acunetix_logo_blog_post_100x74

Featured Article

Acunetix WVS v9.5 build 20140902 detects Hibernate Query Injection, Format Strings and more

September 02, 2014 - 11:30am

Acunetix Web Vulnerability Scanner version 9.5 build 20140902 has been updated to include new vulnerability checks, including detection of Hibernate Query Injection, format strings vulnerabilities, MySQL username disclosure and others, including some, in well-known web applications. This new build also ... [+]


Checking For Vulnerabilities in Path Fragments

Checking For Vulnerabilities in Path Fragments

Note: This article refers to an older version of Acunetix. Click here to download the latest version. Nowadays, more and more people are using URL rewrite techniques to increase their “friendliness” to both users and search engines. With URL rewrites, … [+]

The One Web Security Testing Oversight You Don't Want to Miss

The One Web Security Testing Oversight You Don't Want to Miss

As I’ve written about scoping your Web security tests in the past, it’s not something to be taken lightly. Interestingly, there’s one aspect of Web security testing where I’m still seeing a big disconnect. The issue is how many critical … [+]

The Odds of Web Malware Infections and Your Choice in that Matter

The Odds of Web Malware Infections and Your Choice in that Matter

The Verizon 2011 Data Breach Investigations Report states that the Web is the second most common infection vector for malware. The recent lilupophilupop.com SQL injection attacks infecting over a million web pages is a good example of what can happen. … [+]

Acunetix Web Vulnerability Scanner 8 Combats Rise in Web Hacking Attacks

Acunetix Web Vulnerability Scanner 8 Combats Rise in Web Hacking Attacks

New Automation & Auto-Configuration Features Make Securing Your Website Easier and Faster London, 16th Feburary 2012 – Acunetix, a name on the forefront of the web application security industry, today announced the 8th version of its popular Web Vulnerability Scanner product. … [+]

HTTP Parameter Pollution - a Newer Class of Injection Attack

HTTP Parameter Pollution – a Newer Class of Injection Attack

Nowadays, many components from web applications are commonly run on the user’s computer (such as JavaScript), and not just on the application’s provider server (such as Servlets). As time goes by, there is the need for web applications to provide … [+]

Online Security Considerations when Traveling

Online Security Considerations when Traveling

Whenever my friends or family members tell me they’ll be travelling abroad, I always like to remind them not to overlook online security when it comes to their website or blog, especially if accessing their accounts from an unknown computer. No … [+]

There’s More to Web Security than Meets the Eye

There’s More to Web Security than Meets the Eye

When we talk about Web security, we typically think about the common OWASP-type elements: SQL injection, cross-site scripting, passwords, encryption and the like. That’s fine but those areas can’t be our only focus. There’s so much more to managing information … [+]

Web Passwords are Often the Weakest Link

Web Passwords are Often the Weakest Link

Of the highly-visible hacks and data breaches over the past year, a large number of them were related to criminal hackers cracking weak Web passwords. This is arguably the most common Web flaw and something that anyone can exploit at … [+]

Web Security is Like the Layers of an Onion

Web Security is Like the Layers of an Onion

If you’ve ever peeled an onion, you’ve seen the multiple layers that make up its existence all the way to the core. Securing your Web presence requires the same approach and it’s called “layered security”. Also referred to as “defense-in-depth”, … [+]

Acunetix WVS 8 Released Candidate Now Available!

Acunetix WVS 8 Released Candidate Now Available!

We are pleased to announce a Release Candidate (RC) of the much-awaited Acunetix Web Vulnerability Scanner, version 8. This build fixes issues that were reported during the Beta stages of development and also adds a number of improvements which boost … [+]