Article Archive for November 2009
When evaluating an automated web application security tool, such as Acunetix WVS, the most common questions one would ask are “Does this tool perform invasive scans?”, or “Will it damage my website?”. Similar questions are …
An updated build for Acunetix WVS Version 6.5 has been released with a number of improvements, bug fixes, and most important of all, a good number of new security checks.
New:
New security checks of AcuSensor Technology
curl_exec() …
PHP version 5.3.1 was just released. This release contains a patch for a denial of service condition we’ve reported some time ago.
The problem is related with PHP’s handling of RFC 1867 (Form-based File Upload in …
The US Air Force’s mission is to fly, fight and win… in air, space and Cyberspace. US Air Force has an elite force defending people from millions of cyber attacks every day in their newest …
The earliest public mention I could find of SQL Injection (‘piggybacking SQL statements’ as the author put it) was from someone who called himself Rain Forest Puppy (RFP). In 1998 RFP wrote an article for …
Question and Answer on Help Net Security; Web Application Security with Robert Abela, Acunetix Technical Manager. In this interview, Robert discusses:
web applicaiton attack vectors
the impact of Cross-Site Scripting
advice on securing web applications
Question and Answer on …
