5w19- |
OWASP Top 10 Low-Code/No-Code Security Risks | OWASP Foundation
https://owasp.org/www-project-top-10-low-code-no-code-security-risks/
Saved on 2022-08-07 [19211 edays] via owasp.org
Modified 2023-08-09 [19578 edays]
cybersecurity web
https://owasp.org/www-project-top-10-low-code-no-code-security-risks/
Saved on 2022-08-07 [19211 edays] via owasp.org
Modified 2023-08-09 [19578 edays]
cybersecurity web
The primary goal of the “OWASP Low-Code/No-Code Top 10” document is to provide assistance and education for organizations looking to adopt and develop Low-Code/No-Code applications. The guide provides information about what the most prominent security risks are for such applications, the challenges involved, and how to overcome them.
- LCNC-SEC-01: Account Impersonation
- LCNC-SEC-02: Authorization Misuse
- LCNC-SEC-03: Data Leakage and Unexpected Consequences
- LCNC-SEC-04: Authentication and Secure Communication Failures
- LCNC-SEC-05: Security Misconfiguration
- LCNC-SEC-06: Injection Handling Failures
- LCNC-SEC-07: Vulnerable and Untrusted Components
- LCNC-SEC-08: Data and Secret Handling Failures
- LCNC-SEC-09: Asset Management Failures
- LCNC-SEC-10: Security Logging and Monitoring Failures