This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Template:Mobile Top 10 2016:ByTheNumbers"

From OWASP
Jump to: navigation, search
m
m
 
Line 62: Line 62:
  
 
<onlyinclude>{{#switch: {{{year}}}
 
<onlyinclude>{{#switch: {{{year}}}
    | 2013 =
 
        {{#switch: {{{1}}}
 
            | 1={{Mobile_Top_10:LanguageFile|text=injection|language={{{language}}} }}
 
            | 2={{Mobile_Top_10:LanguageFile|text=brokenAuthSessionMgmt|language={{{language}}} }}
 
            | 3={{Mobile_Top_10:LanguageFile|text=xss|language={{{language}}} }}
 
            | 4={{Mobile_Top_10:LanguageFile|text=insecureDirectObjectReference|language={{{language}}} }}
 
            | 5={{Mobile_Top_10:LanguageFile|text=securityMisconfig|language={{{language}}} }}
 
            | 6={{Mobile_Top_10:LanguageFile|text=sensitiveDataExposure|language={{{language}}} }}
 
            | 7={{Mobile_Top_10:LanguageFile|text=missingFunctionLevelACL|language={{{language}}} }}
 
            | 8={{Mobile_Top_10:LanguageFile|text=csrf|language={{{language}}} }}
 
            | 9={{Mobile_Top_10:LanguageFile|text=usingVulnerableComponents|language={{{language}}} }}
 
            | 10={{Mobile_Top_10:LanguageFile|text=unvalidatedRedirectsForwards|language={{{language}}} }}
 
            | 11={{Mobile_Top_10:LanguageFile|text=inProgress|language={{{language}}} }}
 
        }}
 
 
     | #default =  
 
     | #default =  
 
         {{#switch: {{{1}}}
 
         {{#switch: {{{1}}}
             | 1={{Mobile_Top_10:LanguageFile|text=injection|language={{{language}}} }}
+
             | 1={{Mobile_Top_10:LanguageFile|text=improperPlatformUsage|language={{{language}}} }}
             | 2={{Mobile_Top_10:LanguageFile|text=xss|language={{{language}}} }}
+
             | 2={{Mobile_Top_10:LanguageFile|text=insecureDataStorage|language={{{language}}} }}
             | 3={{Mobile_Top_10:LanguageFile|text=brokenAuthSessionMgmt|language={{{language}}} }}
+
             | 3={{Mobile_Top_10:LanguageFile|text=insecureCommunication|language={{{language}}} }}
             | 4={{Mobile_Top_10:LanguageFile|text=insecureDirectObjectReference|language={{{language}}} }}
+
             | 4={{Mobile_Top_10:LanguageFile|text=insecureAuthentication|language={{{language}}} }}
             | 5={{Mobile_Top_10:LanguageFile|text=csrf|language={{{language}}} }}
+
             | 5={{Mobile_Top_10:LanguageFile|text=insufficientCryptography|language={{{language}}} }}
             | 6={{Mobile_Top_10:LanguageFile|text=securityMisconfig|language={{{language}}} }}
+
             | 6={{Mobile_Top_10:LanguageFile|text=insecureAuthorization|language={{{language}}} }}
             | 7={{Mobile_Top_10:LanguageFile|text=insecureCryptographicStorage|language={{{language}}} }}
+
             | 7={{Mobile_Top_10:LanguageFile|text=clientCodeQuality|language={{{language}}} }}
             | 8={{Mobile_Top_10:LanguageFile|text=failureRestrictUrlAccess|language={{{language}}} }}
+
             | 8={{Mobile_Top_10:LanguageFile|text=codeTampering|language={{{language}}} }}
             | 9={{Mobile_Top_10:LanguageFile|text=insufficientTLProtection|language={{{language}}} }}
+
             | 9={{Mobile_Top_10:LanguageFile|text=reverseEngineering|language={{{language}}} }}
             | 10={{Mobile_Top_10:LanguageFile|text=unvalidatedRedirectsForwards|language={{{language}}} }}
+
             | 10={{Mobile_Top_10:LanguageFile|text=extraneousFunctionality|language={{{language}}} }}
 
             | 11={{Mobile_Top_10:LanguageFile|text=inProgress|language={{{language}}} }}
 
             | 11={{Mobile_Top_10:LanguageFile|text=inProgress|language={{{language}}} }}
 
         }}
 
         }}
 
}}</onlyinclude>
 
}}</onlyinclude>

Latest revision as of 18:58, 24 January 2017

Usage:

 {{Mobile_Top_10_2016:ByTheNumbers|{{{risk}}}|year={{{year}}}|language={{{language}}} }}


Example:

 {{Mobile_Top_10_2016:ByTheNumbers|1|language=de|year=2016}}
 {{Mobile_Top_10_2016:ByTheNumbers|2|year=2016}}   <!-- Default-Language = English --->
 {{Mobile_Top_10_2016:ByTheNumbers|2|language=de}} <!-- Default-Year = 2010 --->


Number English 2016 German 2016
1 Improper Platform Usage Improper Platform Usage
2 Insecure Data Storage Insecure Data Storage
3 Insecure Communication Insecure Communication
4 Insecure Authentication Insecure Authentication
5 Insufficient Cryptography Insufficient Cryptography
6 Insecure Authorization Insecure Authorization
7 Poor Code Quality Poor Code Quality
8 Code Tampering Code Tampering
9 Reverse Engineering Reverse Engineering
10 Extraneous Functionality Extraneous Functionality
11 In Progress In Arbeit