Cybersecurity Checklist: Shielding Web Apps from Exploits