Security threats develop and evolve with startling rapidity, with the attackers always seeking to stay one step ahead of the S&R professional. Unfortunately, it is alarmingly common to see well known vulnerabilities and weakness being baked right in to new applications and systems just as if the past 5 years had never happened! A recent report released by Alex Hopkins of Context Information Security shines a light on the vulnerabilities they discovered while testing almost 600 pre-release web applications during 2011. The headlines for me were: On average, the number of issues discovered per application is on the rise, with two thirds of web applications affected by cross site scripting (XSS)”]
Source: https://www.csoonline.com/article/2136112/rewind-and-replay-for-web-app-vulnerabilities.html