Weaknesses in OWASP Top Ten (2007) |
View ID: 629 (View: Graph) | Status: Draft |
View Objective
CWE nodes in this view (graph) are associated with the OWASP Top Ten, as released in 2007.
CWEs in this view | Total CWEs | ||
---|---|---|---|
Total | 38 | out of | 810 |
Views | 0 | out of | 23 |
Categories | 10 | out of | 110 |
Weaknesses | 27 | out of | 668 |
Compound_Elements | 1 | out of | 9 |
Stakeholder | Description |
---|---|
Developers | This view outlines the most important issues as identified by the OWASP Top Ten (2007 version), providing a good starting point for web application developers who want to code more securely. |
Software Customers | This view outlines the most important issues as identified by the OWASP Top Ten (2007 version), providing customers with a way of asking their software developers to follow minimum expectations for secure code. |
Educators | Since the OWASP Top Ten covers the most frequently encountered issues, this view can be used by educators as training material for students. |
Nature | Type | ID | Name | View(s) this relationship pertains to![]() |
---|---|---|---|---|
HasMember | ![]() | 712 | OWASP Top Ten 2007 Category A1 - Cross Site Scripting (XSS) | Weaknesses in OWASP Top Ten (2007) (primary)629 |
HasMember | ![]() | 713 | OWASP Top Ten 2007 Category A2 - Injection Flaws | Weaknesses in OWASP Top Ten (2007) (primary)629 |
HasMember | ![]() | 714 | OWASP Top Ten 2007 Category A3 - Malicious File Execution | Weaknesses in OWASP Top Ten (2007) (primary)629 |
HasMember | ![]() | 715 | OWASP Top Ten 2007 Category A4 - Insecure Direct Object Reference | Weaknesses in OWASP Top Ten (2007) (primary)629 |
HasMember | ![]() | 716 | OWASP Top Ten 2007 Category A5 - Cross Site Request Forgery (CSRF) | Weaknesses in OWASP Top Ten (2007) (primary)629 |
HasMember | ![]() | 717 | OWASP Top Ten 2007 Category A6 - Information Leakage and Improper Error Handling | Weaknesses in OWASP Top Ten (2007) (primary)629 |
HasMember | ![]() | 718 | OWASP Top Ten 2007 Category A7 - Broken Authentication and Session Management | Weaknesses in OWASP Top Ten (2007) (primary)629 |
HasMember | ![]() | 719 | OWASP Top Ten 2007 Category A8 - Insecure Cryptographic Storage | Weaknesses in OWASP Top Ten (2007) (primary)629 |
HasMember | ![]() | 720 | OWASP Top Ten 2007 Category A9 - Insecure Communications | Weaknesses in OWASP Top Ten (2007) (primary)629 |
HasMember | ![]() | 721 | OWASP Top Ten 2007 Category A10 - Failure to Restrict URL Access | Weaknesses in OWASP Top Ten (2007) (primary)629 |
MemberOf | ![]() | 699 | Development Concepts | Development Concepts (primary)699 |
The relationships in this view are a direct extraction of the CWE mappings that are in the 2007 OWASP document. CWE has changed since the release of that document. |
"Top 10 2007". OWASP. 2007-05-18. <http://www.owasp.org/index.php/Top_10_2007>. |
Modifications | ||||
---|---|---|---|---|
Modification Date | Modifier | Organization | Source | |
2008-09-08 | CWE Content Team | MITRE | Internal | |
updated Description, Name, Relationships, References, Relationship Notes, View Audience, View Structure | ||||
Previous Entry Names | ||||
Change Date | Previous Entry Name | |||
2008-09-09 | Weaknesses in OWASP Top Ten | |||