OWASP ESAPI on Python SwingSet

• Cross-Site Scripting
  • Cross-Site Scripting (XSS)
    • No Escaping
    • Secured With ESAPI
    • Django Autoescaping
• Input Validation, Encoding, and Injection
  • To Do
• Authentication and Session Management
  • To Do
• Access Control and Referencing Objects
  • Object Reference
    • Insecure/Direct
    • Secure/Indirect
• Encryption, Randomness, and Integrity
  • To Do
• Caching
  • To Do

OWASP Enterprise Security API Project (c) 2010
Validate HTML