Open Web Application Security Project(OWASP), is an international non-profit organization dedicated to web application security.
The OWASP Top 10 is a regularly-updated report about security for web application security, concentrating on the 10 most critical risks. The report is put together by a team of security experts from all over the world. OWASPis the Top 10 as an ‘awareness document’ and they recommend that all companies incorporate the report into their processes in order to minimize and/or mitigate security risks.
Here’s top 10 software vulnerability list for 2019
3)Failure to protect sensitive data
4)Issues with libraries, components, and dependencies
5)Issues with web services and APIs
6)Issues with logging (too little / too much)
8)Missing or broken authentication
9)Missing or broken authorization (access control)