The Open Web Application Security Project (OWASP) produces the OWASP Top 10 every four years, describing the most critical security risks. This list is a starting point for organizations looking to understand and mitigate common web vulnerabilities.
Source: The New Stack