Today, thousands of applications world-wide web, and mobile media applications are used by people. People are using these applications in a multi-process, using the Internet or mobile devices can easily. These applications facilitate the lives of people. People have been entering a significant amount of information into these applications by information screens every day. Therefore, applications and databases of these applications contain a large amount of information. Each user can only have access to their own knowledge. Each user is the only authority competent in operations. Also, this information should be avoided by malicious people to reach. Only by malicious people to seize the information may not be objective. They can make the system or application may be inaccessible. Therefore, this requires software security and reliability. Therefore, this study aims web software applications, whereas the threats and vulnerabilities, how to be mentioned steps might be taken