Georgeo Pulikkathara's Microsoft Blog : Web Develomenthttp://blogs.msdn.com/georgeop/archive/tags/Web+Develoment/default.aspxTags: Web Develomenten-USCommunityServer 2.1 SP1 (Build: 61025.2)Study: Top Web Application Vulnerabilities Remain Unfixedhttp://blogs.msdn.com/georgeop/archive/2008/05/14/study-top-web-application-vulnerabilities-remain-unfixed.aspxThu, 15 May 2008 04:06:00 GMT91d46819-8472-40ad-a661-2c78acb4018c:8505762Georgeo Pulikkathara0http://blogs.msdn.com/georgeop/comments/8505762.aspxhttp://blogs.msdn.com/georgeop/commentrss.aspx?PostID=8505762http://blogs.msdn.com/georgeop/rsscomments.aspx?PostID=8505762<p>Application Development trends published a study from <a href="http://www.cenzic.com/">Cenzic</a>, that shows that 70% of web applications analyzed where susceptible to cross site scripting&#160; exploitations with 20% of the web applications studied were vulnerable to SQL injection type attacks. Microsoft provides developers with tons of guidance on how to better secure your web applications.&#160; Don't let your web applications get exploited by these types of attacks. Get more details on this article at this link . <a href="http://www.adtmag.com/article.aspx?id=22604">Study: Top Web Application Vulnerabilities Remain Unfixed</a></p><img src="http://blogs.msdn.com/aggbug.aspx?PostID=8505762" width="1" height="1">Security contentWeb DevelomentOWASP Top 10 2007http://blogs.msdn.com/georgeop/archive/2008/05/09/owasp-top-10-2007.aspxSat, 10 May 2008 00:19:23 GMT91d46819-8472-40ad-a661-2c78acb4018c:8482098Georgeo Pulikkathara2http://blogs.msdn.com/georgeop/comments/8482098.aspxhttp://blogs.msdn.com/georgeop/commentrss.aspx?PostID=8482098http://blogs.msdn.com/georgeop/rsscomments.aspx?PostID=8482098<p> Most developers who use Microsoft developer tools and technologies will tell you that if you're looking for developer resources, just go to msdn online. Well not everyone uses Microsoft developer tools and technologies. This is where the <a href="http://www.owasp.org">Open Web Application Security Project (OWASP)</a> comes in. When folks are looking for application software security guidance, they'll go to an online community such as OWASP. OWASP provides straightforward information so that folks can make informed decisions on the state of their application security whether you're working in .NET, Java, or PHP. </p> <p>So be sure to check out OWASP, and especially their top 10 list for web application vulnerabilities at <a title="http://www.owasp.org/index.php/Top_10_2007" href="http://www.owasp.org/index.php/Top_10_2007">http://www.owasp.org/index.php/Top_10_2007</a> .</p><img src="http://blogs.msdn.com/aggbug.aspx?PostID=8482098" width="1" height="1">Security contentWeb Develoment