Disclaimer: the things we’ll talk about in this article today won’t make you a
security expert, just as buying a Swiss Army knife won’t make you a
locksmith or buying a whip won’t make you a lion tamer. The purpose here
is to raise awareness and perhaps make some of that security mumbo-
jumbo a bit more understandable to you.
An Interesting Report On Web Security
Web security company Cenzic released a report detailing trends and
numbers related to Web security for the first and second quarters of 2009.
A PDF of the report is available, and the numbers are telling:
PDF: Web Vulnerabilities Q1/Q2 2009.
Among the most serious vulnerabilities were path traversal, cross-site
scripting, cross-site request forgery and SQL injection. Unmentioned are a