A full 70 percent of applications being used today have at least one security flaw stemming from the use of an open-source library. Cross-site scripting (XSS) is the most common vulnerability category found in libraries present in 30 percent of them. A single bug can affect hundreds of applications thanks to code re-use. A lack of awareness about where and how open source libraries are being used is problematic, researchers say. The good news is that addressing security flaws in these libraries is not a huge lift.
Source: https://threatpost.com/70-of-apps-open-source-bugs/156040/