AppSec Blog: Author - Ryan Barnett

Weekly Roundup of @Risk Web Application Vulnerabilities

****************************************************************** @RISK: The Consensus Security Vulnerability Alert October 21st, 2010 Vol. 9. Week 43 ****************************************************************** Web Application - Cross Site Scripting 10.43.42 - TWiki Multiple Cross-Site Scripting Vulnerabilities 10.43.43 - Attachmate Reflection for the Web Cross-Site Scripting 10.43.44 - … Continue reading Weekly Roundup of @Risk Web Application Vulnerabilities


WASC Web Hacking Incident Database Semi-Annual Report

In addition to being a SANS Certified Instructor, I also serve as the WASC Web Hacking Incident Database (WHID) project leaders. If you are unfamiliar, WHID is a project dedicated to maintaining a record of web application-related security incidents. WHID's purpose is to serve as a tool for raising awareness of web application security problems … Continue reading WASC Web Hacking Incident Database Semi-Annual Report