[Owasp-leaders] OWASP Top 10 Inconsistencies

Mandeep Khera mkhera at owasp.org
Mon Apr 26 20:34:10 EDT 2010


Dear all 

 

As we were going through the Top 10 categories, I noticed some
inconsistencies in the OWASP documents that might cause some confusion and
we should fix. 

 

So, the pdf and the main page -
http://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project#tab=Main with
the high level categories match fine.  

 

However, when you go to the wiki page -
http://www.owasp.org/index.php/Top_10_2010-Main  - the top 10 risk
categories are the same but the reference numbers of A7 through A10 are
inconsistent.  On the wiki page, A7 should be A8, A8 should be A10, A9
should be A7, and A10 should be A9 to make it consistent with the other
documents.   

 

Also, the mapping done by the WASC is based on this Wiki page and will need
to be fixed as well -
http://projects.webappsec.org/Threat-Classification-Taxonomy-Cross-Reference
-View

 

 

Thanks

 

Mandeep Khera

Cenzic

Bay Area Chapter Leader

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-leaders/attachments/20100426/6faf0d58/attachment.html 


More information about the OWASP-Leaders mailing list