Application Auditing

SQL Injection
Cross Site Scripting
File Inclusion