This is a nice list of items to run your web application through in order to make sure you are at least being a bit paranoid about security. I hope to make it through this list on a number of apps I have been working on the next couple of days.
Web Application Testing cheatsheet | SecGuru
Web Application Testing cheatsheet
From Param Singh
A handy cheatsheet which points out web application vulnerabilities that should be checked during a penetration test assignment. New web vulnerabilities will be added to this cheatsheet. Please feel free to comment and help us in making this cheatsheet better !