Sensitive Data Exposure
XML External Entities (XXE)
Broken Access Control
Cross Site Scripting (XSS)
Using Components with known vulnerabilities
Insufficient logging and monitoring
The Open Web Application Security Project (OWASP) is a worldwide non-profit charitable organization focused on improving the security of software. OWASP mission is to make software security visible, so that individuals and organizations are able to make informed decisions.