[Owasp-topten] Fwd: About SSRF's order in the Top 10

Ziyahan ALBENiZ ziyahanalbeniz at gmail.com
Fri Oct 28 09:18:50 UTC 2016


Hi there,

Now I am working on SSRF now  and I've wanted to consult you about that,
what do you think about classification of SSRF? If you were a one who tries
to put SSRF a place in Top 10 list, which one would be your preference?

Unvalidated Redirect and Forward sometimes sounds suitable. But I am with
the Missing Function Level Access.

Thanks in advance.

-- 
Ziyahan Albeniz
Bilgisayar Programcısı / Computer Programmer / Komputila Programisto

*GSM :* +90 533 637 1572
*Skype :* ziyahanalbeniz
*Web    : *http://ziyahanalbeniz.blogspot.com
*Twitter*: @ziyaxanalbeniz <https://twitter.com/ziyaxanalbeniz>
*LinkedIn :* http://www.linkedin.com/in/ziyahanalbeniz
*PGP* :  0xA6A34AFD   / https://keybase.io/ziyahan
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-topten/attachments/20161028/71b58619/attachment.html>


More information about the Owasp-topten mailing list