This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Template:Top 10:LanguageFile"

From OWASP
Jump to: navigation, search
m (Editorial change: top10TmpMessage)
(Added: German: isTheApplicationVulnerable, howToPrevent)
 
(33 intermediate revisions by the same user not shown)
Line 30: Line 30:
 
     {{#switch: {{{text}}} <noinclude>
 
     {{#switch: {{{text}}} <noinclude>
 
         <!-- BEGIN Document-Root --> </noinclude>
 
         <!-- BEGIN Document-Root --> </noinclude>
 +
        | documentRootTop10New =                Germany/Projekte/Top 10-{{{year}}}
 +
        | documentRootTop10NewDeveloperEdition = Germany/Projekte/Top 10 fuer Entwickler-{{{year}}}
 
         | documentRootTop10 =                Germany/Projekte/Top 10-{{{year}}}
 
         | documentRootTop10 =                Germany/Projekte/Top 10-{{{year}}}
 
         | documentRootTop10DeveloperEdition = Germany/Projekte/Top 10 fuer Entwickler-{{{year}}}<noinclude>
 
         | documentRootTop10DeveloperEdition = Germany/Projekte/Top 10 fuer Entwickler-{{{year}}}<noinclude>
 
         <!-- END Document-Root -->
 
         <!-- END Document-Root -->
 
         <!-- BEGIN of Top Ten Section for Top 10 2013-CenterLinkTemplate + Top 10 2013:Top and Bottom(Advanced)Template(s) --> </noinclude>
 
         <!-- BEGIN of Top Ten Section for Top 10 2013-CenterLinkTemplate + Top 10 2013:Top and Bottom(Advanced)Template(s) --> </noinclude>
         | top10TmpMessage =              ==BAUSTELLE! Hier entsteht das deutsche Wiki der OWASP Top 10-2013==
+
         | top10TmpMessage =
 +
          {{#switch: {{{year}}}
 +
            | 2017 =              ==BAUSTELLE! Hier entsteht das deutsche Wiki der OWASP Top 10-2017==<br/><br/>==Bitte benutzen Sie die <u>[[Germany/Projekte/Top_10 | PDF Version]]</u>.==<noinclude></noinclude>
 +
            | 2013                 <noinclude>= ==The Top 10-2013 Wiki is under Construction. The Content is Not Finished yet==</noinclude>
 +
            | #default =          NOTE: THIS IS NOT THE LATEST VERSION. Please visit the <u>[[:Category:OWASP_Top_Ten_Project|OWASP Top 10 project page]]</u> to find the latest edition.
 +
          }}
 
         | top10TmpMessageDeveloperEdition = ==BAUSTELLE! Hier entsteht das deutsche Wiki der OWASP Top 10 fuer Entwickler-2013==
 
         | top10TmpMessageDeveloperEdition = ==BAUSTELLE! Hier entsteht das deutsche Wiki der OWASP Top 10 fuer Entwickler-2013==
         | centerLink1 =                  [[Germany/Projekte/Top 10-2013-Inhaltsverzeichnis|2013 Inhaltsverzeichnis]]
+
         | centerLink1 =                   
         | centerLink2 =                   [[Germany/Projekte/Top 10-2013-Top 10|2013 Die Top-10-Risiken]]
+
          {{#switch: {{{year}}}
 +
            | 2013 =              [[Germany/Projekte/Top 10-{{{year}}}-Inhaltsverzeichnis|{{{year}}} Inhaltsverzeichnis]]
 +
            | #default =          [[Germany/Projekte/Top 10-{{{year}}} Inhaltsverzeichnis|{{{year}}} Inhaltsverzeichnis]]
 +
          }}
 +
         | centerLink2 =
 +
          {{#switch: {{{year}}}
 +
            | 2013    = [[Germany/Projekte/Top 10-2013-Top 10|2013 Die Top-10-Risiken]]
 +
            | 2017    = [[Germany/Projekte/Top_10| PDF version]]
 +
            | #default = [[Germany/Projekte/[Top_10_{{{year}}}-Top 10|{{{year}}} Die Top-10-Risiken]]
 +
          }}
 
