https://wiki.owasp.org/index.php?action=history&feed=atom&title=OWASP_Education_Material_Categorized%2FOWASP_Top_Ten
OWASP Education Material Categorized/OWASP Top Ten - Revision history
2026-04-28T14:54:42Z
Revision history for this page on the wiki
MediaWiki 1.27.2
https://wiki.owasp.org/index.php?title=OWASP_Education_Material_Categorized/OWASP_Top_Ten&diff=91152&oldid=prev
Jason Li: Created page with '<includeonly>===</includeonly>= OWASP Top Ten =<includeonly>===</includeonly> The '''OWASP Top Ten''' represents a broad consensus about what…'
2010-10-11T05:14:47Z
<p>Created page with '<includeonly>===</includeonly>= OWASP Top Ten =<includeonly>===</includeonly> The <a href="/index.php/Category:OWASP_Top_Ten_Project" title="Category:OWASP Top Ten Project">'''OWASP Top Ten'''</a> represents a broad consensus about what…'</p>
<p><b>New page</b></p><div><includeonly>===</includeonly>= OWASP Top Ten =<includeonly>===</includeonly><br />
The [[:Category:OWASP_Top_Ten_Project |'''OWASP Top Ten''']] represents a broad consensus about what the most critical web application security flaws are. Project members include a variety of security experts from around the world who have shared their expertise to produce this list. There are currently versions in English, French, Japanese, Korean and Turkish. A Spanish version is in the works. We urge all companies to adopt this awareness document within their organization and start the process of ensuring that their web applications do not contain these flaws. Adopting the OWASP Top Ten is perhaps the most effective first step towards changing the software development culture within your organization into one that produces secure code.<br />
{| style="width:100%" border="0" align="center"<br />
! colspan="4" align="center" style="background:#FFFFFF; color:white"|<font color="white"><br />
'''[[Top_10_2007-A1|A1 - Cross Site Scripting (XSS)]]''' <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Presentation''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training material <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Video's ''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training video <br />
|}<br />
{| style="width:100%" border="0" align="center"<br />
! colspan="4" align="center" style="background:#FFFFFF; color:white"|<font color="white"><br />
'''[[Top_10_2007-A2|A2 - Injection Flaws]]''' <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Presentation''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training material <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Video's ''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training video <br />
|}<br />
{| style="width:100%" border="0" align="center"<br />
! colspan="4" align="center" style="background:#FFFFFF; color:white"|<font color="white"><br />
'''[[Top_10_2007-A3|A3 - Malicious File Execution]]''' <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Presentation''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training material <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Video's ''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training video <br />
|}<br />
{| style="width:100%" border="0" align="center"<br />
! colspan="4" align="center" style="background:#FFFFFF; color:white"|<font color="white"><br />
'''[[Top_10_2007-A4|A4 - Insecure Direct Object Reference]]''' <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Presentation''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training material <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Video's ''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training video <br />
|}<br />
{| style="width:100%" border="0" align="center"<br />
! colspan="4" align="center" style="background:#FFFFFF; color:white"|<font color="white"><br />
'''[[Top_10_2007-A5|A5 - Cross Site Request Forgery (CSRF)]]''' <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Presentation''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training material <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Video's ''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training video <br />
|}<br />
{| style="width:100%" border="0" align="center"<br />
! colspan="4" align="center" style="background:#FFFFFF; color:white"|<font color="white"><br />
'''[[Top_10_2007-A6|A6 - Information Leakage and Improper Error Handling]]''' <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Presentation''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training material <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Video's ''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training video <br />
|}<br />
{| style="width:100%" border="0" align="center"<br />
! colspan="4" align="center" style="background:#FFFFFF; color:white"|<font color="white"><br />
'''[[Top_10_2007-A7|A7 - Broken Authentication and Session Management]]''' <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Presentation''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training material <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Video's ''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training video <br />
|}<br />
{| style="width:100%" border="0" align="center"<br />
! colspan="4" align="center" style="background:#FFFFFF; color:white"|<font color="white"><br />
'''[[Top_10_2007-A8|A8 - Insecure Cryptographic Storage]]''' <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Presentation''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training material <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Video's ''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training video <br />
|}<br />
{| style="width:100%" border="0" align="center"<br />
! colspan="4" align="center" style="background:#FFFFFF; color:white"|<font color="white"><br />
'''[[Top_10_2007-A9|A9 - Insecure Communications]]''' <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Presentation''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training material <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Video's ''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training video <br />
|}<br />
{| style="width:100%" border="0" align="center"<br />
! colspan="4" align="center" style="background:#FFFFFF; color:white"|<font color="white"><br />
'''[[Top_10_2007-A10|A10 - Failure to Restrict URL Access]]''' <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Presentation''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training material <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="left"| '''Video's ''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
* training video <br />
|}</div>
Jason Li