While no substitute for understanding security threats yourself, using well-established web frameworks (e.g. Ruby on Rails) and hosting platforms (e.g. Heroku) is good way to help improve, and help understand, secure development practices, as they come with baked-in tools and methodologies to mitigate the most common security vulnerabilities.
These can be considered the most common types of vulnerabilities still employed against legacy and current operating environments.
Our goal here is not to come across as master hackers, hence what we're about to reveal: SonyPictures.com was owned by a very simple SQL injection, one of the most primitive and common vulnerabilities, as we should all know by now.
The most common method for vulnerability assessment in multiple hazard research at the global scale involves index-based methods in which fragility, adaptability or coping capability, and other vulnerability characteristics are calculated using different indicators and integrated to achieve an indirect reflection of degree of vulnerability (UNDP 2004; UNU-EHS 2013; JRC 2014).
Cross-site scripting (XSS) vulnerabilities are among the most common and serious web application vulnerabilities.
Vulnerability mapping has been used for many years as an effective tool for assessing the potential for aquifer pollution and the most common method of intrinsic vulnerability assessment is DRASTIC (Depth to water table, net Recharge, Aquifer media, Soil media, Topography, Impact of vadose zone and hydraulic Conductivity).
Stroke represents one of the most common causes of brain's vulnerability for many millions of people worldwide.
Software attacks, the most common type of attacks, mainly exploit vulnerabilities like buffer overflow.
The most common impacts as a result of exploited vulnerabilities are loss or corruption of ePHI, disclosure or unavailability of ePHI, loss of software or hardware inventory,and loss of reputation.