         | centerLink1DeveloperEdition =  [[Germany/Projekte/Top 10 fuer Entwickler-2013/Inhaltsverzeichnis|Top 10 fuer Entwickler-2013: Inhaltsverzeichnis]]
 
         | centerLink1DeveloperEdition =  [[Germany/Projekte/Top 10 fuer Entwickler-2013/Inhaltsverzeichnis|Top 10 fuer Entwickler-2013: Inhaltsverzeichnis]]
 
         | centerLink2DeveloperEdition =  [[Germany/Projekte/Top 10 fuer Entwickler-2013/Top 10|Die Top-10-Risiken]]
 
         | centerLink2DeveloperEdition =  [[Germany/Projekte/Top 10 fuer Entwickler-2013/Top 10|Die Top-10-Risiken]]
         | projectCategory =              [[Category: Germany/Projekte/Top 10-2013]]
+
         | projectCategory =              [[Category: Germany/Projekte/Top 10-{{{year}}}]]
 
         | projectCategoryDeveloperEdition = [[Category:OWASP Top 10 fuer Entwickler]] [[Category: Germany/Projekte/Top 10 fuer Entwickler-2013]]<noinclude>
 
         | projectCategoryDeveloperEdition = [[Category:OWASP Top 10 fuer Entwickler]] [[Category: Germany/Projekte/Top 10 fuer Entwickler-2013]]<noinclude>
 
         <!-- END of Top Ten Section for Top 10 2013-CenterLinkTemplate -->  
 
         <!-- END of Top Ten Section for Top 10 2013-CenterLinkTemplate -->  
Line 46: Line 62:
 
         | tableOfContents =              Inhaltsverzeichnis
 
         | tableOfContents =              Inhaltsverzeichnis
 
         | foreword =                      Vorwort
 
         | foreword =                      Vorwort
         | forewordTranslation =          Vorwort der deutschen Übersetzung
+
         | forewordTranslation =           
 +
          {{#switch: {{{year}}}
 +
              | 2013    =                Vorwort der deutschen Übersetzung
 +
              | #default =                Vorwort der deutschen Version
 +
          }}
 
         | forward =                      Vorwort <!--- behobener Fehler im englischen Original --->
 
         | forward =                      Vorwort <!--- behobener Fehler im englischen Original --->
 
         | forwardTranslation =            Vorwort der deutschen Übersetzung <!--- behobener Fehler im englischen Original --->
 
         | forwardTranslation =            Vorwort der deutschen Übersetzung <!--- behobener Fehler im englischen Original --->
Line 57: Line 77:
 
         | subTitleApplicationRisks =      (Sicherheitsrisiken für Anwendungen)
 
         | subTitleApplicationRisks =      (Sicherheitsrisiken für Anwendungen)
 
         | riskLarge =                    RISIKO
 
         | riskLarge =                    RISIKO
         | applicationSecurityRisks =     Was sind Sicherheitsrisiken für Anwendungen?  
+
         | applicationSecurityRisks =
         | theTop10 =                     Die Top-10-Risiken
+
          {{#switch: {{{year}}}
 +
                | 2013    =              Was sind Sicherheitsrisiken für Anwendungen?  
 +
                | #default =              Sicherheitsrisiken für Anwendungen
 +
          }}
 +
         | theTop10 =
 +
          {{#switch: {{{year}}}
 +
                | 2013    =              Die Top-10-Risiken
 +
                | #default =              OWASP Top 10 Risiken für die Anwendungssicherheit
 +
          }}
 
         | top10 =                        Top 10
 
         | top10 =                        Top 10
 
         | whatsNextforDevelopers =        Nächste Schritte für Software-Entwickler
 
         | whatsNextforDevelopers =        Nächste Schritte für Software-Entwickler
 
         | whatsNextforVerifiers =        Nächste Schritte für Prüfer
 
         | whatsNextforVerifiers =        Nächste Schritte für Prüfer
 +
        | whatsNextforSecurityTesters =  Nächste Schritte für Sicherheitstester
 
         | whatsNextforOrganizations =    Nächste Schritte für Organisationen
 
         | whatsNextforOrganizations =    Nächste Schritte für Organisationen
 +
        | whatsNextforApplicationManagers=Nächste Schritte für Anwendungs-Verantwortliche
 
