[Owasp Source Flaws Top 10] how to evaluate risk from content management system--cms
yi.li26 at gmail.com
Fri Jul 30 09:47:53 EDT 2010
will appreciate if anyone could share thoughts on how to evaluate the
risk from 'content management system' CMS.
the component of CMS that I would like to evaluate is the component
that generate content for the web server, which is installed on the
application server, which is usually done by install a library of CMS on
E-comm's application server. assume there is a coding flaws in the code in
this component, such as sql injection, my question is how to evaluate
whether such vulnerabilities will open doors for hackers to attack the web
applications deployed on the same application server, or such
vulnerabilities will only endanger the CMS functionality.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Owasp-source-code-flaws-top-10