The number of websites and applications that are compromised daily by attackers searching for sensitive data or being used as a vector of entry to companies, continues to reach new levels. Customer passwords, personally identifiable information, financial data, health data or intellectual property, that have websites and related services are extremely important for organizations. The risk factors for intrusion are many and are growing continuously. Even a simple plugin or design theme can lead to a violation of your organization’s data and potentially the internal network. Do not let your company be on the news for being the last website violated. Developing secure web applications is difficult enough if you do not focus on security throughout the process. Even experienced web application developers will never have heard of the common exploit types against their development platform. With potential vulnerabilities not only in their own code but in the libraries and frameworks they use, the exploitation potential is quite high. In addition, the web application server and supported modules can also lead to exploitation in fringe cases depending on the configuration.