The Web Application Hacker's Handbook - Finding and Exploiting Security Flaws

The highly successful security book returns with a new edition, completely updated Web applications are the front door to most organizations, exposing them to attacks that may disclose personal information, execute fraudulent transactions, or compromise ordinary users.