         | noteAboutRisks =                Anmerkungen zum Risikobegriff
 
         | noteAboutRisks =                Anmerkungen zum Risikobegriff
         | detailsAboutRiskFactors =      Details zu Risiko-Faktoren
+
         | detailsAboutRiskFactors =       
 +
          {{#switch: {{{year}}}
 +
                | 2013    =              Details zu Risiko-Faktoren
 +
                | #default =              Details zu den Risiko-Faktoren
 +
          }}
 +
        | methodologyAndData =            Methodik und Daten
 
         | appendix =                      Anlage
 
         | appendix =                      Anlage
 
         | warnings =                      Zur Beachtung
 
         | warnings =                      Zur Beachtung
Line 86: Line 121:
 
         | injection =                    Injection
 
         | injection =                    Injection
 
         | brokenAuthSessionMgmt =        Fehler in Authentifizierung und Session-Management
 
         | brokenAuthSessionMgmt =        Fehler in Authentifizierung und Session-Management
 +
        | brokenAuth =                    Fehler in der Authentifizierung
 
         | authentication =                Authentifizierung <!-- short form for 'Broken Authentication and Session Management' --->
 
         | authentication =                Authentifizierung <!-- short form for 'Broken Authentication and Session Management' --->
 +
        | xxe =                          XML External Entities (XXE)
 +
        | brokenAccessControl =          Fehler in der Zugriffskontrolle
 
         | xss =                          Cross-Site Scripting (XSS)
 
         | xss =                          Cross-Site Scripting (XSS)
 
         | xssShort =                      XSS
 
         | xssShort =                      XSS
 +
        | insecureDeserialization =      Unsichere Deserialisierung
 
         | insecureDirectObjectReference = Unsichere direkte Objektreferenzen
 
         | insecureDirectObjectReference = Unsichere direkte Objektreferenzen
 
         | insecureDOR =                  Unsichere direkte Objektreferenzen
 
         | insecureDOR =                  Unsichere direkte Objektreferenzen
Line 99: Line 138:
 
         | csrf =                          Cross-Site Request Forgery (CSRF)
 
         | csrf =                          Cross-Site Request Forgery (CSRF)
 
         | csrfShort =                    CSRF
 
         | csrfShort =                    CSRF
         | usingVulnerableComponents =    Benutzen von Komponenten mit bekannten Schwachstellen <noinclude>(tbd = Using Components with Known Vulnerabilities)</noinclude>
+
         | usingVulnerableComponents =     
 +
          {{#switch: {{{year}}}
 +
                | 2013    =              Benutzen von Komponenten mit bekannten Schwachstellen <noinclude>(tbd = Using Components with Known Vulnerabilities)</noinclude>
 +
                | #default =              Nutzung von Komponenten mit bekannten Schwachstellen
 +
          }}
 
         | vulnComponents =                Komponenten mit Schwachstellen <noinclude>(tbd = vuln. Components)</noinclude>
 
         | vulnComponents =                Komponenten mit Schwachstellen <noinclude>(tbd = vuln. Components)</noinclude>
 +
        | insufficientLoggingMonitoring = Unzureichendes Logging&amp;Monitoring
 
         | unvalidatedRedirectsForwards =  Ungeprüfte Um- und Weiterleitungen
 
         | unvalidatedRedirectsForwards =  Ungeprüfte Um- und Weiterleitungen
 
         | unvalRedirects =                Ungepr. Weiterltg.
 
         | unvalRedirects =                Ungepr. Weiterltg.
Line 111: Line 155:
 
         | applicationSpecific =          Anwendungs-<br>spezifisch
 
         | applicationSpecific =          Anwendungs-<br>spezifisch
 
         | appSpecific =                  Anw.-<br>spezifisch
 
         | appSpecific =                  Anw.-<br>spezifisch
 +
        | dataBusinessSpecific =          Daten- &<br>Geschäftsspez.
 +
        | businessQuestionmark =          Daten- &<br>Geschäftsspez <!--- in deutscher Version ersetzt --->
 
         | applicationBusinessSpecific =  Anwendungs-/<br>Geschäftsspezifisch
 
         | applicationBusinessSpecific =  Anwendungs-/<br>Geschäftsspezifisch
         | appBusinessSpecific =          Anw.-/<br>Geschäftsspez.  
+
         | appBusinessSpecific =          Anw.-/<br>Geschäftsspez.
 
