Just found the following list on the internet:
1. Cross site scripting (XSS)2. Injection flaws3. Malicious file execution4. Insecure direct object reference5. Cross site request forgery6. Information leakage and improper error handling7. Broken authentication and session management8. Insecure cryptographic storage9. Insecure communications10. Failure to restrict URL access
And that brings me back to the previous post and how important (and sometimes easy) it is to check the own websites for thise kind of vulnerabilities.