This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Top 10 2013-A1-Injection"

From OWASP
Jump to: navigation, search
Line 23: Line 23:
 
           <table style="border: none; text-align: left; width: 100%; border-spacing:5px 5px;">
 
           <table style="border: none; text-align: left; width: 100%; border-spacing:5px 5px;">
 
               <tr>
 
               <tr>
 
+
<td style="vertical-align: top; width: 50%">
<td style="vertical-align: top; width: 50%; padding: 5px; border: 3px solid #93b88b; background-color: #d9ead5">
+
<div style=" padding: 5px; border: 3px solid #93b88b; background-color: #d9ead5">
  
 
<div style="font-style: bold; color: #000000; font-size: 150%;">Am I vulnerable to</div>
 
<div style="font-style: bold; color: #000000; font-size: 150%;">Am I vulnerable to</div>
 +
</div>
 
hardy har har har
 
hardy har har har
 
{{Top_10_2010:SubsectionAdvancedTemplate|type={{Top_10_2010:StyleTemplate}}|number=2|risk=1|year=2013}}
 
{{Top_10_2010:SubsectionAdvancedTemplate|type={{Top_10_2010:StyleTemplate}}|number=2|risk=1|year=2013}}
Line 32: Line 33:
 
#blankBullet1
 
#blankBullet1
 
#blankBullet2
 
#blankBullet2
{{Top_10_2010:SubsectionAdvancedTemplate|type={{Top_10_2010:StyleTemplate}}|number=3|risk=1|year=2013}}
+
</td></tr>
blank
+
<td style="vertical-align: top; width: 50%; padding: 5px; border: 3px solid #93b88b; background-color: #d9ead5">
{{Top_10_2010:ExampleBeginTemplate}}<span style="color:red;">blank code</span>{{Top_10_2010:ExampleEndTemplate}}
+
 
 +
<div style="font-style: bold; color: #000000; font-size: 150%;">Am I vulnerable to</div>
 +
hardy har har har{{Top_10_2010:ExampleBeginTemplate}}<span style="color:red;">blank code</span>{{Top_10_2010:ExampleEndTemplate}}
 
blank
 
blank
 
{{Top_10_2010:ExampleBeginTemplate}}<nowiki>http://example.com/app/accountView?id=</nowiki><span style="color: red;">' or '1'='1</span>{{Top_10_2010:ExampleEndTemplate}}
 
{{Top_10_2010:ExampleBeginTemplate}}<nowiki>http://example.com/app/accountView?id=</nowiki><span style="color: red;">' or '1'='1</span>{{Top_10_2010:ExampleEndTemplate}}

Revision as of 02:56, 16 February 2013

NOTE: THIS IS NOT THE LATEST VERSION. Please visit the OWASP Top 10 project page to find the latest edition.

[[Top 10 {{{year}}}-Main|← Main]]
[[Top 10 {{{year}}}-Table of Contents | {{{year}}} Table of Contents]]

[[Top_10_{{{year}}}-Top 10|{{{year}}} Top 10 List]]

[[Top 10 {{{year}}}-Broken Authentication and Session Management|Broken Authentication and Session Management →]]
Threat Agents Attack Vectors Security Weakness Technical Impacts Business Impacts
Application Specific Exploitability
EASY		 Prevalence
COMMON		 Detectability
AVERAGE		 Impact
SEVERE		 Application / Business Specific
blank. blank blank blank blank
</tr>
Am I vulnerable to

hardy har har har

How Do I Prevent 'Injection'?

blank

  1. blankBullet1
  2. blankBullet2
Am I vulnerable to
hardy har har har
blank code

blank

http://example.com/app/accountView?id=' or '1'='1

blank

References

OWASP

External

[[Top 10 {{{year}}}-Main|← Main]]
[[Top 10 {{{year}}}-Table of Contents | {{{year}}} Table of Contents]]

[[Top_10_{{{year}}}-Top 10|{{{year}}} Top 10 List]]

[[Top 10 {{{year}}}-Broken Authentication and Session Management|Broken Authentication and Session Management →]]
© 2002-2013 OWASP Foundation This document is licensed under the Creative Commons Attribution-ShareAlike 3.0 license. Some rights reserved. CC-by-sa-3 0-88x31.png
[[Category:OWASP Top Ten {{{year}}} Project]]
Retrieved from "https://wiki.owasp.org/index.php?title=Top_10_2013-A1-Injection&oldid=144558"