The OWASP Top 10 is a list of the most common security risks on the Internet today.  The #9 risk in the latest edition of the OWASP Top 10 is "Using Components With Known Vulnerabilities".  It may seem obvious that you wouldn't want to use components in your web application that have known vulnerabilities, but it's easier said than done.  In this video, John discusses this problem and outlines some mitigation steps to make sure your web application stays secure.

Related Resources:

• Securing against the OWASP Top 10: Using Components With Known Vulnerabilities
• Common Vulnerabilities and Exposures (CVE) Database
• National Vulnerability Database (NVD)