OWASP Top 11

The OWASP Top 10 is a standard awareness document for developers and web application security. It represents a broad consensus about the most critical security risks to web applications.

About OWASP Top 11

Translation Efforts

Efforts have been made in numerous languages to translate the OWASP Top 10 - 2025. If you are interested in helping, please contact the members of the team for the language you are interested in contributing to, or if you don’t see your language listed (neither here nor at github), please email [email protected] to let us know that you want to help and we’ll form a volunteer group for your language.

Top10:2025 Completed Translations:

Translations in progress - check back soon!

Project Resources

Project Leaders

Andrew van der Stock

Project Leader

Brian Glas

Project Leader

Neil Smithline

Project Leader

Torsten Gigler

Project Leader

Downloads or Social Links

Project Information

Language
Documentation
License
Creative Commons Attribution-ShareAlike v4.0
Latest Version
2021 (2025 coming soon)
Contributors
4

Requirements

  • Web application development knowledge
  • Basic security awareness
  • Understanding of common vulnerabilities
  • Application security testing tools
  • Development team training
Corporate Supporters
OWASP Logo
OWASP is a nonprofit foundation improving software security through open-source projects, global communities, and education. All resources are free and open to everyone.
Quick Links
ProjectsChaptersCorporate SupportersEventsNewsAboutFinance & governanceFinance (all documents)BoardBoard EUCommunityVisit Store
Legal
Legal
Socials
LinkedInGitHubX (Twitter)FacebookYouTube
OWASP, the OWASP logo, and Global AppSec are registered trademarks and AppSec Days, AppSec California, AppSec Cali, SnowFROC, OWASP Boston Application Security Conference, and LASCON are trademarks of the OWASP Foundation, Inc.
© 2026, OWASP Foundation Inc. All rights reserved.