May 2008 — News

Print this article | Email this article

Click here to receive your FREE subscription to T.H.E. Journal

Study: Top Web Application Vulnerabilities Remain Unfixed

  • SQL injection: 27 percent;
  • Cross-site scripting: 24 percent;
  • Miscellaneous: 15 percent;
  • Web servers: 12 percent;
  • Directory traversal: 10 percent;
  • Remote file inclusion: 4 percent;
  • Media applications: 3 percent;
  • Web browsers: 3 percent;
  • Authorization and authentication: 2 percent; and
  • Cross-site request forgery: 2 percent.

The complete study, with breakdowns of the top-10 specific vulnerabilities, is available for download from Cenzic's site in PDF format here.

Get daily news from THE Journal's RSS News Feed

About the author: David Nagel is the executive editor for 1105 Media's online education technology publications, including THE Journal and Campus Technology. He can be reached at dnagel@1105media.com.

Proposals for articles and tips for news stories, as well as questions and comments about this publication, should be submitted to David Nagel, executive editor, at dnagel@1105media.com.

Cite this Site

"Study: Top Web Application Vulnerabilities Remain Unfixed," T.H.E. Journal, 5/13/2008, http://www.thejournal.com/articles/22603

copy text (above) for proper citation

Enter the Greenlight Essay Contest

Students: Tell us how your school can use technology to protect the environment. Win a 30-seat computer lab! Sponsored by PC Mall Gov, HP, InFocus and T.H.E. Journal
www.pcmallgov.com/
greenlightcontest