secure

AcuMonitor could have Detected PayPal’s Blind XSS Vulnerability

Vulnerability-Lab, a Germany-based security research company, recently identified an application-side validation web vulnerability, which allows an attacker to inject code in his user profile. The injected code gets executed when a PayPal employee loads the user’s details on PayPal’s backend … [+]

puzzle-resized

Common Platform Enumeration (CPE) Explained

When running a Network Scan on your perimeter server using Acunetix Online Vulnerability Scanner (OVS), one of the Informational alerts shown in the scan results is the CPE Inventory. The data that is collected during the scan is aggregated using … [+]

security---resized

How to Configure your Web Server to Not Disclose its Identity

If you are running a web server, that web server is probably showing the world what type of server it is, and possibly its version number. This information is ignored by most people, with the exception of hackers, who use this … [+]

SecureNetwork-resized

The Importance of Scanning your Internet-Facing Assets

If your network is in any way connected to the Internet, the security of your network is being put to the test. Your Internet-facing servers are being probed by hackers looking for ways to damage your resources or steal them. … [+]

Acunetix Web Vulnerability Scanner v9, build 20140206 includes several new tests for vulnerabilities on well-known web applications

Acunetix Web Vulnerability Scanner version 9, build 20140206 is able to scan WordPress more efficiently, and includes various new checks for vulnerabilities in well-known systems such as MediaWiki, IBM Web Content Manager, Joomla! and Oracle. New Functionality in Acunetix Web … [+]

Acunetix Web Vulnerability Scanner v9, build 20131009 includes checks for HTML Injection and the detection of weak passwords in Joomla! and Django

Acunetix Web Vulnerability Scanner version 9, build 20131009 includes checks for HTML Injection, and adds the detection of weak passwords in Joomla! and Django’s Administrative interfaces. In addition, the new build includes the detection of readme documentation files, together with … [+]

Acunetix Web Vulnerability Scanner v9 build 20130904 introduces detection of BREACH and CRIME SSL vulnerabilities

Acunetix Web Vulnerability Scanner v9 build 20130904 introduces detection of BREACH and CRIME SSL vulnerabilities

Acunetix Web Vulnerability Scanner version 9, build 20130904 contains various new features including the detection of BREACH and CRIME SSL / TLS vulnerabilities, the detection of vulnerabilities in OpenX and vBulletin, and various other improvements. New Functionality Implemented the detection … [+]

OWASP Updated the Top 10 Web Vulnerabilities for 2013 – Should I Bother?

OWASP Updated the Top 10 List of Risks for 2013 – Should I Bother?

Last week, the OWASP team officially updated the Top 10 list of risks so as to make it relevant for the web attack vectors identified in the last three years. The OWASP Top 10 summarizes and often combines web application vulnerabilities … [+]

New Report for OWASP Top 10, 2013 in Acunetix Web Vulnerability Scanner v8 build 20130619

Download the latest build for Acunetix Web Vulnerability Scanner v8 and be fully compliant with the most recent OWASP Top 10 2013 list of risks. The main feature included in Acunetix Web Vulnerability Scanner version 8, build 20130619 is the … [+]

This new Acunetix WVS 8 Build checks for WordPress vulnerabilities

New WordPress Checks in Acunetix Web Vulnerability Scanner v8 build 20130416

This new release of Acunetix Web Vulnerability Scanner version 8, build 20130416, includes new and improved vulnerability checks which target WordPress installations, web applications hosted on Amazon S3, various other web applications. New Functionality Added a test that enumerates valid … [+]