[WEB SECURITY] 2009 Top 25 Programming Errors

Steven M. Christey coley at linus.mitre.org
Fri Jan 16 16:13:31 EST 2009

On Fri, 16 Jan 2009, Arian J. Evans wrote:

> Also, we need a "webapp" version, since that will probably
> be the primary use of the "Top 25". </guess>

There is probably a strong mapping between what's in the Top 25 and what's
in the OWASP Top Ten 2007, so that may be a starting point.

- Steve

P.S. Just pimped the Secure Software Contract Annex in an interview.

Join us on IRC: irc.freenode.net #webappsec

Have a question? Search The Web Security Mailing List Archives: 

Subscribe via RSS: 
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]

Join WASC on LinkedIn

More information about the websecurity mailing list