Top 10 Web 2.0 Attack Vectors

Net-Security.org published an article stating the Top 10 Web 2.0 Attack Vectors. In their opinion the top 10 are:


1. Cross-site scripting in AJAX
2. XML poisoning
3. Malicious AJAX code execution
4. RSS / Atom injection
5. WSDL scanning and enumeration
6. Client side validation in AJAX routines
7. Web services routing issues
8. Parameter manipulation with SOAP
9. XPATH injection in SOAP message
10. RIA thick client binary manipulation


Do you have test cases in place to help prevent these top 10?

Leave a Reply

Your email address will not be published. Required fields are marked *