In the last 25 years the most common vulnerabilities are?
From VRT-Blog at snort.org
Total vulnerabilities and highly critical vulnerabilities were up in 2012 after a significant downswing over the previous few years; 2012 was a record-breaking year for the number of most critical vulnerabilities, those with a CVSS score of 10.
Buffer overflows continue to be the most important type of vulnerability, with 35% of the total share of critical vulnerabilities over the last 25 years.
Interesting to note that Microsoft also has been bumped as the top vendor (highest number of vulnerabilities)
Oracle (with Java) has replaced Microsoft.