Over at [Security Through Absurdity] I've posted the first in a series of articles that will explore the most common vulnerabilities and the mind-set of the developers that create them and also explore how to deal with them. The first post in the series takes a look at the OWASP top number 2 vulnerability, Injection (specifically SQL Injection) - which has been a known and solved problem for over 10+ years, yet for some reason, it's still as common as ever.

While not necessarily K2 specific, the principals definately apply to all areas of programming. Check out the article here. Feel free to share your experiences in the comments as well.