I think it should be appended not updated, because that are just the top security flaws, but all are important.
The new one are: * A6: Security Misconfiguration (crucial) * A9: Insufficient Transport Layer Protection * A10: Unvalidated Redirects and Forwards On Jun 23, 6:37 pm, Julius Minka <j...@minka.sk> wrote: > There is a new version > here:http://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project > > I wonder if it doesn't need to be reflected in the current version of > the Book or in web2py itself. > Julius
