalidated Redirects and Forwards

Click here to download OWASP Annual Report - 2009
Manu Zacharia
MVP (Enterprise Security), ISLA-2010 (ISC)², C|EH, C|HFI, CCNA, MCP,
Certified ISO 27001:2005 Lead Auditor

[b]There are 3 roads to spoil; women, gambling & hacking. The most pleasant with women, the quickest with gambling, but the surest is hacking - c0c0n