-
The current OWASP Wiki content needs to be cleaned up and translated into the new content format as described in the Leaders meeting at AppSec DC
-
Since OWASP TOP 10 2017 is released recently, are you planning to update the readme?
-
The latest OWASP Top 10 is not covered. The uncovered vulnerabilities need to be added to the codebase. Currently, the project covers version 2010.
-
When I run nginx based image of owasp/modsecurity-crs on top of kubernetes, I get error:
`kubectl run mynginxtest --image=owasp/modsecurity-crs:4.8.0-nginx-202411071011`
` kubectl logs -f myngi…
-
### Provide environment information
Next js 14
"@ducanh2912/next-pwa": "^10.2.9",
### Link to reproduction - Issues with a link to complete (but minimal) reproduction code help us address them fast…
-
Supercedes: #49
https://owasp.org/www-project-top-ten/
-
Hello everyone
Is OWASP Top 10 methodology useful for zero-day attacks?
-
For now, exercises were provided in the form of pdf documents. For sure we need to update them, but we need to consider if we want to stay with pdf documents or change the format.
-
We analyzed the android apk with Mobsf security tool and find the below.
1.
CWE: CWE-327: Use of a Broken or Risky Cryptographic Algorithm
OWASP Top 10: M5: Insufficient Cryptography
OWASP MASVS…
-
Hi team,
Any plans to include new flags to cover the new [OWASP API Security Top 10 2023 risks][1]?
Cheers,
Paulo A. Silva
[1]: https://owasp.org/API-Security/editions/2023/en/0x11-t10/