acunetix_logo_blog_post_100x74

Featured Article

Acunetix WVS v9.5 build 20140902 detects Hibernate Query Injection, Format Strings and more

September 02, 2014 - 11:30am

Acunetix Web Vulnerability Scanner version 9.5 build 20140902 has been updated to include new vulnerability checks, including detection of Hibernate Query Injection, format strings vulnerabilities, MySQL username disclosure and others, including some, in well-known web applications. This new build also ... [+]


How to Configure Acunetix WVS to Successfully Crawl WIVET

How to Configure Acunetix WVS to Successfully Crawl WIVET

WIVET stands for Web Input Extractor Teaser, and is a web application that is designed to test the crawling capabilities of web application scanners. WIVET has been used in web application scanner reviews, such as the reputable review from Shay … [+]

shellshock

ShellShock’s magnitude for potential damage – truly shocking!

48 hours since the latest in the series of BIG BUGS 2014 has made the news, and the Internet community is still struggling to assess the damage. After the initial moments of disbelief, researchers started coming to terms with the … [+]

CVE-2014-6271: Bash code injection vulnerability

BASH Vulnerability leaves IT Experts Shell Shocked!

Yesterday, a critical vulnerability was reported in GNU Bash.  Bash is the Bourne Again Shell that is installed on all Linux distributions.   The vulnerability is related to the way environment variables are parsed before running the BASH shell. It is possible to … [+]

Acunetix logo

Acunetix OVS Update Spots Vulnerabilities with Military Precision

An important update has just been rolled out to Acunetix Online Vulnerability Scanner (OVS) which includes 2 features unique to Acunetix – AcuSensor and AcuMonitor. Both technologies have been successfully used in Acunetix WVS to enhance scan results by improving … [+]

DDOS ATTACK

Preventing NTP Reflection DDOS Attacks Based on CVE-2013-5211

NTP is the standard protocol for time synchronization in the IT industry and is widely used by servers, mobile devices, endpoints and network devices, irrespective of their vendor. Latest definition of NTP is at version 4, described in RFC 5905. … [+]

password

Statistics about the leaked Gmail, Yandex, Mail.ru passwords

Around 10 million email addresses and passwords were recently leaked on a Russian Bitcoin forum. Many websites report about 5 million Gmail accounts the leak includes also accounts from 2 popular russian mail providers (Yandex and Mail.ru). The leak contains … [+]

Alliance Partners

Alliance Training Courses Improve Acunetix User Skills

Alliance Technology Partners, partnering with Acunetix since 2007, have announced they shall be offering Acunetix Training Courses, delivered via the web, by two of their senior security engineers. This Basic Training 3 hour course, is highly interactive and tailored to … [+]

WordPress

WordPress 4.0 “Benny” released

The long awaited WordPress version 4.0, codenamed “Benny” in honour of jazz clarinettist and band leader Benny Goodman has been released.  While this does seem like a major release to some of us, since it includes a good amount of … [+]

WordPress

List of checks done by Acunetix on WordPress

An Acunetix web vulnerability scan is able to detect a WordPress installation, and will execute various WordPress related checks when the popular blogging web application is identified. When WordPress is detected, Acunetix will issue the following knowledge base entry. Acunetix … [+]