Web Application Security Guide/Further reading

A similar guide can be found at https://wiki.mozilla.org/WebAppSec/Secure_Coding_Guidelines.

OWASP provides good information about many web application security issues, with a large list of vulnerabilities to learn about and avoid.