         | exploitability =                Ausnutzbarkeit
 
         | exploitability =                Ausnutzbarkeit
 
         | easy =                          EINFACH
 
         | easy =                          EINFACH
Line 125: Line 171:
 
         | detectability =                Auffindbarkeit
 
         | detectability =                Auffindbarkeit
 
         | impact =                        Auswirkung
 
         | impact =                        Auswirkung
 +
        | impacts =                      Auswirkungen
 
         | severe =                        SCHWERWIEGEND
 
         | severe =                        SCHWERWIEGEND
 
         | moderate =                      MITTEL
 
         | moderate =                      MITTEL
         | minor =                        GERING  <noinclude>
+
         | minor =                        GERING
 +
        | score =                        Wert <noinclude>
 
         <!-- END of Section for Top 10:SummaryTableTemplate -->
 
         <!-- END of Section for Top 10:SummaryTableTemplate -->
 
         <!-- BEGIN of Section for SummaryTableHeaderBeginTemplate --> </noinclude>
 
         <!-- BEGIN of Section for SummaryTableHeaderBeginTemplate --> </noinclude>
         | threatAgents =                  Bedrohungsquelle
+
         | threatAgents =                  Bedrohungsquellen
         | attackVectors =                Angriffsvektor
+
         | attackVectors =                Angriffsvektoren
 
         | securityWeakness =              Schwachstellen
 
         | securityWeakness =              Schwachstellen
 
         | technicalImpacts =              Technische Auswirkung
 
         | technicalImpacts =              Technische Auswirkung
 +
        | technical =                    technisch
 +
        | business =                      Geschäftl.
 
         | businessImpacts =              Auswirkung auf das Unternehmen
 
         | businessImpacts =              Auswirkung auf das Unternehmen
 
         | threatAgentsImage =            Image:Top 10 de threatAgents.png
 
         | threatAgentsImage =            Image:Top 10 de threatAgents.png
 
         | attackVectorsImage =            Image:Top 10 de attackVectors.png
 
         | attackVectorsImage =            Image:Top 10 de attackVectors.png
 
         | securityWeaknessImage=          Image:Top 10 de securityWeakness.png
 
         | securityWeaknessImage=          Image:Top 10 de securityWeakness.png
 +
        | impactsImage <!--- TBD ---->
 
         | technicalImpactsImage =        Image:Top 10 de technicalImpacts.png  
 
         | technicalImpactsImage =        Image:Top 10 de technicalImpacts.png  
 
         | businessImpactsImage =          Image:Top 10 de businessImpacts.png  <noinclude>
 
         | businessImpactsImage =          Image:Top 10 de businessImpacts.png  <noinclude>
Line 145: Line 196:
 
         <!-- END of Section for other Images -->
 
         <!-- END of Section for other Images -->
 
         <!-- BEGIN of Section for SubsectionAdvancedTemplate -->          </noinclude>
 
         <!-- BEGIN of Section for SubsectionAdvancedTemplate -->          </noinclude>
 +
        | isTheApplicationVulnerable =    Ist die Anwendung verwundbar?
 
         | vulnerableTo =                  Bin ich durch {{Top_10_2010:ByTheNumbers|{{{risk}}}|year={{{year}}}|language={{{language}}} }} verwundbar?
 
         | vulnerableTo =                  Bin ich durch {{Top_10_2010:ByTheNumbers|{{{risk}}}|year={{{year}}}|language={{{language}}} }} verwundbar?
 
         | vulnerableTo1 =                Bin ich durch
 
         | vulnerableTo1 =                Bin ich durch
 
         | vulnerableTo2 =                &nbsp;verwundbar?
 
         | vulnerableTo2 =                &nbsp;verwundbar?
 +
        | howToPrevent =                  Wie kann ich das verhindern?
 
