I came across a downloadable pdf document while browsing the Net-Security site today.
The document has 50 pages of attack classifications as well as an appendix on HTTP Response Splitting and another on Web Server/Application Fingerprinting.
Yet another document to be read and added to your web security library!