Web Application Security
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
Re: Web Application Vulnerability Categorization Apr 02 2014 08:38PM
Dave Ferguson (gmdavef gmail com)
In terms of OWASP Top Ten, yes - I would categorize it under Broken
Auth & Session Management.

Also, check out the OWASP cheat sheet on this topic for helpful
remediation advice.
https://www.owasp.org/index.php/Forgot_Password_Cheat_Sheet

Dave

On Tue, Apr 1, 2014 at 1:27 PM, Seth Art <sethsec (at) gma. (dot) . [email concealed]

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus