@ Brief Listing of the Top 25 1. Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 2. Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') 3. Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') 4. Cross-Site Request Forgery (CSRF) 5. Improper Access Control (Authorization) 6. Reliance on Untrusted Inputs in a S..