If you want to know more about vulnerabilities, create security tools or are looking to improve your ability to make secure software, the Common Weakness Enumeration (CWE) should be at the top of your resource list. Here is an introduction to CWE to get you started.