Open Web Application Security (OWASP) is a mondial non-profit organization that campaigns for the improvement of software security. The aim is to inform individuals as well as companies about the risks related to the security of information systems. The organization functions as a community of professionals who share the same vision. Everyone is free to join the community which today has more than 45,000 members.
OWASP offers a development guide for web applications, which contains the best practices to be adopted during the development phase of a web project. Tools are also made available to Internet users in order to carry out audits of its site.
Each year OWASP publishes a ranking that identifies the most critical security vulnerabilities. Here is the 2017 ranking :
Source : owasp.org