The Open Web Application Security Project (OWASP) is an open community dedicated to enabling organizations to develop, purchase, and maintain applications that can be trusted. All of the OWASP tools, documents, forums, and chapters are free and open to anyone interested in improving application security.
The OWASP Top 10 project references the most security issues and widespread on the web. Most safety audits and specialized tools are based on the Top 10. The primary aim is to educate developers, designers, architects, managers, and organizations about the consequences of the most important web application security weaknesses. The Top 10 also provides basic techniques to protect against these high risk problem areas.
For each risks, OWASP provides generic information about likelihood and technical impact using the following simple ratings scheme, which is based on the Rating Methodology: