This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Template:Top 10 2010 Developer Edition De:ByTheNumbers"
From OWASP
(Usage +Example) |
|||
| Line 7: | Line 7: | ||
=== '''Example:''' === | === '''Example:''' === | ||
<nowiki>{{Top_10_2010_Developer_Edition_De:ByTheNumbers|1|language=de|year=2013}} | <nowiki>{{Top_10_2010_Developer_Edition_De:ByTheNumbers|1|language=de|year=2013}} | ||
| − | {{Top_10_2010_Developer_Edition_De:ByTheNumbers|2|year=2013}} <!-- Default-Language = English ---> | + | {{Top_10_2010_Developer_Edition_De:ByTheNumbers|2|year=2013}} <!-- Default-Language = English ---> |
| − | {{Top_10_2010_Developer_Edition_De:ByTheNumbers|2|language=de}} <!-- Default-Year = 2010 ---></nowiki> | + | {{Top_10_2010_Developer_Edition_De:ByTheNumbers|2|language=de}} <!-- Default-Year = 2010 ---></nowiki> |
<br/> | <br/> | ||
{| class="wikitable" cellspacing="1" cellpadding="1" border="1" width="100%;" | {| class="wikitable" cellspacing="1" cellpadding="1" border="1" width="100%;" | ||
Revision as of 17:18, 12 April 2013
Usage:
{{Top_10_2010_Developer_Edition_De:ByTheNumbers|{{{risk}}}|year={{{year}}}|language={{{language}}} }}
Example:
{{Top_10_2010_Developer_Edition_De:ByTheNumbers|1|language=de|year=2013}}
{{Top_10_2010_Developer_Edition_De:ByTheNumbers|2|year=2013}} <!-- Default-Language = English --->
{{Top_10_2010_Developer_Edition_De:ByTheNumbers|2|language=de}} <!-- Default-Year = 2010 --->
| Number | English 2010 | German 2010 | English 2013 | German 2013 |
|---|---|---|---|---|
| 1 | Injection | Injection | Injection | Injection |
| 2 | Cross-Site Scripting (XSS) | Cross-Site Scripting (XSS) | Broken Authentication and Session Management | Fehler in Authentifizierung und Session-Management |
| 3 | Broken Authentication and Session Management | Fehler in Authentifizierung und Session-Management | Cross-Site Scripting (XSS) | Cross-Site Scripting (XSS) |
| 4 | Insecure Direct Object References | Unsichere direkte Objektreferenzen | Insecure Direct Object References | Unsichere direkte Objektreferenzen |
| 5 | Cross-Site Request Forgery (CSRF) | Cross-Site Request Forgery (CSRF) | Security Misconfiguration | Sicherheitsrelevante Fehlkonfiguration |
| 6 | Security Misconfiguration | Sicherheitsrelevante Fehlkonfiguration | Sensitive Data Exposure | Verlust der Vertraulichkeit sensibler Daten |
| 7 | Insecure Cryptographic Storage | Kryptografisch unsichere Speicherung | Missing Function Level Access Control | Fehlerhafte Autorisierung auf Anwendungsebene |
| 8 | Failure to Restrict URL Access | Mangelhafter URL-Zugriffsschutz | Cross-Site Request Forgery (CSRF) | Cross-Site Request Forgery (CSRF) |
| 9 | Insufficient Transport Layer Protection | Unzureichende Absicherung der Transportschicht | Using Components with Known Vulnerabilities | Nutzung von Komponenten mit bekannten Schwachstellen |
| 10 | Unvalidated Redirects and Forwards | Ungeprüfte Um- und Weiterleitungen | Unvalidated Redirects and Forwards | Ungeprüfte Um- und Weiterleitungen |
| 11 | In Progress | In Arbeit | In Progress | In Arbeit |
