This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
User contributions
(newest | oldest) View (newer 500 | older 500) (20 | 50 | 100 | 250 | 500)
- 23:42, 4 June 2009 (diff | hist) . . (+1) . . Enumerate Applications on Webserver (OTG-INFO-004) (→Black Box testing and example)
- 22:37, 4 June 2009 (diff | hist) . . (-26) . . Conduct search engine discovery/reconnaissance for information leakage (OTG-INFO-001) (→Black Box Testing)
- 12:54, 27 May 2009 (diff | hist) . . (+38) . . Testing Guide Introduction (→References)
- 12:37, 27 May 2009 (diff | hist) . . (-1) . . Testing Guide Introduction (→Security Test Data Analysis and Reporting)
- 20:47, 25 May 2009 (diff | hist) . . (+4) . . Testing Guide Introduction (→Functional and Non Functional Test Requirements)
- 13:07, 22 May 2009 (diff | hist) . . (+21) . . The Owasp Orizon Framework (→Reference)
- 13:07, 22 May 2009 (diff | hist) . . (0) . . The Owasp Orizon Framework (→Reference)
- 13:06, 22 May 2009 (diff | hist) . . (-88) . . The Owasp Orizon Framework (→Reference)
- 12:58, 22 May 2009 (diff | hist) . . (-1) . . Reviewing Web Services (→Reviewing Webservices and XML Payloads)
- 10:17, 15 May 2009 (diff | hist) . . (+2) . . Reviewing Code for Logging Issues (→Log Storage)
- 17:33, 6 May 2009 (diff | hist) . . (+35) . . Reviewing Code for OS Injection (→Introduction)
- 17:14, 6 May 2009 (diff | hist) . . (-1) . . Reviewing Code for OS Injection (→Introduction)
- 12:11, 5 May 2009 (diff | hist) . . (-2) . . Codereview-Error-Handling (→Web.config)
- 12:09, 5 May 2009 (diff | hist) . . (+4) . . Codereview-Error-Handling (→JAVA)
- 11:55, 5 May 2009 (diff | hist) . . (+10) . . Codereview-Authentication (→Vulnerabilities related to authentication)
- 11:54, 5 May 2009 (diff | hist) . . (-1) . . Codereview-Authentication (→Password Storage Strategy)
- 11:36, 5 May 2009 (diff | hist) . . (0) . . Crawling Code (→Searching for Code in .NET)
- 17:14, 4 May 2009 (diff | hist) . . (0) . . Application Threat Modeling (→Security Controls)
- 14:51, 4 May 2009 (diff | hist) . . (-2) . . Application Threat Modeling (→STRIDE)
- 12:51, 4 May 2009 (diff | hist) . . (+1) . . Category:OWASP Code Review Project (→Code review tool)
- 12:30, 4 May 2009 (diff | hist) . . (+3) . . Deployment (current)
- 12:25, 4 May 2009 (diff | hist) . . (0) . . Deployment (→Malicious software)
- 21:37, 3 May 2009 (diff | hist) . . (+1) . . Configuration (→How to protect yourself) (current)
- 21:36, 3 May 2009 (diff | hist) . . (+1) . . Configuration (→How to identify if you are vulnerable)
- 16:01, 3 May 2009 (diff | hist) . . (+1) . . Guide to Cryptography (→How to determine if you are vulnerable)
- 15:59, 3 May 2009 (diff | hist) . . (+70) . . Guide to Cryptography (→Asymmetric Cryptography (also called Public/Private Key Cryptography))
- 11:47, 2 May 2009 (diff | hist) . . (+4) . . Buffer Overflows (→Further reading)
- 11:47, 2 May 2009 (diff | hist) . . (+37) . . Buffer Overflows (→Further reading)
- 11:44, 2 May 2009 (diff | hist) . . (+31) . . Buffer Overflows (→Integer Overflow)
- 11:39, 2 May 2009 (diff | hist) . . (0) . . Buffer Overflows (→Description)
- 11:34, 2 May 2009 (diff | hist) . . (-2) . . File System (→File upload)
- 11:33, 2 May 2009 (diff | hist) . . (-1) . . File System (→Includes and Remote files)
- 11:04, 2 May 2009 (diff | hist) . . (+1) . . Error Handling, Auditing and Logging (→Error Handling and Logging)
- 10:40, 2 May 2009 (diff | hist) . . (+4) . . Error Handling, Auditing and Logging (→Objective)
- 12:13, 1 May 2009 (diff | hist) . . (-29) . . Data Validation (→Data Validation and Interpreter Injection)
- 12:11, 1 May 2009 (diff | hist) . . (+2) . . Data Validation (→Selects, radio buttons, and checkboxes)
- 12:30, 29 April 2009 (diff | hist) . . (-72) . . Ajax and Other "Rich" Interface Technologies (→Access control: Authentication and Authorization) (current)
- 12:21, 29 April 2009 (diff | hist) . . (-24) . . Ajax and Other "Rich" Interface Technologies (→Access control: Authentication and Authorization)
- 12:06, 26 April 2009 (diff | hist) . . (+52) . . Web Services (→.NET – Web Service Extensions)
- 11:59, 26 April 2009 (diff | hist) . . (-15) . . Web Services (→Freshness)
- 11:57, 26 April 2009 (diff | hist) . . (-1) . . Web Services (→Referencing message parts)
- 11:57, 26 April 2009 (diff | hist) . . (-18) . . Web Services (→Referencing message parts)
- 11:55, 26 April 2009 (diff | hist) . . (-25) . . Web Services (→Types of tokens)
- 11:54, 26 April 2009 (diff | hist) . . (-221) . . Web Services (→Security header’s structure)
- 11:46, 26 April 2009 (diff | hist) . . (-44) . . Web Services (→Security header’s structure)
- 11:37, 26 April 2009 (diff | hist) . . (+2) . . Web Services (→Standards committees)
- 11:36, 26 April 2009 (diff | hist) . . (-1) . . Web Services (→Standards committees)
- 11:35, 26 April 2009 (diff | hist) . . (+4) . . Web Services (→Access control)
- 12:05, 24 April 2009 (diff | hist) . . (-37) . . Template:Countermeasure
- 12:02, 24 April 2009 (diff | hist) . . (-38) . . Template:SecureSoftware
