The Open Web Application Security Project (OWASP) has a list of their top ten most critical web application vulnerabilities. Even though they seem to be common sense, it doesn't mean that there aren't still plenty of sites which are still vulnerable.
Security audits, whether internal or external, can be very painful but they are also needed in today's networked world.
Posted by Josh at February 22, 2005 10:26 PM | TrackBack