Hossein Zahed

Web Developer, Entrepreneur, Software Educator

The OWASP Top 10 Web Security Vulnerabilities


The OWASP Top 10 web security vulnerabilities are updated annually and represent the 10 vulnerabilities of greatest threat to your web application. As of 2014 they are as follows:

  1. Injection
  2. Broken Authentication and Session Management
  3. Cross Site Scripting
  4. Insecure Direct Object References
  5. Security Misconfiguration
  6. Sensitive Data Exposure
  7. Missing Function Level Access Control
  8. Cross Site Request Forgery
  9. Using Components with Known Vulnerabilities
  10. Unvalidated Redirects and Forwards.