This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Talk:Top 10 2007-Failure to Restrict URL Access
From OWASP
I think this may need changing: "All web application frameworks are vulnerable to failure to restrict URL access." to: "All web applications are potentially vulnerable to failure to restrict URL access."