- 11:53, 23 April 2009 (diff | hist) . . (+84) . . XPATH Injection
- 11:53, 23 April 2009 (diff | hist) . . (+84) . . Web Parameter Tampering
- 11:52, 23 April 2009 (diff | hist) . . (+84) . . Unicode Encoding
- 11:52, 23 April 2009 (diff | hist) . . (+84) . . Trojan Horse
- 11:52, 23 April 2009 (diff | hist) . . (+84) . . Traffic flood (current)
- 11:51, 23 April 2009 (diff | hist) . . (+85) . . Spyware
- 11:51, 23 April 2009 (diff | hist) . . (+84) . . Special Element Injection (current)
- 11:50, 23 April 2009 (diff | hist) . . (+85) . . Setting Manipulation (current)
- 11:50, 23 April 2009 (diff | hist) . . (+84) . . Session hijacking attack
- 11:50, 23 April 2009 (diff | hist) . . (+84) . . Session fixation
- 11:49, 23 April 2009 (diff | hist) . . (+85) . . Session Prediction
- 11:49, 23 April 2009 (diff | hist) . . (+85) . . Server-Side Includes (SSI) Injection
- 11:49, 23 April 2009 (diff | hist) . . (+84) . . Resource Injection
- 11:48, 23 April 2009 (diff | hist) . . (+85) . . Repudiation Attack
- 11:48, 23 April 2009 (diff | hist) . . (+85) . . Relative Path Traversal
- 11:47, 23 April 2009 (diff | hist) . . (+84) . . Path Manipulation
- 11:47, 23 April 2009 (diff | hist) . . (+84) . . Parameter Delimiter
- 11:45, 23 April 2009 (diff | hist) . . (+85) . . Mobile code: object hijack (current)
- 11:45, 23 April 2009 (diff | hist) . . (+84) . . Mobile code: non-final public field (current)
- 11:44, 23 April 2009 (diff | hist) . . (+86) . . Mobile code: invoking untrusted mobile code (current)
- 11:44, 23 April 2009 (diff | hist) . . (+86) . . Man-in-the-middle attack
- 11:43, 23 April 2009 (diff | hist) . . (+86) . . Man-in-the-browser attack
- 11:42, 23 April 2009 (diff | hist) . . (+86) . . Denial of Service
- 11:41, 23 April 2009 (diff | hist) . . (+86) . . Custom Special Character Injection
- 11:41, 23 April 2009 (diff | hist) . . (+84) . . Cryptanalysis
- 11:40, 23 April 2009 (diff | hist) . . (+85) . . Cross-User Defacement
- 11:40, 23 April 2009 (diff | hist) . . (+84) . . Cross Site Tracing
- 11:39, 23 April 2009 (diff | hist) . . (+84) . . Comment Injection Attack
- 11:39, 23 April 2009 (diff | hist) . . (+86) . . Code Injection
- 11:38, 23 April 2009 (diff | hist) . . (+86) . . Cache Poisoning
- 11:37, 23 April 2009 (diff | hist) . . (+86) . . Cross-Site Request Forgery (CSRF)
- 11:37, 23 April 2009 (diff | hist) . . (+86) . . Brute force attack
- 11:46, 22 April 2009 (diff | hist) . . (-8) . . Glossary (→Base 64)
- 00:14, 21 April 2009 (diff | hist) . . (0) . . SSL Best Practices (→Secure Login Pages)
- 00:14, 21 April 2009 (diff | hist) . . (-1) . . SSL Best Practices (→How SSL is implemented in J2EE)
- 00:14, 21 April 2009 (diff | hist) . . (+48) . . SSL Best Practices (Undo revision 59269 by KirstenS (Talk))
- 00:13, 21 April 2009 (diff | hist) . . (-48) . . SSL Best Practices (→How SSL is implemented in J2EE)
- 00:07, 21 April 2009 (diff | hist) . . (-28) . . Preventing SQL Injection in Java (→Hibernate)
- 00:04, 21 April 2009 (diff | hist) . . (+12) . . Preventing LDAP Injection in Java (→Approach)
- 00:00, 21 April 2009 (diff | hist) . . (-1) . . PDF Attack Filter for Java EE (→Setup)
- 23:59, 20 April 2009 (diff | hist) . . (-1) . . PDF Attack Filter for Java EE (→Setup)
- 11:50, 20 April 2009 (diff | hist) . . (-4) . . OWASP Java Table of Contents (→J2EE Security for Security Analysts and Testers)
- 11:49, 20 April 2009 (diff | hist) . . (-4) . . OWASP Java Table of Contents (→J2EE Security For Deployers)
- 11:45, 20 April 2009 (diff | hist) . . (-27) . . Session Fixation in Java (→Countermeasures)
- 11:41, 20 April 2009 (diff | hist) . . (-4) . . OWASP Java Table of Contents (→Java Security Basics)
- 11:39, 20 April 2009 (diff | hist) . . (-30) . . Mobile Java Security (→Presentations)
- 11:37, 20 April 2009 (diff | hist) . . (+4) . . Java Server Faces (→ICE Faces)
- 11:36, 20 April 2009 (diff | hist) . . (-1) . . Java Server Faces (→ICE Faces)
- 11:35, 20 April 2009 (diff | hist) . . (+35) . . Java Server Faces (→MyFaces)
- 11:32, 20 April 2009 (diff | hist) . . (-1) . . Java Server Faces (→JSF Standards and roles)
- 11:26, 20 April 2009 (diff | hist) . . (0) . . Java Security Frameworks (→Enterprise)
- 11:26, 20 April 2009 (diff | hist) . . (-29) . . Java Security Frameworks (→Enterprise)
- 11:23, 20 April 2009 (diff | hist) . . (+62) . . JSP JSTL (→Unified EL)
- 11:08, 20 April 2009 (diff | hist) . . (-3) . . Hibernate-Guidelines (→Identify natural keys)
- 11:06, 20 April 2009 (diff | hist) . . (-16) . . Hibernate-Guidelines (→Don't use load() to determine existence)
- 01:45, 20 April 2009 (diff | hist) . . (0) . . Hibernate (→More Examples)
- 01:44, 20 April 2009 (diff | hist) . . (-1) . . Hibernate (→Creating, manipulating and executing queries)
- 11:21, 19 April 2009 (diff | hist) . . (+30) . . Bytecode obfuscation (→Links)
- 11:18, 19 April 2009 (diff | hist) . . (-29) . . Bytecode obfuscation (→How to recover Source Code from Bytecode?)
- 11:17, 19 April 2009 (diff | hist) . . (+31) . . Bytecode obfuscation (→How to recover Source Code from Bytecode?)
