4 Common Mistakes Developers Make When Implementing Authentication and Session Management

Authentication, authorization and session management are obviously key elements in securing a web application. With proper planning, these areas are actually comparably easy to get right - ideally,...

Secure Coding 101: Remediating CSRF Vulnerabilites

Cross-Site Request Forgery (CSRF) attacks have been around for a long time, but even today some frameworks and web applications do not implement measures to mitigate this attack vector. From an att...

Secure Coding 101: Remediating SQL Injection Vulnerabilites

Injection is the first item in the OWASP Top 10 list for good reasons: We still find very often that developers concatenate user input into SQL queries (which is the basis for SQL injection) and th...

Secure Coding 101: 4 Common Mistakes Developers Make When Fixing Cross-Site Scripting

Even though awareness of web security issues has been on the rise, preventing and fixing XSS issues throughout an application is not always completely straightforward  - especially if security was ...