From shritam.bhowmick at gmail.com Fri Aug 22 00:10:01 2014 From: shritam.bhowmick at gmail.com (Shritam Bhowmick) Date: Fri, 22 Aug 2014 05:40:01 +0530 Subject: [Owasp-academies] Interpreter Injection classification. Message-ID: Was wondering if code injection could be under Interpreter Injection, if that's the case, which OWASP verifies. All input validation and output validation issues generally would fall under 'Interpreter Injection' apart from code execution. What would be HTMLi be as? what interpreter namespace would this vector follow? It's the HTML context's which are being used. Regards Shritam Bhowmick Founder at OpenFire Technologies. Penetration Tester at+OpenFire Security. Web Application Analysis and Research. www.openfire-security.net http://forum.openfire-security.net The information contained herein (including any accompanying documents) is confidential and is intended solely for the addressee(s). It may contain proprietary, confidential, privileged information or other information subject to legal restrictions. If you are not the intended recipient of this message, please do not read, copy, use or disclose this message or its attachments. Please notify the sender immediately and delete all copies of this message and any attachments. This e-mail message including attachment(s), if any, is believed to be free of any virus. However, it is the responsibility of the recipient to ensure for absence of viruses. OpenFire Technologies shall not be held responsible nor does it accept any liability for any damage arising in any way from its use. -------------- next part -------------- An HTML attachment was scrubbed... URL: