Web Security Zone

Responding to DoS attacks at the web layer

May 15, 2013 - 12:40pm
Known vulnerabilities found in popular WordPress plugins

WordPress Caching Plugins Remote PHP Code Execution

April 23, 2013 - 01:20pm
new-acx-build-finds-wp-vulnerabilities

WordPress Attack Vectors and Open Amazon S3 Buckets Identified by Acunetix WVS

April 18, 2013 - 12:03pm
Did you know that there are risks associated with third-party software?

The Risks Associated with Third-Party Software Components

April 16, 2013 - 12:55pm
What do you do when you can't find every web vulnerability?

What Happens when you can’t Find Every Web Vulnerability?

April 09, 2013 - 02:37pm
Make sure if your security appliance is hackable or not with Acunetix

Is Your Security Appliance Hackable?

April 01, 2013 - 12:26pm
This article shows you how to scan template-based websites with Acunetix WVS

Scanning a Template-based Website Using Acunetix WVS

April 26, 2013 - 10:03am

Scanning a large website very often takes a long time. Using the default settings, Acunetix Web Vulnerability Scanner will first try to identify all the pages using various crawling techniques, and will then proceed to scan the pages that have ... [+]

Responding to DoS attacks at the web layer

MAY 15, 2013 - 12:40pm | 1 Comment

Are you ready to respond to DoS attacks at the web layer? In this article, Kevin Beaver shares an anecdote from his own experience whilst highlighting some important steps to take. First things first; responding to DoS attacks at the … [+]

This article shows you how to scan template-based websites with Acunetix WVS

Scanning a Template-based Website Using Acunetix WVS

APR 26, 2013 - 10:03am | 2 Comments

Scanning a large website very often takes a long time. Using the default settings, Acunetix Web Vulnerability Scanner will first try to identify all the pages using various crawling techniques, and will then proceed to scan the pages that have … [+]

Known vulnerabilities found in popular WordPress plugins

WordPress Caching Plugins Remote PHP Code Execution

APR 23, 2013 - 01:20pm | 14 Comments

Two very popular WordPress caching plugins: WP Super Cache (4,373,811 downloads) and W3 Total Cache (1,975,480 downloads) have been affected by a vulnerability that allows remote users to execute arbitrary PHP code. The affected versions are: WP Super Cache (version 1.2 and below, … [+]

new-acx-build-finds-wp-vulnerabilities

WordPress Attack Vectors and Open Amazon S3 Buckets Identified by Acunetix WVS

APR 18, 2013 - 12:03pm | Post comment

Recently there were a lot of news reports about an ongoing attack on sites using WordPress software. Attackers are using around 90,000 computers to try to brute force WordPress credentials. All these servers are trying common account names like admin, administrator, … [+]

This new Acunetix WVS 8 Build checks for WordPress vulnerabilities

New WordPress Checks in Acunetix Web Vulnerability Scanner v8 build 20130416

APR 18, 2013 - 11:18am | 1 Comment

This new release of Acunetix Web Vulnerability Scanner version 8, build 20130416, includes new and improved vulnerability checks which target WordPress installations, web applications hosted on Amazon S3, various other web applications. New Functionality Added a test that enumerates valid … [+]

Did you know that there are risks associated with third-party software?

The Risks Associated with Third-Party Software Components

APR 16, 2013 - 12:55pm | Post comment

I was recently contacted by a colleague in an information security leadership position who was concerned about his developers using some third-party plug-ins for an enterprise application they were rolling out. His developers wanted to install these third-party components in … [+]

What do you do when you can't find every web vulnerability?

What Happens when you can’t Find Every Web Vulnerability?

APR 09, 2013 - 02:37pm | Post comment

On one end of the application security and IT audit spectrum we have people that overlook the obvious and critical stuff. But just as dangerously, on the other end of the spectrum we have people who want us to find … [+]

Make sure if your security appliance is hackable or not with Acunetix

Is Your Security Appliance Hackable?

APR 01, 2013 - 12:26pm | Post comment

In the late 90’s, businesses embraced the internet; they connected their networks and servers to the internet so their data can be accessed from anywhere around the world. This was a new era that gave businesses the opportunity to grow … [+]

This latest Acunetix build comes with new security tests!

Acunetix WVS Update 20130308 – New Security Tests

APR 01, 2013 - 09:26am | 3 Comments

Apart from the usual bug fixes / new functionality, each Acunetix WVS update generally includes new vulnerability tests or an improvement to existing checks. In this post, I would like to summarize the new security tests added in the latest … [+]

I keep being told that I can't download the latest Acunetix update - what do I do?

Unable to Download Error Whilst Trying to Update Acunetix WVS

MAR 19, 2013 - 11:01am | Post comment

Symptoms When trying to update the latest build from Acunetix WVS, you encounter the following error: Unable to download http://www.acunetix.com/download/ fullver8/2013_03_08_01_webvulnscan8.exe. Try again later. More Information Acunetix has recently changed its update mechanism to a new and secure product download … [+]