Once again, in line with maltainfosec’s aim of disseminating useful information on common web vulnerability threats, Veracode have published a number of free easy-to-understand security threat guides proving useful for audiences ranging from IT executives to consumer-level cell phone users.
Each guide consists of key concepts, impacts and videos giving an explanation of the threat itself. You can grab free these guides through the following links:
SQL Injection: http://www.veracode.com/security/sql-injection
Cross Site Scripting: http://www.veracode.com/security/xss
Cross Site Request Forgery: http://www.veracode.com/security/csrf
LDAP Injection: http://www.veracode.com/security/ldap-injection
Mobile Code Security: http://www.veracode.com/security/mobile-code-security
We hope we find these guides as useful as we found them!