[Owasp-topten] CSP in XSS

Dirk Wetter dirk.wetter at owasp.org
Tue May 28 18:31:34 UTC 2013


Hi folks,

I propose a minor change to the Top 10 list: CSP should be listed as a countermeasure in the XSS
section.

Please find the proposal in the wiki, hoping it'll be included in the final version.


BR, Dirk



-- 
German OWASP Board, Conference Chair AppSec EU 2013
http://appsec.eu/       |                 @appseceu
skype://drwetter.de     |      tel:+49-40-2442035-1


More information about the Owasp-topten mailing list