<html>
  <head>
    <meta content="text/html; charset=windows-1252"
      http-equiv="Content-Type">
  </head>
  <body bgcolor="#FFFFFF" text="#000000">
    <p>Indeed, there are ways to label certain wiki pages as attacks.
      Take a look at
      <a class="moz-txt-link-freetext" href="https://www.owasp.org/index.php/Cross-site_Scripting_%28XSS%29">https://www.owasp.org/index.php/Cross-site_Scripting_%28XSS%29</a> as
      an example for proper wiki tagging. If you have any questions let
      me know.</p>
    <p>Aloha, Jim<br>
    </p>
    <p><br>
    </p>
    <br>
    <div class="moz-cite-prefix">On 5/17/16 12:59 PM, Ahmed Abbas wrote:<br>
    </div>
    <blockquote
cite="mid:CAOEPUuSZBN3T=xx=wJTcTrQZwUekOG9xsBG00otWWDv0Jgs1GA@mail.gmail.com"
      type="cite">
      <div dir="ltr">
        <div>
          <p class="MsoNormal"><span
              style="font-size:12pt;line-height:107%;font-family:'Calibri
              Light',sans-serif">Dear OWASP Leaders,</span></p>
          <p class="MsoNormal"><span
              style="font-size:12pt;line-height:107%;font-family:'Calibri
              Light',sans-serif"><br>
            </span></p>
          <p class="MsoNormal"><span
              style="font-size:12pt;line-height:107%;font-family:'Calibri
              Light',sans-serif">A friend of mine came up with a new
              attack vector that relates to the
              Login by QR Code feature and he is asking about how to
              contribute his research to
              OWASP and how can he send the proper papers regarding it
              to be listed as an
              attack vector in OWASP guidelines. Is there any documented
              process explaining
              how new attack vectors get documented? He also wants to
              ask if it is necessary
              to have a tool (PoC) to be included with the attack
              documentation to be accepted
              by OWASP?</span></p>
          <p class="MsoNormal"><span
              style="font-size:12pt;line-height:107%;font-family:'Calibri
              Light',sans-serif">Thanks in advance for your comments,
              and explanations. </span></p>
          <p class="MsoNormal"><span
              style="font-size:12pt;line-height:107%;font-family:'Calibri
              Light',sans-serif"><br>
            </span></p>
          <p class="MsoNormal"><span
              style="font-size:12pt;line-height:107%;font-family:'Calibri
              Light',sans-serif">Kind Regards.</span></p>
        </div>
        <div>
          <div><br>
          </div>
          -- <br>
          <div class="gmail_signature">
            <div dir="ltr">
              <div>
                <div dir="ltr"><font face="verdana, sans-serif"><b>Ahmed
                      Abbas</b></font>
                  <div><font face="verdana, sans-serif">OWASP Khartoum
                      Co-Leader</font></div>
                  <div><font face="verdana, sans-serif"><a
                        moz-do-not-send="true"
                        href="https://twitter.com/OWASPKhartoum"
                        target="_blank"><a class="moz-txt-link-freetext" href="https://twitter.com/OWASPKhartoum">https://twitter.com/OWASPKhartoum</a></a> <br>
                    </font></div>
                  <div><br>
                  </div>
                </div>
              </div>
            </div>
          </div>
        </div>
      </div>
      <br>
      <fieldset class="mimeAttachmentHeader"></fieldset>
      <br>
      <pre wrap="">_______________________________________________
OWASP-Leaders mailing list
<a class="moz-txt-link-abbreviated" href="mailto:OWASP-Leaders@lists.owasp.org">OWASP-Leaders@lists.owasp.org</a>
<a class="moz-txt-link-freetext" href="https://lists.owasp.org/mailman/listinfo/owasp-leaders">https://lists.owasp.org/mailman/listinfo/owasp-leaders</a>
</pre>
    </blockquote>
    <br>
  </body>
</html>