Vulnerabilities Hall of Fame

Presented by

Tim Jarrett, Veracode Director of Product Management

About this talk

99 problems – and a bug is always one. Each year for our State of Software Security (SOSS) report we take a look at the most prominent (and problematic) flaws to see which ones are topping the charts. But we don’t just do it for the thrill; we rely on that data to understand the trends in application security, including which exploits developers like you should keep an eye on, such as: • Cross-Site Scripting: 75% of PHP applications have a Cross-Site Scripting flaw • CRLF Injections: 65% of applications are vulnerable to CRLF injection exploits • Code Quality: 54% of apps written in Java and .Net have code quality flaws In order to write more secure code and safeguard your applications against problematic threats, it’s critical that you keep a pulse on trends like these. Join this session to see the flaws that made it into our Vulnerability Hall of Fame and learn which languages they tend to impact the most so you can stay one step ahead. Interested in learning more about the findings from this year's SOSS report? Tune into sessions from this year's Hot SOSS virtual summit:
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (395)
Subscribers (31078)
Veracode is intelligent software security. The Veracode Software Security Platform continuously finds flaws and vulnerabilities at every stage of the modern software development lifecycle. Prompted by powerful AI trained by trillions of lines of code, Veracode customers fix flaws faster with high accuracy. Trusted by security teams, developers, and business leaders from thousands of the world’s leading organizations, Veracode is the pioneer, continuing to redefine what intelligent software security means. Learn more at