- 11:11, 19 April 2009 (diff | hist) . . (+37) . . The .Net Framework is also affected by the WMF vulnerabilty
- 21:08, 18 April 2009 (diff | hist) . . (+41) . . Wrong Status Code (current)
- 21:07, 18 April 2009 (diff | hist) . . (+41) . . Wrong Data Type (current)
- 21:07, 18 April 2009 (diff | hist) . . (+41) . . Weak credentials
- 21:06, 18 April 2009 (diff | hist) . . (+41) . . Weak Encryption (current)
- 21:04, 18 April 2009 (diff | hist) . . (+40) . . Virtual Files (current)
- 21:03, 18 April 2009 (diff | hist) . . (+40) . . Variable Name Delimiter (current)
- 21:03, 18 April 2009 (diff | hist) . . (+41) . . Value Problems (current)
- 21:02, 18 April 2009 (diff | hist) . . (+41) . . Value Delimiter (current)
- 21:02, 18 April 2009 (diff | hist) . . (+41) . . Validate-Before-Filter (current)
- 21:02, 18 April 2009 (diff | hist) . . (+41) . . Validate-Before-Canonicalize
- 20:51, 18 April 2009 (diff | hist) . . (+39) . . User management errors (current)
- 20:51, 18 April 2009 (diff | hist) . . (+41) . . User interface inconsistency (current)
- 20:50, 18 April 2009 (diff | hist) . . (+41) . . User Interface Security Errors (current)
- 20:50, 18 April 2009 (diff | hist) . . (+41) . . User Interface Quality Errors (current)
- 20:49, 18 April 2009 (diff | hist) . . (+41) . . Use of Less Trusted Source (current)
- 20:49, 18 April 2009 (diff | hist) . . (+42) . . Unverified Ownership
- 20:49, 18 April 2009 (diff | hist) . . (+41) . . Untrusted Data Appended with Trusted Data (current)
- 20:48, 18 April 2009 (diff | hist) . . (+41) . . Unsafe Privilege
- 20:47, 18 April 2009 (diff | hist) . . (+41) . . Unrestricted Critical Resource Lock
- 15:48, 18 April 2009 (diff | hist) . . (-2) . . Secure by de...what? (User instances in SQL Server 2005 Express Edition) (→Dinis Follow up question)
- 15:47, 18 April 2009 (diff | hist) . . (+36) . . Secure by de...what? (User instances in SQL Server 2005 Express Edition)
- 15:47, 18 April 2009 (diff | hist) . . (+36) . . Secure by de...what? (User instances in SQL Server 2005 Express Edition)
- 15:44, 18 April 2009 (diff | hist) . . (+36) . . Rooting The CLR (→Rooting the CLR presentation - London DotNet User Group 22nd March)
- 15:40, 18 April 2009 (diff | hist) . . (0) . . OWASP SiteGenerator (→Introduction to SiteGenerator)
- 15:37, 18 April 2009 (diff | hist) . . (+4) . . OWASP SiteGenerator
- 15:37, 18 April 2009 (diff | hist) . . (+36) . . OWASP SiteGenerator
- 14:14, 18 April 2009 (diff | hist) . . (+36) . . OWASP FOSBBWAS (code name Beretta) (current)
- 12:09, 17 April 2009 (diff | hist) . . (+35) . . London Chapter WAF event
- 11:40, 17 April 2009 (diff | hist) . . (+35) . . RuntimeMethodHandle.GetFunctionPointer() doesn't demand UnmanagedCode Security Permission (current)
- 11:40, 17 April 2009 (diff | hist) . . (+35) . . RuntimeMethodHandle.GetFunctionPointer() doesn't demand UnmanagedCode Security Permission
- 11:39, 17 April 2009 (diff | hist) . . (+36) . . ANSI/UNICODE bug in System.Net.HttpListenerRequest
- 11:38, 17 April 2009 (diff | hist) . . (+35) . . ANSI/UNICODE bug in System.Net.HttpListenerRequest
- 11:38, 17 April 2009 (diff | hist) . . (+70) . . ANSI/UNICODE bug in System.Net.HttpListenerRequest
- 11:37, 17 April 2009 (diff | hist) . . (+35) . . ANSI/UNICODE bug in System.Net.HttpListenerRequest
- 11:37, 17 April 2009 (diff | hist) . . (+35) . . ANSI/UNICODE bug in System.Net.HttpListenerRequest
- 11:34, 17 April 2009 (diff | hist) . . (0) . . Manipulating private method behaviour by overriding public virtual methods in public classes (current)
- 11:32, 17 April 2009 (diff | hist) . . (+36) . . Possible Type Confusion issue in .Net 1.1 (only works in Full Trust)
- 16:23, 16 April 2009 (diff | hist) . . (+35) . . .NET ESAPI
- 16:22, 16 April 2009 (diff | hist) . . (-29) . . .NET ESAPI
- 15:04, 16 April 2009 (diff | hist) . . (-30) . . PDF Attack Filter for Apache mod rewrite (→Approach)
- 15:04, 16 April 2009 (diff | hist) . . (-30) . . PDF Attack Filter for Apache mod rewrite (→Overview)
- 15:03, 16 April 2009 (diff | hist) . . (-44) . . PDF Attack Filter for Apache mod rewrite (→References)
- 01:10, 15 April 2009 (diff | hist) . . (+41) . . Unquoted Search Path or Element (current)
- 01:10, 15 April 2009 (diff | hist) . . (+42) . . Unprotected Primary Channel (current)
- 01:10, 15 April 2009 (diff | hist) . . (+41) . . Unprotected Alternate Channel (current)
- 01:09, 15 April 2009 (diff | hist) . . (+41) . . Unparsed Raw Web Content Delivery (current)
- 01:09, 15 April 2009 (diff | hist) . . (+41) . . Unexpected Status Code or Return Value (current)
- 01:09, 15 April 2009 (diff | hist) . . (+41) . . Undefined Value Error
- 01:08, 15 April 2009 (diff | hist) . . (+41) . . Undefined Parameter Error (current)
- 01:08, 15 April 2009 (diff | hist) . . (+41) . . URL Encoding (Hex Encoding) (current)
- 01:08, 15 April 2009 (diff | hist) . . (+41) . . UNIX symbolic link (symlink) following (current)
- 01:07, 15 April 2009 (diff | hist) . . (+42) . . UNIX hard link (current)
- 01:07, 15 April 2009 (diff | hist) . . (+40) . . UNIX file descriptor leak
- 01:07, 15 April 2009 (diff | hist) . . (+41) . . UNIX Path Link problems (current)
- 01:06, 15 April 2009 (diff | hist) . . (+41) . . UI Misrepresentation of Critical Information
- 01:05, 15 April 2009 (diff | hist) . . (+41) . . Truncation of Security-relevant Information (current)
- 01:04, 15 April 2009 (diff | hist) . . (+41) . . Trapdoor (current)
- 01:04, 15 April 2009 (diff | hist) . . (+42) . . Trailing Special Element (current)
- 01:03, 15 April 2009 (diff | hist) . . (+32) . . Time-of-check Time-of-use race condition (current)
- 01:03, 15 April 2009 (diff | hist) . . (+40) . . Time of Introduction (current)
