The following site presents a taxonomy of software security errors developed by the Fortify Software Security Research Group. Each vulnerability category is accompanied by a detailed description of the issue with references to original sources, and code excerpts, where applicable, to better illustrate the problem.
http://www.fortify.com/vulncat/
This will be good resource for security analysts\software developers who want to know kind of vulnerabilities possible in different kind of languages\environments(ColdFusion, PHP, Java, ASP, ASP.NET etc).
Must visit website for newbie's in application security.