Top 10 Web application vulnerabilities for 2007 (OWASP)

Lista de las mas serias vulnerabilidades en aplicaciones durante 2007:

• A1 - Cross Site Scripting (XSS)
• A2 - Injection Flaws
• A3 - Malicious File Execution
• A4 - Insecure Direct Object Reference
• A5 - Cross Site Request Forgery (CSRF)
• A6 - Information Leakage and Improper Error Handling
• A7 - Broken Authentication and Session Management
• A8 - Insecure Cryptographic Storage
• A9 - Insecure Communications
• A10 - Failure to Restrict URL Access

http://blogs.owasp.org/orizon/wp-content/themes/default/images/ologo.gif

Fuente: OWASP (Open Web Application SecurityProject) - Top Ten web application vulnerabilities.

Mas info:

http://es.wikipedia.org/wiki/OWASP