Custom Development

OWASP Top 10 Risks: #1: Injection

Subscribe
Max McCarty
Max McCarty Oct 13, 2014

The term injection can encompass a large number of different variations such as SQL, XML, LDAP, HTML, CSS and Remote file injections (which is not an exhaustive list).  In the end, they all boil down to injecting a command in the guise of data, where the command is then executed with malicious results on the targeted system.  This is all a result of what the Open Web Application Security Project has identified as Injection Flaws.

We're going to take a look at what OWASP has identified as their #1 most critical web application security flaw: injection flaws.

http://lockmedown.com/owasp-top-10-risks-1-injection
Max McCarty
ABOUT THE AUTHOR
Max McCarty, Summa

Max McCarty is a Senior Technical Consultant at Summa with a passion for breathing life into big ideas. He is the founder and owner of LockMeDown.com and host of the popular Lock Me Down podcast. As a software engineer, Max’s focus is on software security, and strongly believes in empowering the everyday developer with the information to write more secure software. When he’s not building new applications or writing about web security, you’ll find Max burning calories with his kids and spending time with his wonderful family. He’s also a serious history buff.

Related posts
Mike Carpenter Mike Carpenter

Spotlight on Branch Banking: Experimenting to Find Your  Future Branch

The future of branch banking is unclear. Some are calling for its death. Others are saying branches are still...

Read More
Max McCarty Max McCarty

3 Simple but Powerful Rules for Identifying Your Applications' Untrusted Data

You don’t need to be a technical resource on a project to realize the significance between an application’s...

Read More

611 William Penn Place
12th Floor
Pittsburgh, PA 15219

Phone: 412.258.3300
 |  
Follow Us
© 2010- Summa Technologies, Inc. All rights reserved.