Following are the most critical web application development flaws that a developer should take care of:

☛ Injection attack.

☛ Broken Authentication and Session Management.

☛ Cross-Site Scripting (XSS)

☛ Insecure direct object references.

☛ Security misconfiguration.

☛ Sensitive Data Exposure.

☛ Missing Functions Level Access Control.

☛ Cross Site Request Forgery (CSRF).

☛ Using components that possess vulnerabilities.

☛ In-validated redirects and forwards.