         | howPrevent =                    Wie kann ich {{Top_10_2010:ByTheNumbers|{{{risk}}}|year={{{year}}}|language={{{language}}} }} verhindern?
 
         | howPrevent =                    Wie kann ich {{Top_10_2010:ByTheNumbers|{{{risk}}}|year={{{year}}}|language={{{language}}} }} verhindern?
 
         | howPrevent1 =                  Wie kann ich  
 
         | howPrevent1 =                  Wie kann ich  
Line 160: Line 213:
 
         <!-- BEGIN of SubSubsectionExternalReferencesTemplate -->  </noinclude>
 
         <!-- BEGIN of SubSubsectionExternalReferencesTemplate -->  </noinclude>
 
         | myUnused =                      FEHLER im 'Language File' (Aufruf des unbenutzten Objekts)
 
         | myUnused =                      FEHLER im 'Language File' (Aufruf des unbenutzten Objekts)
         | #default =                      FEHLER im 'Language File' (Aufruf des unbekannten Objekts)
+
         | #default =                      FEHLER im '<u>[[:Template:Top_10:LanguageFile|Language File]]</u>' (Aufruf des unbekannten Objekts '{{{text}}}')
 
     }} <!-- End of German -->
 
     }} <!-- End of German -->
 
<noinclude>
 
<noinclude>
Line 170: Line 223:
 
     {{#switch: {{{text}}} <noinclude>
 
     {{#switch: {{{text}}} <noinclude>
 
         <!-- BEGIN Document-Root --> </noinclude>
 
         <!-- BEGIN Document-Root --> </noinclude>
         | documentRootTop10 =                 Top 10 {{{year}}}
+
        | documentRootTop10New =                Top 10-{{{year}}}
         | documentRootTop10DeveloperEdition = Top 10 {{{year}}} Developer Edition<noinclude>
+
        | documentRootTop10NewDeveloperEdition = Top 10-{{{year}}} Developer Edition
 +
         | documentRootTop10 =                   Top 10 {{{year}}}
 +
         | documentRootTop10DeveloperEdition =   Top 10 {{{year}}} Developer Edition<noinclude>
 
         <!-- END Document-Root -->   
 
         <!-- END Document-Root -->   
 
         <!-- BEGIN of Top Ten Section for Top 10 2013-CenterLinkTemplate + Top 10 2013:Top and Bottom(Advanced)Template(s) --> </noinclude>
 
         <!-- BEGIN of Top Ten Section for Top 10 2013-CenterLinkTemplate + Top 10 2013:Top and Bottom(Advanced)Template(s) --> </noinclude>
 
         | top10TmpMessage =  
 
         | top10TmpMessage =  
 
           {{#switch: {{{year}}}  
 
           {{#switch: {{{year}}}  
             | 2017 =              ==The OWASP Top 10-2017 have been released. This wiki page will be updated, soon. Please use the <u>[[Media:OWASP_Top_10-2017_(en).pdf.pdf| PDF version of the OWASP Top 10 - 2017]]</u> for now.==<br/><br/>More information available <u>[[:Category:OWASP_Top_Ten_Project|here]]</u>.
+
             | 2017 =              <noinclude>==The OWASP Top 10-2017 have been released. This wiki page will be updated, soon.==<br/><br/>==Please use the <u>[[Media:OWASP_Top_10-2017_(en).pdf.pdf| PDF version of the OWASP Top 10 - 2017]]</u> for now.==<br/><br/>More information available <u>[[:Category:OWASP_Top_Ten_Project|here]]</u>.</noinclude>
             | 2013 =              <noinclude>==The Top 10-2013 Wiki is under Construction. The Content is Not Finished yet==</noinclude>
+
             | 2013                 <noinclude>= ==The Top 10-2013 Wiki is under Construction. The Content is Not Finished yet==</noinclude>
 +
            | #default =          NOTE: THIS IS NOT THE LATEST VERSION. Please visit the <u>[[:Category:OWASP_Top_Ten_Project|OWASP Top 10 project page]]</u> to find the latest edition.
 
