There has been many programming languages that has been used by developers to design their site or the management software and due to the increase in the cyber attacks, there has been an analysis that has been carried out to find the most vulnerable programming language.
Security Researchers analysed more than 200 000 web applications that has been developed in various platforms and it has been found that some possess very critical threats.
They analysed the threats that has been faced by the applications and then they have released the result with the title "The most vulnerable programming language of the year - 2015".
Programming language #Classical ASP tops the list and then comes the #ColdFusion and then came the most famous scripting language "PHP".
Actually the most vulnerable language of the year is PHP because the other two are almost not in use and PHP has been used in almost all sites.
It is found that the sites developed by PHP are vulnerable to XSS (Cross Site Scripting), SQLi (SQL Injection). Many are vulnerable to command injection, improper storage management and information leakage.
Among them XSS and SQLi are the components of OWASP Top 10 vulnerabilities for web applications. Developers are advised to use the language wisely as JAVA and .NET are considered to be secure than PHP.
P.S : The post is to create awareness and not to create any negative impact.
No comments:
Post a Comment