Well, could the OWASP Top 10 be of some use: https://www.owasp.org/index.php/Top_10_2010-Main? OWASP mainly focuses on web applications. Similarly, http://www.sans.org/top25-software-errors/.
On Oct 22, 2012, at 10:11 , Kivilahti Olli-Antti wrote: > Another issue is with the security review we already have funding for. > As I don't have lots of knowledge about what areas of Evergreen should > be taken a look into (external interfaces), would the community in > general be interested in helping me direct the efforts of our 3rd party > security experts, to key vulnerabilities. Currently I haven't really > dabbled with any EG external services, like SIP so I am largely clueless. > > Olli-Antti Kivilahti > Open Library 2013 > Library of Joensuu Alexey Lazar PALS Information System Developer and Integrator 507-389-2907 http://www.mnpals.org/
