This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Cornucopia - Ecommerce Website - C 10
From OWASP
Suit: Cornucopia
Card/Value: 10
Description:
Xavier can circumvent the application's controls because code frameworks, libraries and components contain malicious code or vulnerabilities (e.g. in-house, commercial off the shelf, outsourced, open source, externally-located).
Technical Note:
NB: The key concept for this card is software hardening, configuration and patching. See C 8 instead for host/network environment hardening, configuration and patching.
References:
| OWASP SCP | OWASP ASVS | OWASP AppSensor | CAPEC | SAFECODE |
|---|---|---|---|---|
| 57 | 13.1 | - | 68 | 15 |
| 151 | 13.2 | 438 | ||
| 152 | 13.3 | 439 | ||
| 204 | 13.4 | 442 | ||
| 205 | 13.5 | |||
| 213 | 13.6 | |||
| 214 | 13.7 | |||
| 13.8 | ||||
| 13.9 | ||||
| 13.10 | ||||
| 13.11 |
