OWASP Top 10 Application Security Risks
OWASP Top 10 Application Security Risks With Examples.
This article was prepared for METU, Cyber Systems and Information Security (501) course and all usage rights are reserved.
The Open Web Application Security Project, or OWASP, is a non-profit dedicated to software security. Among their projects are a number of open-source software development programs and toolkits, as well as local chapters and conferences. The OWASP Top 10, a list of the top 10 security risks faced by web applications, is one of their projects.
The OWASP Top 10 is a list of the ten most common security risks in web applications. Developers can create secure applications that keep their users’ confidential data safe from attackers by writing code and performing thorough testing with these risks in mind.
A1:SQL Injection
CVE-2019–1010248: Synetics GmbH I-doit 1.12 and earlier versions are affected by SQL Injection. The attack vector is this: An attacker gained access to the mysql database by sending a malicious HTTP POST request to the web login form.
