[Owasp-leaders] [Owasp-community] OT10 Risks?

Jim Manico jim.manico at owasp.org
Mon Sep 22 17:08:17 UTC 2014


> And in Bill's example, parameterized queries, input validation, and output encoding would be considered risk mitigation.

Bill said LACK OF parameterized queries and others which is a
•weakness•, not risk mitigation.

--
Jim Manico
@Manicode
(808) 652-3805

> On Sep 22, 2014, at 12:59 PM, Josh Sokol <josh.sokol at owasp.org> wrote:
>
> And in Bill's example, parameterized queries, input validation, and output encoding would be considered risk mitigation.


More information about the OWASP-Leaders mailing list