Note: This article refers to an older version of Acunetix. Click here to download the latest version. We are continuing with the list of security vulnerabilities found in a number of web applications while testing our latest version of Acunetix WVS v7 . In this…
Ways to avoid email floods when running Web vulnerability scans
If you’ve ever ran a Web vulnerability scan you’ve likely experienced this situation. You fire up your scanner, tweak your settings, and click Start. The next thing you know people in customer service, marketing, IT, etc. are wondering why they’re getting hit with hundreds –…
SQL Injection and XSS vulnerabilities in CubeCart version 4.3.3
Note: This article refers to an older version of Acunetix. Click here to download the latest version. Note: This article refers to an older version of Acunetix. Click here to download the latest version. We are continuing with the list of security vulnerabilities found in…
Web Security problems in Zenphoto version 1.3
Note: This article refers to an older version of Acunetix. Click here to download the latest version. We are continuing with the list of security vulnerabilities found in a number of web applications while testing our latest version of Acunetix WVS v7 . In this…
Security vulnerabilities in Pligg CMS version 1.0.4
Note: This article refers to an older version of Acunetix. Click here to download the latest version. While beta testing the latest version of Acunetix WVS v7, we found a large number of security vulnerabilities in various web applications. In the following days we will…
Don't be an A$$
Welcome back from Summer, and I hope everyone has had a great break. Myself, I was able to take some time in July, but got real busy in August. During the summer I helped two very close friends with some significant IT issues which made…
Getting developers on board with security – once and for all
Making Web application security work is more than simply telling developers they need to write better code. We can scream “Write better code!” and “Integrate security into the application lifecycle!” at developers until end of time but that’s not going to fix the fundamental problems…
Web security oversights: Don’t overlook the “small” stuff
I was reviewing the most recent SANS @RISK Consensus Security Vulnerability Alert and it reminded me of how easy it is to get caught up in the big stuff and overlook the seemingly innocuous when performing Web security assessments. The @RISK alert lists 69 unique…
Cloud Computing Benefits
Mention “the cloud” and many who are not heavily involved in the preparation and creation of internet-based resources will turn their heads skyward. To be fair, cloud computing can be a difficult concept to grasp even for those who work within the IT industry because…