Majority of websites have serious, unfixed vulnerabilities
Solving the problem requires that companies assign staffers to transcribe the vulnerability reports as they come in, or to work with the security vendors to have them put the results right into the bug tracking systems.
"At WhiteHat, we have an API to export the vulnerability data we find into XML," said Grossman. "Our customers have their bug tracking system programmatically wired, so it just flows automatically into the system and becomes part of the developers' work flow."
Sign up for Computerworld eNewsletters.