This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Cornucopia - Ecommerce Website - C 10
From OWASP
Revision as of 15:28, 21 January 2016 by Dariodf (talk | contribs) (Created page with "{{DISPLAYTITLE:<span style="padding:2px 5px 0px 5px;color:white;background:#17365d;">Cornucopia - Ecommerce Website - C 10</span>}} File:Cornucopia_-_Ecommerce_Website_C_10....")
Suit: Cornucopia
Card/Value: 10
Description:
Xavier can circumvent the application's controls because code frameworks, libraries and components contain malicious code or vulnerabilities (e.g. in-house, commercial off the shelf, outsourced, open source, externally-located).
Technical Note:
NB: The key concept for this card is software hardening, configuration and patching. See C 8 instead for host/network environment hardening, configuration and patching.
References:
| OWASP SCP | OWASP ASVS | OWASP AppSensor | CAPEC | SAFECODE |
|---|---|---|---|---|
| 57 | 13.1 | - | 68 | 15 |
| 151 | 13.2 | 438 | ||
| 152 | 13.3 | 439 | ||
| 204 | 13.4 | 442 | ||
| 205 | 13.5 | |||
| 213 | 13.6 | |||
| 214 | 13.7 | |||
| 13.8 | ||||
| 13.9 | ||||
| 13.10 | ||||
| 13.11 |
