Application Security Inc. has put out a new TOP 10 list of database vulnerabilities that includes:
- Default, Blank & Weak Username/Password
- SQL Injections
- Extensive User & Group Privilege
- Unnecessary Enabled DB Feature
- Broken Configuration Management
- Buffer Overflows
- Privilege Escalation
- Denial of Service Attack DoS
- Unpatched Databases
- Unencrypted sensitive data – at rest and in motion