Top 10 list of web application vulnerabilities released

Companies wanting to better secure their web applications and services can start the process by reviewing the newly released Top 10 list of critical web application security problems recently disseminated by the Open Web Application Security Project (OWASP).

The list, now in its second year, is organized into the types of vulnerabilities that frequently occur in web applications and is in line with the current draft web security definitions that will be incorporated into the soon-to-be-released OASIS WAS XML standard. This year's Top 10 also has a new category for web application denial of service vulnerabilities, which have become more prevalent during the last 12 months.

The categories in this year's Top 10 are Unvalidated Input, Broken Access Control, Broken Authentication and Session Management, Cross Site Scripting Flaws, Buffer Overflows, Injection Flaws, Improper Error Handling, Insecure Storage, Denial of Service, and Insecure Configuration Management.

The complete Top 10 report is available for download at www.owasp.org

ACMA secures pledges from major online retailers to block "dodgy" mobile sales

Vic energy department seeks CIO

Defence gives $84m IT support contract to Unisys

NBN Co puts a longer predictive lens on its digital twin ambitions

Cochlear pilots voice-to-text Salesforce integration for lead management

Top 10 list of web application vulnerabilities released

Companies wanting to better secure their web applications and services can start the process by reviewing the newly released Top 10 list of critical web application security problems recently disseminated by the Open Web Application Security Project (OWASP).

Partner Content

Sponsored Whitepapers

Events

Most Read Articles

WA man jailed for at least five years for evil twin attack

Services Australia may get powers to rein in data breach exposure

ASX outage caused by security software upgrade

Home Affairs to unleash AI on sensitive government data

Most popular tech stories

Audit Office of NSW and Data61 explore AI for gov auditing

Accenture to train 30,000 staff on Anthropic's Claude

Cochlear pilots voice-to-text Salesforce integration for lead management

Virgin Australia, Wesfarmers strike OpenAI agreements

CBA finds its first chief AI officer

HamiltonJet partners with digital services provider Fortude

SentinelOne signs distribution agreement with Sektor

Rapid7’s new SIEM combines exposure management with threat detection

The techpartner.news podcast, episode 3: Why security consultancy founder Kat McCrabb started with the hard stuff

Bluechip Infotech enters final stage of Goodson Imports acquisition

Blackberry celebrates "giant step forward"

'Touch-free' smartphone controlled with head movements

Photos: Australian industry explores data for net zero

Axis Communications opens experience centre in Sydney tech hub

Photos: The 2024 IoT Awards winners

ACMA secures pledges from major online retailers to block "dodgy" mobile sales

Vic energy department seeks CIO

Defence gives $84m IT support contract to Unisys

NBN Co puts a longer predictive lens on its digital twin ambitions

Cochlear pilots voice-to-text Salesforce integration for lead management

Top 10 list of web application vulnerabilities released

Companies wanting to better secure their web applications and services can start the process by reviewing the newly released Top 10 list of critical web application security problems recently disseminated by the Open Web Application Security Project (OWASP).

Partner Content

Sponsored Whitepapers

Events

Most Read Articles

WA man jailed for at least five years for evil twin attack

Services Australia may get powers to rein in data breach exposure

ASX outage caused by security software upgrade

Home Affairs to unleash AI on sensitive government data

Most popular tech stories

Audit Office of NSW and Data61 explore AI for gov auditing

Accenture to train 30,000 staff on Anthropic's Claude

Cochlear pilots voice-to-text Salesforce integration for lead management

Virgin Australia, Wesfarmers strike OpenAI agreements

CBA finds its first chief AI officer

HamiltonJet partners with digital services provider Fortude

SentinelOne signs distribution agreement with Sektor

Rapid7’s new SIEM combines exposure management with threat detection

The techpartner.news podcast, episode 3: Why security consultancy founder Kat McCrabb started with the hard stuff

Bluechip Infotech enters final stage of Goodson Imports acquisition

Blackberry celebrates "giant step forward"

'Touch-free' smartphone controlled with head movements

Photos: Australian industry explores data for net zero

Axis Communications opens experience centre in Sydney tech hub

Photos: The 2024 IoT Awards winners

Log In