informIT: An Introduction to Security Testing with Open Source Tools

“I remember my first security bug. It was so simple, I stumbled
over it accidentally. (Well, I told the very angry people who were
upset with me that it was an accident.) The problem started with a
developer who had left his or her user ID in a code comment on the
login page for a production system…”