From the course: CompTIA Security+ (SY0-701) Cert Prep

Unlock the full course today

Join today to access over 24,000 courses taught by industry experts.



- [Instructor] Web security vulnerabilities are among the trickiest problems tackled by cybersecurity professionals. The Open Worldwide Application Security Project, OWASP, maintains a list of the top 10 web security vulnerabilities that cybersecurity experts should understand and defend against to maintain secure web services. The current version of the OWASP Top 10 was developed in 2021. According to OWASP, the top 10 web security issues are broken access control, cryptographic failures, injection attacks, insecure design, security misconfigurations, vulnerable and outdated components, identification and authentication failures, software and data integrity failures, security logging and monitoring failures, and server side request forgery. Broken access control occurs when developers fail to check on the backend whether a user is authorized to access a particular function of an application. Users with knowledge of the application may send requests directly to the server, bypassing…
