Here are a few OWASP code review resources. You can find their wiki page here: https://www.owasp.org/index.php/Category:OWASP_Code_Review_Project
Additional here is the top nine code flaws list.
Also check out the tool code crawler. You can either find more info from OWASP wiki page or check out my security tools page.