- 01:00, 15 April 2009 (diff | hist) . . (+39) . . Time and State (current)
- 01:00, 15 April 2009 (diff | hist) . . (+38) . . The UI performs the wrong action (current)
- 01:00, 15 April 2009 (diff | hist) . . (+39) . . Testing Issues (current)
- 00:59, 15 April 2009 (diff | hist) . . (+39) . . Temporary File Issues (current)
- 00:59, 15 April 2009 (diff | hist) . . (+40) . . Technology-specific Environment Issues (current)
- 00:59, 15 April 2009 (diff | hist) . . (+39) . . Technology-Specific Time and State Issues (current)
- 00:58, 15 April 2009 (diff | hist) . . (+40) . . Technology-Specific Special Elements (current)
- 00:57, 15 April 2009 (diff | hist) . . (+42) . . Technology-Specific Input Validation Problems
- 00:48, 15 April 2009 (diff | hist) . . (+40) . . System Operations Issues (current)
- 00:47, 15 April 2009 (diff | hist) . . (+41) . . System Configuration Issues (current)
- 00:47, 15 April 2009 (diff | hist) . . (+41) . . Substitution Character (current)
- 00:46, 15 April 2009 (diff | hist) . . (+40) . . Struts: Form Bean Does Not Extend Validation Class
- 00:45, 15 April 2009 (diff | hist) . . (+41) . . Static Value in Unpredictable Context (current)
- 00:45, 15 April 2009 (diff | hist) . . (+41) . . Small Space of Random Values (current)
- 00:45, 15 April 2009 (diff | hist) . . (+41) . . Signal Errors (current)
- 00:45, 15 April 2009 (diff | hist) . . (+41) . . Sensitive Data Under Web Root (current)
- 23:56, 14 April 2009 (diff | hist) . . (+41) . . Reversible One-Way Hash
- 23:56, 14 April 2009 (diff | hist) . . (+41) . . Resource Locking problems (current)
- 23:56, 14 April 2009 (diff | hist) . . (+41) . . Regular Expression Error (current)
- 23:55, 14 April 2009 (diff | hist) . . (+42) . . Record Delimiter (current)
- 23:52, 14 April 2009 (diff | hist) . . (+19) . . Reduce Surface Area (current)
- 23:51, 14 April 2009 (diff | hist) . . (-2) . . Randomness and Predictability (current)
- 21:19, 14 April 2009 (diff | hist) . . (+42) . . Randomness and Predictability
- 21:17, 14 April 2009 (diff | hist) . . (+31) . . Race condition enabling link following (current)
- 21:13, 14 April 2009 (diff | hist) . . (+40) . . Public Data Assigned to Private Array-Typed Field
- 21:13, 14 April 2009 (diff | hist) . . (+39) . . Proxied Trusted Channel (current)
- 21:12, 14 April 2009 (diff | hist) . . (+39) . . Product-Generated Error Message Infoleak (current)
- 21:12, 14 April 2009 (diff | hist) . . (+39) . . Product-External Error Message Infoleak (current)
- 21:12, 14 April 2009 (diff | hist) . . (+38) . . Product UI does not warn user of unsafe actions (current)
- 21:02, 14 April 2009 (diff | hist) . . (-20) . . Phishing
- 20:38, 14 April 2009 (diff | hist) . . (+39) . . Process information infoleak to other processes (current)
- 20:38, 14 April 2009 (diff | hist) . . (+39) . . Privilege Management Error (current)
- 20:37, 14 April 2009 (diff | hist) . . (+39) . . Privilege Dropping / Lowering Errors
- 20:37, 14 April 2009 (diff | hist) . . (+39) . . Privilege Context Switching Error (current)
- 20:37, 14 April 2009 (diff | hist) . . (+40) . . Privilege Chaining
- 20:36, 14 April 2009 (diff | hist) . . (+38) . . Privilege / sandbox errors (current)
- 20:36, 14 April 2009 (diff | hist) . . (+39) . . Private Array-Typed Field Returned From A Public Method (current)
- 20:35, 14 April 2009 (diff | hist) . . (+39) . . Predictable Value Range from Previous Values (current)
- 20:35, 14 April 2009 (diff | hist) . . (+39) . . Predictable Seed in PRNG
- 20:34, 14 April 2009 (diff | hist) . . (+38) . . Predictable Exact Value from Previous Values (current)
- 20:34, 14 April 2009 (diff | hist) . . (+39) . . Predictability problems
- 20:33, 14 April 2009 (diff | hist) . . (+40) . . Porting Issues (current)
- 20:31, 14 April 2009 (diff | hist) . . (+39) . . Pointer Issues (current)
- 20:31, 14 April 2009 (diff | hist) . . (+39) . . Plaintext Storage of Sensitive Information (current)
- 20:30, 14 April 2009 (diff | hist) . . (+39) . . Plaintext Storage in GUI (current)
- 20:30, 14 April 2009 (diff | hist) . . (+39) . . Plaintext Storage in File or on Disk (current)
- 20:30, 14 April 2009 (diff | hist) . . (+39) . . Plaintext Storage in Executable
- 20:29, 14 April 2009 (diff | hist) . . (+39) . . Plaintext Storage in Cookie (current)
- 20:26, 14 April 2009 (diff | hist) . . (+19) . . Phishing attack (current)
- 20:24, 14 April 2009 (diff | hist) . . (-58) . . Phishing attack
- 20:22, 14 April 2009 (diff | hist) . . (+58) . . Phishing attack
- 20:21, 14 April 2009 (diff | hist) . . (+58) . . Permissive Whitelist (current)
- 20:21, 14 April 2009 (diff | hist) . . (+56) . . Permissions, Privileges, and ACLs (current)
- 20:21, 14 April 2009 (diff | hist) . . (+56) . . Permission preservation failure (current)
- 20:20, 14 April 2009 (diff | hist) . . (+57) . . Permission errors (current)
- 20:20, 14 April 2009 (diff | hist) . . (+57) . . Pathname Traversal and Equivalence Errors (current)
- 20:09, 14 April 2009 (diff | hist) . . (+57) . . Path Issue - triple dot (current)
- 20:09, 14 April 2009 (diff | hist) . . (+55) . . Path Issue - trailing space (current)
- 20:08, 14 April 2009 (diff | hist) . . (+54) . . Path Issue - trailing slash
- 20:08, 14 April 2009 (diff | hist) . . (+57) . . Path Issue - trailing dot (current)
- 20:08, 14 April 2009 (diff | hist) . . (+56) . . Path Issue - trailing backslash (current)
- 20:07, 14 April 2009 (diff | hist) . . (+57) . . Path Issue - slash absolute path
- 20:07, 14 April 2009 (diff | hist) . . (+57) . . Path Issue - single dot directory (current)
- 20:07, 14 April 2009 (diff | hist) . . (+57) . . Path Issue - multiple trailing slash (current)