           }}
 
           }}
 
         | top10TmpMessageDeveloperEdition =  ==The Top 10-2013 Developer Edition Wiki is under Connstruction. The Content is Not Finished yet==
 
         | top10TmpMessageDeveloperEdition =  ==The Top 10-2013 Developer Edition Wiki is under Connstruction. The Content is Not Finished yet==
         | centerLink1 =                  [[Top 10 {{{year}}}-Table of Contents | {{{year}}} Table of Contents]]
+
         | centerLink1 =                   
         | centerLink2 =                   [[Top_10_{{{year}}}-Top 10|{{{year}}} Top 10 List]]
+
          {{#switch: {{{year}}}
 +
            | 2017    = [[:Category:OWASP Top Ten {{{year}}} Project | {{{year}}} Table of Contents]]
 +
            | #default = [[Top 10 {{{year}}}-Table of Contents | {{{year}}} Table of Contents]]
 +
          }}
 +
         | centerLink2 =
 +
          {{#switch: {{{year}}}
 +
            | 2017    = [[Media:OWASP_Top_10-2017_(en).pdf.pdf| PDF version]] <noinclude>
 +
      <!--- | 2017    = [[Top 10-{{{year}}} Top 10|{{{year}}} Top 10 List]]  ----></noinclude>
 +
            | #default = [[Top_10_{{{year}}}-Top 10|{{{year}}} Top 10 List]]
 +
          }}
 
         | centerLink1DeveloperEdition =  [[Top 10 {{{year}}} Developer Edition-Table of Contents|{{{year}}} Developer Edition-Table of Contents]]
 
         | centerLink1DeveloperEdition =  [[Top 10 {{{year}}} Developer Edition-Table of Contents|{{{year}}} Developer Edition-Table of Contents]]
 
         | centerLink2DeveloperEdition =  [[Top 10 {{{year}}} Developer Edition-Top 10 List|{{{year}}} Developer Edition-Top 10 List]]
 
         | centerLink2DeveloperEdition =  [[Top 10 {{{year}}} Developer Edition-Top 10 List|{{{year}}} Developer Edition-Top 10 List]]
Line 206: Line 271:
 
         | whatsNextforVerifiers =        What's Next for Verifiers
 
         | whatsNextforVerifiers =        What's Next for Verifiers
 
         | whatsNextforSecurityTesting =  What's Next for Security Testing
 
         | whatsNextforSecurityTesting =  What's Next for Security Testing
 +
        | whatsNextforSecurityTesters =  What's Next for Security Testers
 
         | whatsNextforOrganizations =    What's Next for Organizations
 
         | whatsNextforOrganizations =    What's Next for Organizations
 +
        | whatsNextforApplicationManagers = What's Next for Application Managers
 
         | noteAboutRisks =                Note About Risks
 
         | noteAboutRisks =                Note About Risks
 
         | OWASPTop10ApplicationSecurityRisks = OWASP Top 10 Application Security Risks
 
         | OWASPTop10ApplicationSecurityRisks = OWASP Top 10 Application Security Risks
 
         | detailsAboutRiskFactors =      Details About Risk Factors
 
         | detailsAboutRiskFactors =      Details About Risk Factors
 +
        | methodologyAndData =            Methodology and Data
 
         | appendix =                      appendix
 
         | appendix =                      appendix
 
         | warnings =                      Warnings
 
         | warnings =                      Warnings
Line 227: Line 295:
 
         | itsAboutRisksNotWeaknesses =    It's About Risks, Not Weaknesses
 
         | itsAboutRisksNotWeaknesses =    It's About Risks, Not Weaknesses
 
         | top10RiskFactorSummary =        Top 10 Risk Factor Summary
 
         | top10RiskFactorSummary =        Top 10 Risk Factor Summary
 +
        | rank =                          Rank
 +
        | surveyVulnerabilityCategories = Survey Vulnerability Categories
 
         | additionalRisksToConsider =    Additional Risks to Consider  <noinclude>
 
         | additionalRisksToConsider =    Additional Risks to Consider  <noinclude>
 
         <!-- END main Document -->  
 
         <!-- END main Document -->  
 
         <!-- BEGIN of Top Ten Section for ByTheNumbersTemplate --> </noinclude>
 
         <!-- BEGIN of Top Ten Section for ByTheNumbersTemplate --> </noinclude>
 
         | injection =                    Injection
 
         | injection =                    Injection
 +
        | brokenAuth =                    Broken Authentication
 
