Web 2.0, that silly overused label for what is basically a social, community-based web, has been the subject of some concern for security researchers (WebSense Veep Dan Hubbard describes it as “Web 2 dot uh oh”).
Dharmesh M Mehta shares those concerns and has published a paper on the subject. It’s available at OWASP, in both PDF and HTML versions.
Alex Eckelberry