OWASP AND ITS 10 VULNERABILITIES

The full form of OWASP is the Open Web Application Security Project. It is a non-profit group that helps a variety of organizations to develop, purchase, and maintain software applications that can be trusted. The educate developers, designers, architects, and business owners all are sought by OWASP to identify the risk associate with the most common web application security vulnerabilities. OWASP is known as a forum as it supports both open source and commercial security products in which information technology professionals can network and build expertise. The materials which are needed by the organizations are available for the free and open software license.

 

TOP 10 VULNERABILITIES OF OWASP

OWASP is the open call for data and best for industries and companies to perform secure code reviews, penetration testing, etc., and can send their data anonymously. For producing a frequency of each risk and each vulnerability, the data will be collated and assigned based on the score on its exploitability, prevalence, detectability, and technical impact.

1. Injection 
2. Broken Authentication
3. Sensitive data exposure
4. XML External Entities (XXE)
5. Broken access control
6. Security misconfigurations
7. Cross-Site Scripting
8. Insecure Deserialization
9. Using components with known Vulnerabilities
10. Insufficient Logging and Monitoring

Original Article