         | brokenAuthSessionMgmt =        Broken Authentication and Session Management
 
         | brokenAuthSessionMgmt =        Broken Authentication and Session Management
 
         | authentication =                Authentication <!-- short form for 'Broken Authentication and Session Management' --->
 
         | authentication =                Authentication <!-- short form for 'Broken Authentication and Session Management' --->
 
         | xss =                          Cross-Site Scripting (XSS)
 
         | xss =                          Cross-Site Scripting (XSS)
 
         | xssShort =                      XSS
 
         | xssShort =                      XSS
 +
        | xxe =                          XML External Entities (XXE)
 
         | insecureDirectObjectReference = Insecure Direct Object References
 
         | insecureDirectObjectReference = Insecure Direct Object References
 
         | insecureDOR =                  Insecure DOR
 
         | insecureDOR =                  Insecure DOR
Line 241: Line 313:
 
         | sensitiveDataExposure =        Sensitive Data Exposure
 
         | sensitiveDataExposure =        Sensitive Data Exposure
 
         | sensData =                      Sens. Data
 
         | sensData =                      Sens. Data
 +
        | insecureDeserialization =      Insecure Deserialization
 
         | missingFunctionLevelACL =      Missing Function Level Access Control
 
         | missingFunctionLevelACL =      Missing Function Level Access Control
 
         | functionAcc =                  Function Acc.
 
         | functionAcc =                  Function Acc.
Line 246: Line 319:
 
         | csrfShort =                    CSRF
 
         | csrfShort =                    CSRF
 
         | usingVulnerableComponents =    Using Components with Known Vulnerabilities
 
         | usingVulnerableComponents =    Using Components with Known Vulnerabilities
         | vulnComponents =                vuln. Components
+
         | vulnComponents =                Vulnerable Components
 
         | unvalidatedRedirectsForwards =  Unvalidated Redirects and Forwards
 
         | unvalidatedRedirectsForwards =  Unvalidated Redirects and Forwards
 
         | unvalRedirects =                unval. Redirects
 
         | unvalRedirects =                unval. Redirects
Line 253: Line 326:
 
         | insufficientTLProtection =      Insufficient Transport Layer Protection
 
         | insufficientTLProtection =      Insufficient Transport Layer Protection
 
         | brokenAccessControl =          Broken Access Control  
 
         | brokenAccessControl =          Broken Access Control  
 +
        | insufficientLoggingMonitoring = Insufficient Logging&amp;Monitoring
 
         | insufficientAttackPrevention =  Insufficient Attack Protection  
 
         | insufficientAttackPrevention =  Insufficient Attack Protection  
 
         | underprotectedAPIs =            Underprotected APIs
 
         | underprotectedAPIs =            Underprotected APIs
Line 264: Line 338:
 
         | appSpecific =                  App Specific
 
         | appSpecific =                  App Specific
 
         | applicationBusinessSpecific =  Application / Business Specific   
 
         | applicationBusinessSpecific =  Application / Business Specific   
         | appBusinessSpecific =          App / Business Specific      
+
         | appBusinessSpecific =          App / Business Specific
 +
        | businessQuestionmark =          Business ?   
 
         | exploitability =                Exploitability
 
         | exploitability =                Exploitability
 
         | easy =                          EASY
 
         | easy =                          EASY
Line 277: Line 352:
 
         | detectability =                Detectability
 
         | detectability =                Detectability
 
         | impact =                        Impact
 
         | impact =                        Impact
 +
        | impacts =                      Impacts
 
         | severe =                        SEVERE
 
         | severe =                        SEVERE
 
         | moderate =                      MODERATE
 
         | moderate =                      MODERATE
Line 286: Line 362:
 
         | securityWeakness =              Security Weakness
 
         | securityWeakness =              Security Weakness
 
         | technicalImpacts =              Technical Impacts
 
         | technicalImpacts =              Technical Impacts
 +
        | technical =                    Technical
 
