I'd say you should find plenty of informations on the OWASP website, on the matter of vulnerabilities in web applications, and informations on how to help make yours more secure.
(But there is so much to say about that subject that you might actually get "more" informations than you'd first like...)
