This book is a practical guide to finding and exploiting security flaws in web applications. Highlights include:

Book details

Title: The Web Application Hacker's Handbook: Finding and Exploiting Security Flaws
Authors: Dafydd Stuttard & Marcus Pinto
Pages: 912
Published: September 2011, Wiley.
ISBN: 1118026470 / 978-1118026472

From the back cover to the second edition:

Copyright © 2011 Dafydd Stuttard and Marcus Pinto. All rights reserved.