Developers are failing to meet industry security standards when creating new software, according to testing firm Veracode.
Data collected on 2,900 applications by the company's security verification service suggests that more than half of tested applications contain " unacceptable" levels of vulnerabilities.
Financial sector applications had the lowest vulnerability levels, and mission-critical applications in general were found to be less vulnerable.
Web-based applications were found to be particularly vulnerable, however. More than 80 per cent of submitted web applications contained errors listed in the Open Web Application Security Project's Top 10 risk list.
Sam King, vice president of product marketing at Veracode, told V3.co.uk that the high number of vulnerabilities in web applications could be down to the skill of the developer and heightened interest in testing web applications.
King shot down the notion that data stored on premise is more secure than cloud computing services, or that installed applications are inherently more secure.
Instead, she suggests that companies are adopting stricter testing practices that should have been in use all along.
"The deployment method of your software should not affect the security testing," King said. "The data that is on premise is just as much a target because of vulnerabilities that exist in your everyday software."
Cotton seedling freezes to death as Chang'e-4 shuts down for the Moon's 14-day lunar night
Fortnite easily out-earns PUBG, Assassin's Creed Odyssey and Red Dead Redemption 2 in 2018
Meteor showers as a service will be visible for about 100 kilometres in all directions
Saturn's rings only formed in the past 100 million years, suggests analysis of Cassini space probe data
New findings contradict conventional belief that Saturn's rings were formed along with the planet about 4.5 billion years ago