The good news is that Web application vulnerabilities during the first two quarters of 2010 represent a smaller percentage (66%) of total commercial application vulnerabilities (4,019) than they did during the latter two quarters of 2009 (82% of 2652).
The bad news is that Web application vulnerabilities during the first half of the year (2,645) were about the same as the total number of vulnerabilities in commercial apps detected during the second half of 2009 while the overall number of application vulnerabilities in 2010 increased by 50%.

The link for this article located at Information Week is no longer available.