Country
Bangladesh

Source
Research gate publication - conference paper Feb 2019

Title
Measuring vulnerabilities of Bangladeshi websites Feb 2019. - by Md Sadek Ferdous

About
Selection of websites tested for vulnerabilities, sites including: government, banks, defence, stock exchange, educational, advertising, teleoperators, news & media. Testing using white box (source code analysis) and black box analysis (penetration testing), including SQL injection, XSS, broke authentication & sessions, CSRF, port scan attack and TLS.

Key findings
Testing found 36% websites were secure but 64% were running multiple vulnerabilities, with SQL injection, XSS & TLS issues commonly identified. Educational, financial or public sector websites are mostly affected cause of SQL injection, XSS or CSRF exploits. interesting that even though these are well known web security vulnerabilities the majority of selected websites are still susceptible to the vulnerabilities.

Website
https://www.researchgate.net/publication/330739030_Measuring_Vulnerabilities_of_Bangladeshi_Websites