New report provides statistics on web application vulnerabilities, based on client security audits performed with PT Application Inspector in 2017. 94 percent of applications had at least one high-severity vulnerability, demonstrating that websites are a critical weakness for organizations. Financial services and government web applications are at greatest risk from hackers. The most common vulnerability across the board was Cross-Site Scripting (affecting 82% of tested web applications), which allows attackers to perform phishing attacks against web application users or infect their computers with malware.”]
Source: https://informationsecuritybuzz.com/study-research/positive-technologies-research/