- 20:06, 14 April 2009 (diff | hist) . . (+55) . . Path Issue - multiple trailing dot (current)
- 20:06, 14 April 2009 (diff | hist) . . (+55) . . Path Issue - multiple leading slash (current)
- 20:06, 14 April 2009 (diff | hist) . . (+55) . . Path Issue - multiple internal backslash (current)
- 20:05, 14 April 2009 (diff | hist) . . (+55) . . Path Issue - multiple dot (current)
- 20:05, 14 April 2009 (diff | hist) . . (+56) . . Path Issue - leading space (current)
- 19:54, 14 April 2009 (diff | hist) . . (+55) . . Path Issue - leading dot dot slash (current)
- 19:54, 14 April 2009 (diff | hist) . . (+57) . . Path Issue - leading dot dot backslash
- 19:54, 14 April 2009 (diff | hist) . . (+56) . . Path Issue - leading directory dot dot slash (current)
- 19:53, 14 April 2009 (diff | hist) . . (+56) . . Path Issue - leading directory dot dot backslash (current)
- 19:53, 14 April 2009 (diff | hist) . . (+56) . . Path Issue - internal space - file(SPACE)name (current)
- 19:53, 14 April 2009 (diff | hist) . . (+56) . . Path Issue - internal dot - 'file.ordir' (current)
- 19:52, 14 April 2009 (diff | hist) . . (+56) . . Path Issue - drive letter or Windows volume - 'C:dirname' (current)
- 19:51, 14 April 2009 (diff | hist) . . (+57) . . Path Issue - doubled triple dot slash (current)
- 19:51, 14 April 2009 (diff | hist) . . (+56) . . Path Issue - doubled dot dot slash (current)
- 19:51, 14 April 2009 (diff | hist) . . (+56) . . Path Issue - dot dot backslash
- 19:50, 14 April 2009 (diff | hist) . . (+56) . . Path Issue - dirname/fakechild/ (current)
- 19:50, 14 April 2009 (diff | hist) . . (+57) . . Path Issue - directory doubled dot dot slash (current)
- 19:49, 14 April 2009 (diff | hist) . . (+56) . . Path Issue - directory doubled dot dot backslash (current)
- 19:49, 14 April 2009 (diff | hist) . . (+56) . . Path Issue - backslash absolute path - /absolute/pathname/here (current)
- 19:48, 14 April 2009 (diff | hist) . . (+57) . . Path Issue - asterisk wildcard - filedir* (current)
- 19:48, 14 April 2009 (diff | hist) . . (+56) . . Path Issue - Windows UNC share - '/UNC/share/name/'
- 19:48, 14 April 2009 (diff | hist) . . (+57) . . Path Issue - Windows 8.3 Filename (current)
- 19:47, 14 April 2009 (diff | hist) . . (+40) . . Path Equivalence (current)
- 19:47, 14 April 2009 (diff | hist) . . (+41) . . Patch Issues (current)
- 19:46, 14 April 2009 (diff | hist) . . (+41) . . Partial Comparison (current)
- 19:45, 14 April 2009 (diff | hist) . . (+39) . . Parameter Problems (current)
- 19:44, 14 April 2009 (diff | hist) . . (+39) . . PHP External Variable Modification (current)
- 19:39, 14 April 2009 (diff | hist) . . (+41) . . Ownership errors (current)
- 19:39, 14 April 2009 (diff | hist) . . (+39) . . Overly Restrictive Regular Expression
- 19:39, 14 April 2009 (diff | hist) . . (+8) . . Outsourced software developer (current)
- 19:38, 14 April 2009 (diff | hist) . . (+41) . . Out-of-bounds Read
- 19:37, 14 April 2009 (diff | hist) . . (+1) . . Other length calculation error (current)
- 19:37, 14 April 2009 (diff | hist) . . (-2) . . Other length calculation error
- 19:36, 14 April 2009 (diff | hist) . . (+40) . . Other length calculation error
- 20:57, 11 April 2009 (diff | hist) . . (+41) . . Origin Validation Error (current)
- 20:56, 11 April 2009 (diff | hist) . . (+41) . . Omission of Security-relevant Information (current)
- 20:56, 11 April 2009 (diff | hist) . . (+41) . . Often Misused: Path Manipulation
- 20:55, 11 April 2009 (diff | hist) . . (+41) . . Off-by-one Error
- 20:55, 11 April 2009 (diff | hist) . . (+39) . . Obsolete feature in UI (current)
- 20:54, 11 April 2009 (diff | hist) . . (+41) . . Obscured Security-relevant Information by Alternate Name (current)
- 20:53, 11 April 2009 (diff | hist) . . (-1) . . Null Character / Null Byte (current)
- 20:46, 11 April 2009 (diff | hist) . . (+10) . . Non-Replicating (current)
- 20:45, 11 April 2009 (diff | hist) . . (-8) . . Non-exit on Failed Initialization (current)
- 20:44, 11 April 2009 (diff | hist) . . (-14) . . No Authentication for Critical Function (current)
- 20:43, 11 April 2009 (diff | hist) . . (+43) . . Null-pointer dereference
- 20:41, 11 April 2009 (diff | hist) . . (+42) . . No authentication for critical function (current)
- 20:39, 11 April 2009 (diff | hist) . . (-10) . . Multiple Interpretation Error (MIE) (current)
- 19:57, 11 April 2009 (diff | hist) . . (0) . . Missing Error Status Code (current)
- 19:53, 11 April 2009 (diff | hist) . . (+39) . . Mutable objects passed by reference (current)
- 19:52, 11 April 2009 (diff | hist) . . (+39) . . Multiple interpretations of UI input
- 19:52, 11 April 2009 (diff | hist) . . (+39) . . Multiple interpretation error (MIE) (current)
- 19:51, 11 April 2009 (diff | hist) . . (+39) . . Multiple internal special element (current)
- 19:51, 11 April 2009 (diff | hist) . . (+40) . . Multiple failed authentication attempts not prevented (current)
- 19:51, 11 April 2009 (diff | hist) . . (+39) . . Multiple Trailing Special Elements (current)
- 19:50, 11 April 2009 (diff | hist) . . (+40) . . Multiple Leading Special Elements (current)
- 19:50, 11 April 2009 (diff | hist) . . (+40) . . Mixed encoding (current)
- 19:49, 11 April 2009 (diff | hist) . . (+40) . . Missing value error (current)
- 19:49, 11 April 2009 (diff | hist) . . (+40) . . Missing special element (current)
- 19:49, 11 April 2009 (diff | hist) . . (+39) . . Missing required cryptographic step (current)
- 19:48, 11 April 2009 (diff | hist) . . (+39) . . Missing parameter error (current)
- 19:48, 11 April 2009 (diff | hist) . . (+40) . . Missing lock check (current)
- 19:48, 11 April 2009 (diff | hist) . . (+40) . . Missing initialization (current)