         | businessImpacts =              Business Impacts
 
         | businessImpacts =              Business Impacts
 +
        | business =                      Business
 +
        | score =                        Score
 
         | threatAgentsImage =            Image:Top 10 threatAgents.png
 
         | threatAgentsImage =            Image:Top 10 threatAgents.png
 
         | attackVectorsImage =            Image:Top 10 attackVectors.png
 
         | attackVectorsImage =            Image:Top 10 attackVectors.png
 
         | securityWeaknessImage=          Image:Top 10 securityWeakness.png
 
         | securityWeaknessImage=          Image:Top 10 securityWeakness.png
 +
        | impactsImage <!--- TBD ---->
 
         | technicalImpactsImage =        Image:Top 10 technicalImpacts.png  
 
         | technicalImpactsImage =        Image:Top 10 technicalImpacts.png  
 
         | businessImpactsImage =          Image:Top 10 businessImpacts.png <noinclude>
 
         | businessImpactsImage =          Image:Top 10 businessImpacts.png <noinclude>
Line 297: Line 377:
 
         <!-- END of Section for other Images -->
 
         <!-- END of Section for other Images -->
 
         <!-- BEGIN of Section for SubsectionAdvancedTemplate --> </noinclude>
 
         <!-- BEGIN of Section for SubsectionAdvancedTemplate --> </noinclude>
 +
        | isTheApplicationVulnerable =    Is the Application Vulnerable?
 
         | vulnerableTo =                  Am I Vulnerable To {{Top_10_2010:ByTheNumbers|{{{risk}}}|year={{{year}}}|language={{{language}}} }}?
 
         | vulnerableTo =                  Am I Vulnerable To {{Top_10_2010:ByTheNumbers|{{{risk}}}|year={{{year}}}|language={{{language}}} }}?
 
         | vulnerableTo1 =                Am I Vulnerable To
 
         | vulnerableTo1 =                Am I Vulnerable To
 
         | vulnerableTo2 =                ?
 
         | vulnerableTo2 =                ?
 +
        | howToPrevent =                  How to Prevent
 
         | howPrevent =                    How Do I Prevent {{Top_10_2010:ByTheNumbers|{{{risk}}}|year={{{year}}}|language={{{language}}} }}?
 
         | howPrevent =                    How Do I Prevent {{Top_10_2010:ByTheNumbers|{{{risk}}}|year={{{year}}}|language={{{language}}} }}?
 
         | howPrevent1 =                  How Do I Prevent
 
         | howPrevent1 =                  How Do I Prevent
Line 312: Line 394:
 
         <!-- BEGIN of SubSubsectionExternalReferencesTemplate --> </noinclude>
 
         <!-- BEGIN of SubSubsectionExternalReferencesTemplate --> </noinclude>
 
         | myUnused =                      ERROR in the 'Language File' (Use of the unused Object)
 
         | myUnused =                      ERROR in the 'Language File' (Use of the unused Object)
         | #default =                      ERROR in the 'Language File' (Use of an unknown Object)
+
         | #default =                      ERROR in the '<u>[[:Template:Top_10:LanguageFile|Language File]]</u>' (Use of unknown Object '{{{text}}}')
 
     }} <!-- End of English -->
 
     }} <!-- End of English -->
 
}}</onlyinclude>
 
}}</onlyinclude>

Latest revision as of 22:43, 24 February 2019

Usage:

This File contains all the text that is used by OWASP Top 10 Templates
Please leave a message to Torsten Gigler @ if you liked to add a new localization
If you use an undefined language you will get English output (default language).

{{Top_10:LanguageFile

|text=<parameter> <!-- take one of the defined parmeters, e.g. tableOfContents -->
|language=<your language> <!-- actually only English (=en) and German (=de) are valid parameters) -->
|year=<year> <!-- optional for some texts -->

}}

Example:

{{Top_10:LanguageFile|text=tableOfContents|language=de}} => Inhaltsverzeichnis


Healthcheck

tbd.
In the meantime, please check:


If you use an unknown parameter you will get the following Error message in your wiki page:
ERROR in the 'Language File' (Use of unknown Object '{{{text}}}')