List of 25 most dangerous programming errors issued Monday by MITRE/SANS Institute and SANS Institute. Release coincides with release of Common Weakness Scoring System. List updates a list issued 2. years ago; errors in the original list were not ranked. “This year’s list is a collection of the worst software weaknesses that happen the most and are easiest to exploit,” MITRE CWE Project Leader Bob Martin says. “They’ll even steal data one byte at a time if they have to, and they have the patience and know-how to do so””]
Source: https://www.healthcareinfosecurity.com/sql-injection-deemed-no-1-software-flaw-a-3796