Web Scripting Languages Fail OWASP Top 10
Infosecurity Magazine | December 03, 2015
Some 80% of applications written in PHP, Classic ASP and ColdFusion failed at least one of the OWASP Top 10, according to new research conducted by Veracode. The app security firm today released a supplement to its State of Software Security: Focus on Application Development report, covering automated assessments for 208,670 separate apps over the past 18 months. It found that applications written in web scripting languages are much more likely to contain vulnerabilities than those written in .NET or Java.