The Open Web Application Security Project (OWASP) is the worldwide not-for-profit charitable organization
focused on improving the security of software. What item is the primary concern on OWASP’s Top Ten Project
Most Critical Web Application Security Risks?

A.
Injection

B.
Cross Site Scripting

C.
Cross Site Request Forgery

D.
Path disclosure

Explanation:
The top item of the OWASP 2013 OWASP’s Top Ten Project Most Critical Web Application Security Risks is
injection.
Injection flaws, such as SQL, OS, and LDAP injection occur when untrusted data is sent to an interpreter as
part of a command or query. The attacker’s hostile data can trick the interpreter into executing unintended
commands or accessing data without proper authorization.
https://www.owasp.org/index.php/Top_10_2013-Top_10