New build adds detection for CSP, SRI, Node.js source disclosure and Ghostscript RCE vulnerabilities

Acunetix version 12 (build 12.0.181012141) has been released. This new build reports sites that do not implement Content Security Policy (CSP) or Subresource Integrity (SRI) and detects Node.js source disclosure, Ghostscript RCE, SSRF in Paperclip and other vulnerabilities. This new build has a good number of updates and some important fixes. Below is a full […]

Read More →

New build adds detection for Web Cache Poisoning, Apache Struts RCE and URL rewrite vulnerabilities

Acunetix version 12 (build 12.0.180911134) has been released. This new build adds two new AcuMonitor checks, detection of Web Cache Poisoning, Apache Struts RCE, URL rewrite vulnerabilities and Drupal Core Open Redirect. This new build has a good number of updates and some important fixes. Below is a full list of updates. New Vulnerability Checks […]

Read More →

New build introduces vulnerability checks for vulnerabilities in Liferay, Apache Shiro, RichFaces, Telerik and Tomcat

Acunetix v12 (build 12.0.180821106) has been released. This new build adds checks for vulnerabilities in Liferay, Apache Shiro, RichFaces, Telerik and Tomcat. The new build also includes a number of updates and fixes. Below is a full list of updates. New vulnerability checks Detection of Liferay TunnelServlet Deserialization Remote Code Execution Detection of Liferay XMLRPC […]

Read More →

How do I enable 2FA on my account?

Two Factor Authentication (2FA) adds an extra level of security when logging into Acunetix. When 2FA is enabled, anyone accessing the Acunetix will need to make use of a 2FA Authentication app to login to Acunetix.This article explains how to enable 2FA for your Acunetix account. Login to Acunetix and change to your Profile page […]

Read More →

How do I reset 2FA on my account?

There are situations that require 2FA to be reset. This can happen when the device used for 2FA authentication is lost, broken and not accessible any longer. In such an eventuality, you will need to do one of the following: If you are an Acunetix Administrator, you will need to use the Acunetix Administrative Password […]

Read More →

New build introduces HTTP Responses in Alerts, adds manual intervention, vulnerability checks in Cisco ASA, Apache Tomcat

Acunetix v12 (build 12.0.180725167) has been released. This new build adds detection for vulnerabilities in Cisco ASA, Apache Tomcat, Altassian Jira, Spring, JBoss and misconfigured nginx installations. The new build also includes HTTP Responses in the vulnerability alerts, and re-introduces manual intervention in the Login Sequence Recorder and a good number of additional updates and […]

Read More →

How many users can be created in Acunetix?

Acunetix is a multi-user system. The first account that is created is the main admin account, also referred to as the root account. This main admin account can create additional users, giving a role to each user account and configuring which Scan Targets can be scanned or reported on. More information on creating and managing […]

Read More →

Will my Target settings and scan data be retained when upgrading from Acunetix v11 to Acunetix v12?

When you install Acunetix v12 on the same machine as Acunetix v11, your Acunetix settings, Targets, Scan and Report data will all be retained. You will just need to install Acunetix v12 on the same machine as Acunetix v11,and your Acunetix installation will be upgraded automatically. Follow the instructions in [link to previous article] for […]

Read More →