[Owasp-leaders] Common web application vulnerability naming standard
Stephen de Vries
stephen at twisteddelight.org
Wed Nov 17 05:29:12 EST 2010
WASC Threat Classification?
On Nov 17, 2010, at 10:04 AM, daniel cuthbert wrote:
> hey Leaders,
> I'm busy with potentially a new project for OWASP that tries to create a standard set of web app vulnerability names to be used during the reporting phase. In most cases, we all find the same issues but differ when it comes to the approach taken when reporting them. I feel that this sometimes has the ability to confuse clients, especially those using multiple vendors to perform assessments.
> With this in mind, can anyone share links of common web application vulnerability lists they know of? I'm trying to build up as many sources before I try and build up an OWASP document.
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
More information about the OWASP-Leaders