Security incidents in web-based applications

« Security incident investigations within banks | Main | Making search engines' life easier with Sitemaps »

According to the Web Application Security Consortium (WASC), XSS and SQL injection remain the most popular attack vectors being exploited in public incidents. Further details can be found in the Web Hacking Incidents Database (WHID), which was updated today.

The chart below illustrates the number of public incidents registered per year:

(*): Projected number of incidents for year 2006

A broader list of vulnerabilities is listed in OWASP Top Ten, which ranks the most critical web application security flaws.

Posted by Laurent in Injection, Secure Coding, Security, Technologies, Threats, Web Applications, XSS on April 20, 2006 6:34 PM | Permalink

About

This page contains a single entry from the blog posted on April 20, 2006 6:34 PM.

The previous post in this blog was Security incident investigations within banks.

The next post in this blog is Making search engines' life easier with Sitemaps.

Many more can be found on the main index page or by looking through the archives.

Author & Licensing

The views expressed on this web site are mine alone and do not necessarily reflect the views of my employer.

This weblog is licensed under a Creative Commons License.

never-ever-****-with-my.net

Sharing information about technology, free software, and IT security primarily!