Almost all web applications, 95% according to the study, have holes in their security, which is an improvement over the prior year where 97% had vulnerabilities.
A web application is a software program that runs on a web server, typically accessed by users through a web browser. Web applications are usually written in programming languages such as PHP, Java, or ASP.NET. Some popular examples of web applications include online shopping carts, content management systems, and social networking sites.
Web application security problems can pose a serious threat to businesses and individuals alike. Hackers can exploit vulnerabilities to gain access to sensitive data, or to launch attacks that disrupt service or damage reputation. As more and more businesses move online, it is essential to understand the risks and take steps to mitigate them.
- Approximately 95% of all web applications have some type of hole in their security measures.
- Fortunately, of the bugs that were found, approximately three quarters of them were only low or medium risk.
- Testing for security holes were considered to be black box or gray box types of tests.
“Weak SSL/TLS configurations were the top vulnerability found in the Synopsys AST services overall tests.”