AppSec Blog: Daily Archives: Feb 22, 2010

Top 25 series - Rank 1 - Cross Site Scripting

My honor to kick off with the first programming error on the Top 25 list. Ranked number 1 on the list is the Cross Site Scripting issue. Cross Site Scripting like many other Web security problems is caused by simple flaws related to user input but the potential attack scenarios can be diverse and the … Continue reading Top 25 series - Rank 1 - Cross Site Scripting


CWE/SANS Top 25 Most Dangerous Programming Errors

Last week, SANS/CWE released a top 25 dangerous programming errors list. It contains the most common errors that developers are likely to make. The intention is to raise awareness to these problems and help prioritize the order of importance for organizations new into the security game. In the upcoming days, we will cover each of … Continue reading CWE/SANS Top 25 Most Dangerous Programming Errors