The OWASP Top Ten 2010 Release Candidate 1 is now available for review. Security Ninja has comprehensive summary of the vulnerability list and excellent comments.
OWASP is far and away the most comprehensive information source for secure web application development guidance. And it's free!!