- 19:47, 11 April 2009 (diff | hist) . . (+39) . . Missing handler (current)
- 19:47, 11 April 2009 (diff | hist) . . (+40) . . Missing error status code (current)
- 19:47, 11 April 2009 (diff | hist) . . (+39) . . Missing element error (current)
- 19:46, 11 April 2009 (diff | hist) . . (+39) . . Missing critical step in authentication (current)
- 19:45, 11 April 2009 (diff | hist) . . (+41) . . Missing access control (current)
- 19:43, 11 April 2009 (diff | hist) . . (+40) . . Misinterpretation error (current)
- 19:41, 11 April 2009 (diff | hist) . . (+26) . . Memory Leak (current)
- 19:40, 11 April 2009 (diff | hist) . . (+40) . . Mac virtual file problems (current)
- 19:25, 11 April 2009 (diff | hist) . . (+1) . . Key Management Errors (current)
- 19:25, 11 April 2009 (diff | hist) . . (+3) . . Key Management Errors
- 19:22, 11 April 2009 (diff | hist) . . (+42) . . J2EE Time and State Issues (current)
- 19:20, 11 April 2009 (diff | hist) . . (+57) . . J2EE Bad Practices: Threads
- 19:08, 11 April 2009 (diff | hist) . . (-6) . . Infoleak Using Debug Information
- 19:06, 11 April 2009 (diff | hist) . . (-5) . . Inconsistent Elements
- 18:37, 11 April 2009 (diff | hist) . . (+40) . . Insufficient Resource Pool (current)
- 18:36, 11 April 2009 (diff | hist) . . (+35) . . Insufficient Resource Locking (current)
- 18:34, 11 April 2009 (diff | hist) . . (+40) . . Installation Issues (current)
- 18:34, 11 April 2009 (diff | hist) . . (+41) . . Insecure preserved inherited permissions (current)
- 18:33, 11 April 2009 (diff | hist) . . (+39) . . Insecure inherited permissions (current)
- 18:32, 11 April 2009 (diff | hist) . . (+39) . . Insecure execution-assigned permissions (current)
- 18:31, 11 April 2009 (diff | hist) . . (+40) . . Insecure default variable initialization (current)
- 18:31, 11 April 2009 (diff | hist) . . (+41) . . Insecure Default Permissions (current)
- 18:29, 11 April 2009 (diff | hist) . . (+39) . . Input Terminator
- 18:29, 11 April 2009 (diff | hist) . . (+40) . . Initialization and Cleanup Errors (current)
- 18:26, 11 April 2009 (diff | hist) . . (+36) . . Information loss or omission (current)
- 18:25, 11 April 2009 (diff | hist) . . (+35) . . Information Leak (information disclosure) (current)
- 18:25, 11 April 2009 (diff | hist) . . (+43) . . Infoleak Using Debug Information
- 18:24, 11 April 2009 (diff | hist) . . (+41) . . Incorrect initialization
- 18:23, 11 April 2009 (diff | hist) . . (+41) . . Incorrect Privilege Assignment
- 18:23, 11 April 2009 (diff | hist) . . (+42) . . Inconsistent Special Elements
- 18:21, 11 April 2009 (diff | hist) . . (+42) . . Inconsistent Implementations (current)
- 18:20, 11 April 2009 (diff | hist) . . (+42) . . Incomplete Internal State Distinction
- 18:20, 11 April 2009 (diff | hist) . . (+43) . . Incomplete Element
- 18:19, 11 April 2009 (diff | hist) . . (+42) . . Incomplete Cleanup (current)
- 18:18, 11 April 2009 (diff | hist) . . (+39) . . Incomplete Blacklist (current)
- 18:13, 11 April 2009 (diff | hist) . . (+40) . . Inadvertent (current)
- 18:12, 11 April 2009 (diff | hist) . . (+39) . . Improperly Verified Signature (current)
- 18:12, 11 April 2009 (diff | hist) . . (+40) . . Improperly Trusted Reverse DNS (current)
- 18:11, 11 April 2009 (diff | hist) . . (+40) . . Improperly Implemented Security Check for Standard (current)
- 18:11, 11 April 2009 (diff | hist) . . (+41) . . Improper resource shutdown or release (current)
- 18:11, 11 April 2009 (diff | hist) . . (+41) . . Improper Null Termination
- 18:05, 11 April 2009 (diff | hist) . . (-256) . . Injection problem (current)
- 18:04, 11 April 2009 (diff | hist) . . (-9) . . Injection problem (→Examples)
- 16:54, 11 April 2009 (diff | hist) . . (+40) . . Expected behavior violation (current)
- 16:53, 11 April 2009 (diff | hist) . . (+33) . . Escape, Meta, or Control Character / Sequence (current)
- 16:53, 11 April 2009 (diff | hist) . . (+34) . . Error Message Infoleaks (current)
- 16:52, 11 April 2009 (diff | hist) . . (+33) . . Error Conditions, Return Values, Status Codes (current)
- 16:52, 11 April 2009 (diff | hist) . . (+34) . . Early Amplification (current)
- 16:46, 11 April 2009 (diff | hist) . . (+42) . . Doubled character XSS manipulations (current)
- 16:45, 11 April 2009 (diff | hist) . . (+33) . . Discrepancy Information Leaks (current)
- 16:45, 11 April 2009 (diff | hist) . . (+42) . . Delimiter between Expressions or Commands (current)
- 16:44, 11 April 2009 (diff | hist) . . (+40) . . Delimiter Problems (current)
- 16:44, 11 April 2009 (diff | hist) . . (+40) . . Data Structure Issues
- 16:43, 11 April 2009 (diff | hist) . . (+39) . . Data Leaking Between Users (current)
- 16:42, 11 April 2009 (diff | hist) . . (+40) . . Data Amplification (current)
- 16:41, 11 April 2009 (diff | hist) . . (+33) . . Dangerous handler not cleared/disabled during sensitive operations (current)
- 16:36, 11 April 2009 (diff | hist) . . (-32) . . Cross-site-scripting (current)
- 16:25, 11 April 2009 (diff | hist) . . (+41) . . Cross-Boundary Cleansing Infoleak (current)
- 16:23, 11 April 2009 (diff | hist) . . (+41) . . Context Switching Race Condition (current)
- 16:22, 11 April 2009 (diff | hist) . . (+41) . . Common Special Element Manipulations (current)
- 16:21, 11 April 2009 (diff | hist) . . (+33) . . Collapse of Data into Unsafe Value (current)
- 16:19, 11 April 2009 (diff | hist) . . (+41) . . Cleansing, Canonicalization, and Comparison Errors (current)
- 16:19, 11 April 2009 (diff | hist) . . (+40) . . Channel and Path Errors (current)
- 16:09, 11 April 2009 (diff | hist) . . (+1) . . Buffer overflow
- 16:09, 11 April 2009 (diff | hist) . . (+2) . . Buffer overflow
