Difference between revisions of "ASDR TOC Attacks"

From OWASP
Jump to: navigation, search
Line 1: Line 1:
 
Back to [[ASDR_Table_of_Contents|TOC]]
 
Back to [[ASDR_Table_of_Contents|TOC]]
  
---> Thiago Lechuga
 
 
* 1 [[Absolute Path Traversal]]
 
* 1 [[Absolute Path Traversal]]
 
* 2 [[Account lockout attack]]
 
* 2 [[Account lockout attack]]
Line 13: Line 12:
 
[[Category:FIXME|CSRF was here in the TOC, but I removed it since it's also below]]
 
[[Category:FIXME|CSRF was here in the TOC, but I removed it since it's also below]]
  
<--- Thiago Lechuga
 
 
---> Ulisses Castro
 
 
* 11 [[Cache Poisoning]]
 
* 11 [[Cache Poisoning]]
 
* 12 [[Code Injection]]
 
* 12 [[Code Injection]]
Line 26: Line 22:
 
* 19 [[Cryptanalysis]]
 
* 19 [[Cryptanalysis]]
 
* 20 [[Custom Special Character Injection]]
 
* 20 [[Custom Special Character Injection]]
 +
 
* [[Denial of Service]]
 
* [[Denial of Service]]
<--- Ulisses Castro
 
 
---> Eduardo Alves
 
 
* 21 [[Direct Dynamic Code Evaluation ('Eval Injection')]]
 
* 21 [[Direct Dynamic Code Evaluation ('Eval Injection')]]
 
* 22 [[Direct Static Code Injection]]
 
* 22 [[Direct Static Code Injection]]
Line 39: Line 33:
 
* 28 [[HTTP Response Splitting]]
 
* 28 [[HTTP Response Splitting]]
 
* 30 [[LDAP injection]]
 
* 30 [[LDAP injection]]
<--- Eduardo Alves
 
  
---> Eduardo Serrano
 
 
* [[Man-in-the-browser attack]]
 
* [[Man-in-the-browser attack]]
 
* 31 [[Man-in-the-middle attack]]
 
* 31 [[Man-in-the-middle attack]]
Line 50: Line 42:
 
* 36 [[One-Click Attack]]
 
* 36 [[One-Click Attack]]
 
* 37 [[Overflow Binary Resource File]]
 
* 37 [[Overflow Binary Resource File]]
 +
 
*  [[Page Hijacking]]
 
*  [[Page Hijacking]]
 
* 38 [[Parameter Delimiter]]
 
* 38 [[Parameter Delimiter]]
 
* 39 [[Path Manipulation]]
 
* 39 [[Path Manipulation]]
 
* 40 [[Path Traversal]]
 
* 40 [[Path Traversal]]
<--- Eduardo Serrano
 
 
---> Alexandro Silva
 
 
* 41 [[Phishing attack]]
 
* 41 [[Phishing attack]]
 
* 42 [[Relative Path Traversal]]
 
* 42 [[Relative Path Traversal]]
Line 66: Line 56:
 
* 49 [[Session hijacking attack]]
 
* 49 [[Session hijacking attack]]
 
* 50 [[Setting Manipulation]]
 
* 50 [[Setting Manipulation]]
<--- Alexandro Silva
 
 
---> Anderson Tamborim
 
 
* 51 [[Special Element Injection]]
 
* 51 [[Special Element Injection]]
 
* 52 [[Spyware]]
 
* 52 [[Spyware]]
Line 79: Line 66:
 
* 60 [[XSS using Script Via Encoded URI Schemes]]
 
* 60 [[XSS using Script Via Encoded URI Schemes]]
 
* 61 [[XSS using Script in Attributes]]
 
* 61 [[XSS using Script in Attributes]]
<--- Anderson Tamborim
 
  
 
Back to [[ASDR_Table_of_Contents|TOC]]
 
Back to [[ASDR_Table_of_Contents|TOC]]
  
 
[[Category:OWASP ASDR Project]]
 
[[Category:OWASP ASDR Project]]

Revision as of 06:55, 13 November 2008

Back to TOC

Back to TOC