Kamupani RiskSense au'ili'iliga ole 1622 fa'aletonu ile auivi ma fa'avae mo le Upega, fa'ailoa mai le 2010 ia Novema 2019. O nisi fa'ai'uga:
- O le WordPress ma le Apache Struts e faʻatatau mo le 57% o faʻafitauli uma o loʻo saunia ai faʻaoga mo osofaʻiga.
Sosoo mai ai Drupal, Ruby on Rails ma Laravel. O le lisi o faʻasalalauga faʻatasi ai ma faʻalavelave faʻaleagaina e aofia ai foi Node.js ma Django, ae na latou maua uma le tasi faʻafitauli ma se faʻaogaina mai le 56 ma le 66 avanoa avanoa. O faʻafitauli sili ona taatele i le WordPress o tusitusiga faʻasalalau, ma i Apache Struts o loʻo i ai faʻafitauli i le faʻamaoniaina o mea. - Poloketi ile PHP ma Java gagana e taʻitaʻia ai le numera o faʻafitauli ma faʻaoga o loʻo iai.
- I le 2019, na faʻaititia le aofaʻi o faʻafitauli, ae o le vaega o faʻafitauli faʻatasi ma faʻaoga na faʻatupulaia mai le 3.9% i le 8.6%, faʻapena ona o le siʻitia o le numera o faʻaoga mo Ruby on Rails, WordPress ma Java.
- O le fa'alavelave masani i le 10-tausaga fa'ata'ita'iga o le cross-site scripting (XSS). I le 5-tausaga faʻataʻitaʻiga, o taʻitaʻi o ni faʻafitauli e mafua mai i le faʻamaonia le saʻo o faʻamatalaga faʻapipiʻi (24% o faʻafitauli uma ma faʻaogaina), ma le XSS na pa'ū i le tulaga 5.
- O faʻafitauli e mafai ai ona suitulaga i le SQL, code ma poloaiga e seasea lava, ae latou te taʻitaʻia i tulaga o le maua o faʻaoga - faʻaoga ua saunia mo le sili atu i le 50% o ia faʻafitauli (60% mo le sui o le poloaiga ma le 39% mo le suia o tulafono) .
puna: opennet.ru