This wiki page is build to coordinate the research of vulnerabilities and to provide a little explain of anyone of these.
The vulnerabilities reported here are the most common vulnerabilities found into web applications (source: OWASP top ten 2007).
After any of this vulnerabilities we should add a little description of what it is and a list of tools/ways-to-find-that.
Feel free to add something or mark that something was already been tested.
Cross Site Scripting
Injection Flows
Malicious file execution
Insecure direct object reference
Cross Site Request Forgery
Information Leakage and improper error handling
Insecure cryptographic storage
Insecure Communications
Failure to restrict URL access