Web app attack

Definition
A web app attack is

"[a]ny incident in which a web application was the vector of attack. This includes exploits of code level vulnerabilities in the application as well as thwarting authentication mechanisms."