Insecure Web

The web is a tangled mess of insecure browsers, servers, and pages.  With Web 2.0, Ajax, and User Generated Content, we have begun to see an increasingly insecure Internet.

As more and more companies turn to the web to power and drive their business, developers must ensure that the code they write is not going to leave their clients vulnerable to cross site scripting, cross site forgery requests, SQL injection, email spoofing, CSRFs, data leaks, and a whole list of other types of attacks and vulnerabilities.

Insecure Web, created by two industry web developers Bryan Migliorisi and Mauvis Ledford, as a place for us to detail some of the insecurities and vulnerabilities that are floating around the web today, as well as providing some insight as to how one can prevent such vulnerable code in their own projects.