- 16:08, 11 April 2009 (diff | hist) . . (-2) . . Buffer overflow
- 16:08, 11 April 2009 (diff | hist) . . (-42) . . Buffer overflow
- 15:47, 11 April 2009 (diff | hist) . . (-31) . . Access control
- 10:57, 10 April 2009 (diff | hist) . . (-17) . . SQL Server Testing AoC (Redirecting to Testing for SQL Server) (current)
- 10:56, 10 April 2009 (diff | hist) . . (+15) . . Application Discovery AoC (Redirecting to Testing for Application Discovery (OWASP-IG-005)) (current)
- 10:55, 10 April 2009 (diff | hist) . . (0) . . Verification Providers (Redirecting to How to find a verification provider) (current)
- 10:55, 10 April 2009 (diff | hist) . . (-16) . . MySQL Testing AoC (Redirecting to Testing for MySQL) (current)
- 10:54, 10 April 2009 (diff | hist) . . (+11) . . Global Projects and Tools Committee
- 10:53, 10 April 2009 (diff | hist) . . (+62) . . Asvs (current)
- 10:52, 10 April 2009 (diff | hist) . . (-1) . . OWASP Application Security Verification Standard
- 10:52, 10 April 2009 (diff | hist) . . (+63) . . OWASP Application Security Verification Standard
- 00:10, 8 April 2009 (diff | hist) . . (+6) . . XSS using Script Via Encoded URI Schemes (Redirecting to Cross-site Scripting (XSS)) (current)
- 00:10, 8 April 2009 (diff | hist) . . (+6) . . XSS using Script in Attributes (Redirecting to Cross-site Scripting (XSS)) (current)
- 00:09, 8 April 2009 (diff | hist) . . (-26) . . Cross Frame Scripting (→Related Attacks)
- 00:08, 8 April 2009 (diff | hist) . . (-25) . . XSS Attacks
- 00:04, 8 April 2009 (diff | hist) . . (-21) . . Least privilege
- 00:00, 8 April 2009 (diff | hist) . . (-34) . . Tokenizing
- 00:00, 8 April 2009 (diff | hist) . . (-34) . . Static Code Analysis
- 00:00, 8 April 2009 (diff | hist) . . (-34) . . Stack-smashing Protection (SSP)
- 23:59, 7 April 2009 (diff | hist) . . (-34) . . Safe Libraries
- 23:59, 7 April 2009 (diff | hist) . . (-34) . . Resource Locking
- 23:58, 7 April 2009 (diff | hist) . . (-34) . . Randomization
- 23:58, 7 April 2009 (diff | hist) . . (-34) . . Quotas
- 23:58, 7 April 2009 (diff | hist) . . (-34) . . Memory Management
- 23:57, 7 April 2009 (diff | hist) . . (-34) . . Intrusion Prevention
- 23:56, 7 April 2009 (diff | hist) . . (-34) . . Executable space protection
- 23:55, 7 April 2009 (diff | hist) . . (-34) . . Bounds Checking
- 23:54, 7 April 2009 (diff | hist) . . (-32) . . Phishing attack
- 23:53, 7 April 2009 (diff | hist) . . (-35) . . Phishing attack
- 23:53, 7 April 2009 (diff | hist) . . (-34) . . Contractors (current)
- 23:53, 7 April 2009 (diff | hist) . . (-34) . . The Insecure-Bootstrapping Principle (current)
- 23:52, 7 April 2009 (diff | hist) . . (-34) . . Don't trust user input (current)
- 23:52, 7 April 2009 (diff | hist) . . (-34) . . Computer Viruses
- 23:52, 7 April 2009 (diff | hist) . . (-34) . . Competitors
- 23:51, 7 April 2009 (diff | hist) . . (-34) . . Carelessness (current)
- 23:47, 7 April 2009 (diff | hist) . . (-35) . . Access control
- 23:43, 7 April 2009 (diff | hist) . . (-26) . . Control template (current)
- 23:40, 7 April 2009 (diff | hist) . . (-26) . . Principle template
- 23:39, 7 April 2009 (diff | hist) . . (-27) . . Full Path Disclosure
- 23:39, 7 April 2009 (diff | hist) . . (-27) . . Denial of Service
- 23:38, 7 April 2009 (diff | hist) . . (-28) . . Man-in-the-browser attack
- 23:38, 7 April 2009 (diff | hist) . . (-26) . . Cross Site Tracing
- 23:37, 7 April 2009 (diff | hist) . . (-28) . . J2EE Bad Practices: JSP Expressions
- 23:37, 7 April 2009 (diff | hist) . . (-36) . . Weak credentials
- 23:36, 7 April 2009 (diff | hist) . . (-34) . . Input Validation
- 23:36, 7 April 2009 (diff | hist) . . (-34) . . Outsourced software developer
- 23:35, 7 April 2009 (diff | hist) . . (-36) . . Struts: Form Does Not Extend Validation Class (current)
- 23:35, 7 April 2009 (diff | hist) . . (-27) . . Blind SQL Injection
- 23:34, 7 April 2009 (diff | hist) . . (-37) . . Unsafe Mobile Code: Dangerous Array Declaration (current)
- 23:33, 7 April 2009 (diff | hist) . . (-27) . . Path Manipulation
- 23:33, 7 April 2009 (diff | hist) . . (-28) . . Cache Poisoning
- 23:33, 7 April 2009 (diff | hist) . . (-37) . . Unsafe Mobile Code: Dangerous Public Field
- 23:32, 7 April 2009 (diff | hist) . . (-37) . . Unsafe Mobile Code: Public finalize() Method
- 23:32, 7 April 2009 (diff | hist) . . (-36) . . Unsafe Mobile Code: Inner Class
- 23:31, 7 April 2009 (diff | hist) . . (-36) . . Code Correctness: Misspelled Method Name (current)
- 23:30, 7 April 2009 (diff | hist) . . (-36) . . Poor Style: Confusing Naming (current)
- 23:30, 7 April 2009 (diff | hist) . . (-36) . . System Information Leak: Missing Catch Block (current)
- 23:30, 7 April 2009 (diff | hist) . . (-36) . . Poor Logging Practice: Multiple Loggers
- 23:29, 7 April 2009 (diff | hist) . . (-27) . . Cross-User Defacement
- 23:29, 7 April 2009 (diff | hist) . . (-35) . . Poor Style: Empty Synchronized Block (current)
- 23:29, 7 April 2009 (diff | hist) . . (-35) . . Dead Code: Unused Method
- 23:28, 7 April 2009 (diff | hist) . . (-35) . . Poor Style: Identifier Contains Dollar Symbol ($) (current)
- 23:28, 7 April 2009 (diff | hist) . . (-35) . . Poor Logging Practice: Use of a System Output Stream (current)
- 23:28, 7 April 2009 (diff | hist) . . (-37) . . Dead Code: Expression is Always True (current)
- 23:27, 7 April 2009 (diff | hist) . . (-36) . . Dead Code: Unused Field
- 23:27, 7 April 2009 (diff | hist) . . (-36) . . Dead Code: Broken Override
- 23:27, 7 April 2009 (diff | hist) . . (-36) . . Poor Style: Explicit call to finalize() (current)
- 23:26, 7 April 2009 (diff | hist) . . (-37) . . Dead Code: Expression is Always False (current)
