In the 2012 Web Application Vulnerability Scanners Benchmark report, which was carried out by Shay-Chen on his website, Sectooladdict, Acunetix Web Vulnerability Scanner topped the Cross-Site Scripting and SQL Injection tests with a 100% detection rate and 0% false positives!

Click here to read the benchmark results for the 2013/4 study and see how Acunetix Web Vulnerability Scanner v9 compared to other web application scanners.

Having a scanner that can detect 100% of the web vulnerabilities is very important, but having a web vulnerability scanner that reports little or no false positives is even more important. Web security experts can be more efficient and secure more web applications as they no longer need to spend countless hours checking false positives. To further ease the difficult job of penetration testing, the new Acunetix WVS version 8 will automatically verify definite positive results.

Here’s a brief overview of the results, proving again that Acunetix Web Vulnerability Scanner is a leader in the field:

Web Application Scanner SQL Results from Sectooladdict

Web Application Scanner XSS Results from Sectooladdict

When compared to last year’s benchmark, Shay-Chen said, “Acunetix WVS – a dramatic improvement in the detection accuracy of SQLi (fantastic result!) and XSS (fantastic result!), and new results for Path Traversal, RFI and WIVET.”

Take a look at the full benchmark report on Sectooladdict. Download the free trial of Acunetix Web Vulnerability Scanner to see for yourself why it was listed top of the SQL Injection and Cross Site Scripting categories.

“Like” and Share this article on the Acunetix Facebook Page.


Acunetix developers and tech agents regularly contribute to the blog. All the Acunetix developers come with years of experience in the web security sphere.