Website Security Checklist

X-Ref http://www.owasp.org

• Unvalidated input
• Broken access control
• Broken authentication and session management
• Cross site scripting (XSS) flaws
• Buffer overflows
• Injection flaws
• Improper error handling
• Insecure storage
• Denial of service
• Insecure configuration management