- 23:26, 7 April 2009 (diff | hist) . . (-36) . . Code Correctness: null Argument to equals() (current)
- 23:25, 7 April 2009 (diff | hist) . . (-37) . . Code Correctness: Class Does Not Implement Cloneable
- 23:25, 7 April 2009 (diff | hist) . . (-36) . . Code Correctness: Erroneous String Compare
- 23:25, 7 April 2009 (diff | hist) . . (-27) . . EJB Bad Practices: Use of Synchronization Primitives (current)
- 23:25, 7 April 2009 (diff | hist) . . (-37) . . Code Correctness: Double-Checked Locking (current)
- 23:24, 7 April 2009 (diff | hist) . . (-28) . . EJB Bad Practices: Use of Sockets
- 23:24, 7 April 2009 (diff | hist) . . (-36) . . EJB Bad Practices: Use of java.io
- 23:24, 7 April 2009 (diff | hist) . . (-27) . . Repudiation Attack
- 23:23, 7 April 2009 (diff | hist) . . (-28) . . EJB Bad Practices: Use of AWT/Swing (current)
- 23:23, 7 April 2009 (diff | hist) . . (-36) . . EJB Bad Practices: Use of Class Loader (current)
- 23:22, 7 April 2009 (diff | hist) . . (-36) . . Code Correctness: Call to System.gc() (current)
- 23:22, 7 April 2009 (diff | hist) . . (-34) . . Code Correctness: Erroneous finalize() Method
- 23:22, 7 April 2009 (diff | hist) . . (-36) . . Code Correctness: Call to Thread.run()
- 23:21, 7 April 2009 (diff | hist) . . (-27) . . Buffer overflow attack
- 23:20, 7 April 2009 (diff | hist) . . (-27) . . Blind XPath Injection
- 23:20, 7 April 2009 (diff | hist) . . (-27) . . Format string attack
- 23:20, 7 April 2009 (diff | hist) . . (-27) . . Session fixation
- 23:19, 7 April 2009 (diff | hist) . . (-27) . . Traffic flood
- 23:19, 7 April 2009 (diff | hist) . . (-27) . . Web Parameter Tampering
- 23:19, 7 April 2009 (diff | hist) . . (-26) . . Cryptanalysis
- 23:18, 7 April 2009 (diff | hist) . . (-35) . . Wrong Status Code
- 23:18, 7 April 2009 (diff | hist) . . (-27) . . XPATH Injection
- 23:16, 7 April 2009 (diff | hist) . . (-35) . . Wrong Data Type
- 23:16, 7 April 2009 (diff | hist) . . (-35) . . Weak Encryption
- 23:16, 7 April 2009 (diff | hist) . . (-35) . . Virtual Files
- 23:15, 7 April 2009 (diff | hist) . . (-35) . . Unintended proxy/intermediary (current)
- 23:15, 7 April 2009 (diff | hist) . . (-35) . . Validate-Before-Filter
- 23:15, 7 April 2009 (diff | hist) . . (-35) . . Signal Errors
- 23:14, 7 April 2009 (diff | hist) . . (-35) . . Variable Name Delimiter
- 23:14, 7 April 2009 (diff | hist) . . (-36) . . Validate-Before-Canonicalize
- 23:13, 7 April 2009 (diff | hist) . . (-35) . . Undefined Parameter Error
- 23:12, 7 April 2009 (diff | hist) . . (-36) . . Value Delimiter
- 23:12, 7 April 2009 (diff | hist) . . (-35) . . Value Problems
- 23:12, 7 April 2009 (diff | hist) . . (-35) . . User management errors
- 23:11, 7 April 2009 (diff | hist) . . (-35) . . Struts: Form Bean Does Not Extend Validation Class
- 23:11, 7 April 2009 (diff | hist) . . (-35) . . Use of Less Trusted Source
- 23:11, 7 April 2009 (diff | hist) . . (-35) . . User Interface Security Errors
- 23:10, 7 April 2009 (diff | hist) . . (-35) . . User Interface Quality Errors
- 23:10, 7 April 2009 (diff | hist) . . (-35) . . User interface inconsistency
- 23:10, 7 April 2009 (diff | hist) . . (-34) . . Untrusted Data Appended with Trusted Data
- 23:10, 7 April 2009 (diff | hist) . . (-35) . . Unverified Ownership
- 23:09, 7 April 2009 (diff | hist) . . (-35) . . Unquoted Search Path or Element
- 23:09, 7 April 2009 (diff | hist) . . (-35) . . Undefined Value Error
- 23:09, 7 April 2009 (diff | hist) . . (-36) . . Unimplemented or unsupported feature in UI (current)
- 23:08, 7 April 2009 (diff | hist) . . (-27) . . Unicode Encoding
- 23:08, 7 April 2009 (diff | hist) . . (-36) . . Unrestricted Critical Resource Lock
- 23:08, 7 April 2009 (diff | hist) . . (-35) . . Unsafe Privilege
- 23:07, 7 April 2009 (diff | hist) . . (-37) . . Unprotected Primary Channel
- 23:07, 7 April 2009 (diff | hist) . . (-34) . . Unparsed Raw Web Content Delivery
- 23:06, 7 April 2009 (diff | hist) . . (-37) . . Static Value in Unpredictable Context
- 23:06, 7 April 2009 (diff | hist) . . (-34) . . Unexpected Status Code or Return Value
- 23:06, 7 April 2009 (diff | hist) . . (-34) . . UNIX file descriptor leak
- 23:05, 7 April 2009 (diff | hist) . . (-35) . . UI Misrepresentation of Critical Information
- 23:05, 7 April 2009 (diff | hist) . . (-35) . . UNIX symbolic link (symlink) following
- 23:05, 7 April 2009 (diff | hist) . . (-37) . . Uncontrolled Search Path Element (current)
- 23:04, 7 April 2009 (diff | hist) . . (-35) . . URL Encoding (Hex Encoding)
- 23:04, 7 April 2009 (diff | hist) . . (-36) . . UNIX hard link
- 23:04, 7 April 2009 (diff | hist) . . (-34) . . UNIX Path Link problems
- 23:03, 7 April 2009 (diff | hist) . . (-36) . . Trailing Special Element
- 23:03, 7 April 2009 (diff | hist) . . (-37) . . Time of Introduction
- 23:03, 7 April 2009 (diff | hist) . . (-35) . . Truncation of Security-relevant Information
- 23:02, 7 April 2009 (diff | hist) . . (-35) . . Time-of-check Time-of-use race condition
- 23:02, 7 April 2009 (diff | hist) . . (-36) . . Struts: Unvalidated Action Form (current)
- 23:02, 7 April 2009 (diff | hist) . . (-38) . . Timing discrepancy infoleak (current)
- 23:01, 7 April 2009 (diff | hist) . . (-35) . . Trapdoor
- 23:01, 7 April 2009 (diff | hist) . . (-36) . . Struts: Validator Without Form Field (current)
- 23:01, 7 April 2009 (diff | hist) . . (-35) . . Technology-specific Environment Issues
- 23:01, 7 April 2009 (diff | hist) . . (-27) . . Trojan Horse
- 23:00, 7 April 2009 (diff | hist) . . (-34) . . Testing Issues
- 23:00, 7 April 2009 (diff | hist) . . (-34) . . The UI performs the wrong action
(newest | oldest) View (newer 500 | older 500) (20 | 50 | 100 | 250 | 500)