acx_logo

Featured Article

More comprehensive scanning with Acunetix WVS v9.5 – Part I

May 05, 2014 - 08:15am

In these 2 articles, I will be detailing the new functionality introduced in Acunetix WVS version 9.5. An important update introduced in the new version of Acunetix WVS is full JSON and XML support. If you are scanning a web ... [+]


When Google claims that "This site may harm your computer"

When Google claims that "This site may harm your computer"

This warning does not refer to this particular site (Acunetix.com) but to quite a few websites out there. This is a notice that will show up when a Google search lists websites that are flagged as dangerous. Google’s search engine … [+]

VIDEO: Web scanning made easy with Acunetix Web Vulnerability Scanner

This short video shows how easy it is to launch a vulnerability scan against a website or web application using the scan wizard in Acunetix WVS. It also shows the amount of technical detail Acunetix WVS reports when a vulnerability … [+]

A quick security analysis of Facebook's Album Privacy

A quick security analysis of Facebook's Album Privacy

Most social networking sites have privacy options which allow users to share photo albums with selected people or groups. Such features encourage end users to upload possibly compromising photos, for example photos of last night’s party. The idea is that … [+]

An in-depth explanation of SQL Injection

SQL Injection is one of the many web attack mechanisms used by hackers to steal data from organizations. It is perhaps one of the most common application layer attack techniques used today. It is the type of attack that takes … [+]

Drupal Local File Inclusion Vulnerability

Drupal Local File Inclusion Vulnerability

I was testing our scanner (with AcuSensor enabled) on Drupal (http://www.drupal.org) and the scanner found a possible File Inclusion vulnerability. As you can see from the screenshot above, the GET variable q was set to start/../../xxx….end and it got partially … [+]

Acunetix Web Vulnerability Scanner Voted Windowsecurity.Com Readers’ Choice Award Winner for the second time

Acunetix Web Vulnerability Scanner Voted Windowsecurity.Com Readers’ Choice Award Winner for the second time

Acunetix WVS Singled Out by Network Security Administrators and Specialists London, UK – 26 February 2009 – Leading Windows Security resource site, WindowSecurity.com, announced today that Acunetix Web Vulnerability Scanner was selected the winner in the Web Application Security category of the … [+]

AcuSensor and the pink blog

AcuSensor and the pink blog

While testing our AcuSensor technology, I downloaded a small PHP blog application from the internet. The installation went smoothly. This particular application was not using a database but it was storing everything in text files. I added a sample blog … [+]

How can low privilege bugs lead to a server compromise?

To address a large number of security concerns, it is often recommended that web applications make effective use of “the principle of least privilege”. The idea is that one should only grant the privileges on the basis that they are … [+]

Updated Acunetix WVS addresses Ananta's comparison report issues

In just 2 weeks, we released an updated version of Acunetix WVS version 6 to address issues reported in an independent web scanner comparison report published by Ananta. What’s for sure is that now we will do even better than … [+]

SQL injection sneaks into Kaspersky's support website

The recent compromise of Kaspersky’s support database left the company with a bit of explaining to do. The hacker published a blog post on hackersblog detailing stunts with Kaspersky’s USA support website. Kaspersky also published their own account based on their log files and the hacker’s (nicknamed unu) blog post. The following is a summary of what happened and how such attacks can be prevented. … [+]