In Dan's Blog he talks about the Sans Top 20 Security Vulnerabilities.  The main point being Microsoft SQL Server not making the top 20 but other database systems did.  I looked back at previous years and we had our own section of vulnerabilities.  I am wondering if that was because we were more open?  Or are the different industries looking harder at security issues  more now than in the past.

The Sans site publishes the list and provides useful links and tips to resolve and detect the various Database vulnerabilities mentioned.