Its the comeback of OWASP top 10 – 2013. Nothing much has changed security threat landscape when it comes to applications. Below is the screenshot from OWASP pdf and link to the main pdf.
OWASP TOP 10 list of 2013 published list.
1) Injection
2) Broken Authentication and Session Management
3) Cross-Site Scripting (XSS)
4) Insecure Direct Object References
5) Security Misconfiguration
6) Sensitive Data Exposure
7) Missing Function Level Access Control
8) Cross-Site Request Forgery (CSRF)
9) Using Known Vulnerable Components
10) Unvalidated Redirects and Forwards
OWASP Top 10 – 2013 Source : OWASP ( click on the image to see full image)
Link to the OWASP TOP 10 2013 pdf CLICK HERE
