39% Application Error Message30% Cross Site Scripting Vulnerability10% Sensitive Information Leakage7% Browsable Web Directory5% Blind SQL Injection3% Source Code Disclosure Vulnerability2% ASP.NET Debug Feature Enabled2% DOM-Based Cross Site Scripting Vulnerability1% SQL Injection Vulnerability1% OS Command Injection
SQL Injection
CRITICAL
91%
HTTP Basic Authentica-tion Enabled
7%
Invalid TLS/SSL Certi�cate
1%
Others
1%
Cross Site Scripting Vulnerability
HIGH
97%
HTML Injection
1%
Cross Frame Scripting
1%
Others
1%
Application Error Message
MEDIUM
60%
Unencrypted view state in ASP.NET 2.0 could leak sensative information
16%
Browsable Web 11%
Source Code Disclosure
5%
Others
5%
www.indusface.com/infographic
V A D O D A R A M U M B A I B A N G A L O R E D E L H I
Indusface brings to you a first of its kind report on the, “State of Application Security in
India”. This report is an analysis of the vulnerabilities data collected by Indusface’s flagship
web application security solution IndusGuard.
State of ApplicationSecurity in India
11 Years 700+
2.9 Million 4.5 Billion
10,180
19,500
Vulnerability Type by Severity
Indusface is a privately-held, award winning, innovative, visionary, fast growing information security company, trusted by fortune 500 organizations across the globe
and catering to more than 600 customers worldwide across di�erent verticals.
2014 India Top 10 Vulnerability Type
Vulnerabililty Trending
-25
-20
-15
-10
-5
0
5
10
15
20
25
30
35
XSS Vulnerability Trend
-60
-30
0
30
60
90
120
150
SQL Vulnerability Trend
-40
-20
0
20
40
60
80
100
Sensitive Information Leakage Vulnerability Trend
-50
0
50
100
150
200
Source Code Disclosure Vulnerability Trend