OWASP Top Ten - OWASP Foundation
OWASP Top Ten - OWASP Foundation
Donate Now! ×
Main Translation Efforts Sponsors Data 2025 The OWASP® Foundation works to
improve the security of software through
Important note: its community-led open source software
projects, hundreds of chapters worldwide,
OWASP Top Ten 2025
tens of thousands of members, and by
Current project status as of September 2024: hosting local and global conferences.
We are planning to announce the release of the OWASP Top 10:2025 in the first half of 2025.
Data Collection (Now - December 2024): Please donate your application penetration testing statistics. Project Information
Stay Tuned! • OWASP Top 10:2021
• Making of OWASP Top 10
The OWASP Top 10 is a standard awareness document for developers and web application security. It • OWASP Top 10:2021 - 20th
represents a broad consensus about the most critical security risks to web applications. Anniversary Presentation (PPTX)
x
This website uses cookies to analyze our traffic and only share that information with our analytics partners. Flagship Project
Accept
Documentation
Globally recognized by developers as the first step Builder
Defender
towards more secure coding. • Previous Version (2017)
Social
Top 10 Web Application Security Risks Twitter
There are three new categories, four categories with naming and scoping changes, and some consolidation in
Code Repository
the Top 10 for 2021.
repo
Leaders
Andrew van der Stock
Brian Glas
Neil Smithline
Torsten Gigler
Edit on GitHub
Open Web Application Security Project, OWASP, Global AppSec, AppSec Days, AppSec California, SnowFROC, LASCON, and the OWASP logo are trademarks of the OWASP Foundation. Unless
otherwise specified, all content on the site is Creative Commons Attribution-ShareAlike v4.0 and provided without warranty of service or accuracy. For more information, please refer to our General
Disclaimer. OWASP does not endorse or recommend commercial products or services, allowing our community to remain vendor neutral with the collective wisdom of the best minds in software security
worldwide. Copyright 2024, OWASP Foundation, Inc.