Defence in Depth – Part 4 – Validate everything, Parameterize SQL queries

Trust no one, validate everything Unfortunately, most vulnerabilities at the application layer can’t simply be patched by applying an update. In order to fix web application vulnerabilities, software engineers often need to correct mistakes within the application code. It’s therefore ideal for software engineers to understand the security risks associated with user input. At the […]

Read More →

New Acunetix update includes security checks for Joomla! Core RCE, improved XXE tests and more

New updates have been released that test for a new Joomla! remote code execution vulnerability affecting versions 1.5.0 through 3.4.5 CVE-2015-8562. Other updates also include improved XML External Entity (XXE) testing, multiple Cross-site Scripting tests in commonly used libraries and other improvements/bug fixes. Below is the full list of updates. New Features Added a test for […]

Read More →

Application Settings in Acunetix WVS

Acunetix Web Vulnerability Scanner (WVS) configuration settings can be accessed from Configuration > Application Settings in the Tools Explorer window pane. Application Updates In the Application Updates node you can configure when the application should check for both vulnerability and application updates. You can also configure the Proxy Server settings if your Internet connection must […]

Read More →

Highlights from Security Leaders in Sao Paulo

Sunlit Technologies the Acunetix distributor for Brazil, exhibited at the 6th edition of Security Leaders in Sao Paulo on 18th and 19th November 2015, at Fecomércio / SP – Rua Doutor Plinio Barreto, 285 – Sao Paulo. Since 2010, Security Leaders and the Brazilian IT market have been following a broad discussion about new challenges and trends involving technological solutions […]

Read More →