Providing customers new information, convenience communication channels, and the best service quality are important indicator to enhance industries competitivity. Web app is a necessary asset to accomplish these missions. However, information security issues of computer facility and software system are more and more serious. Internet intrusion, system security vulnerabilities continuously attack the normal operation software system to cause Web App security face to serious challenge. How to effectively improve Web App security becomes a topic which worth deeply discuss. In the early, security issues did not be respected in Web App development process often cause Web App full of a lot of security holes and defects. Vulnerability scanner can help identify the secure holes and defects of Web app. Then, combining high quality function to repair the vulnerability can effectively increase Web app security. In this paper, based on vulnerability scanning and reusable repair functions, propose a Web App Security Improvement procedure (WASIP). Applied WASIP to repair Web app secure holes and defects can concretely improve Web app operating security.