Geekiest Techno News

OWASP Top 10 for 2013 is now officially released

Owasp Top 10 2013 Released

According to the new OWASP TOP 10 XSS is still one of the top 3 Vulnerabilities found on websites.

The OWASP Top Ten provides a powerful awareness document for web application security. The OWASP Top Ten represents a broad consensus about what the most critical web application security flaws are. Project members include a variety of security experts from around the world who have shared their expertise to produce this list.

The OWASP Top 10 – 2013 is as follows:

  • A1 Injection
  • A2 Broken Authentication and Session Management
  • A3 Cross-Site Scripting (XSS)
  • A4 Insecure Direct Object References
  • A5 Security Misconfiguration
  • A6 Sensitive Data Exposure
  • A7 Missing Function Level Access Control
  • A8 Cross-Site Request Forgery (CSRF)
  • A9 Using Known Vulnerable Components
  • A10 Unvalidated Redirects and Forwards

Image Below shows the Comparison between OWASP TOP 10 2010 VS OWASP TOP 10 2013

Owasp top 10 2010 vs 2013

OWASP Top 10 2013 Edition Useful Links: