With more than 30% of websites on the Internet running on open source Content Management Systems (CMSs) like Drupal, WordPress and Joomla!, CMS security is becoming an increasingly important factor in an organization security. Unfortunately, despite their popularity, thousands of Drupal installations contain high-severity vulnerabilities which could easily allow attackers to gain access to the the web server, or even, in some cases the underlying system.
With Drupal running a significant portion of websites on the Internet, it’s no surprise that it, and CMSs like it are juicy targets for attackers — including novice attackers known as “script kiddies”. To add insult to injury, some organizations may be operating dozens of Drupal websites, making it a nightmare to keep track of security patches of each site they administer.
A Drupal vulnerability scanner you can depend on
Acunetix is a web security scanner featuring a fully fledged Drupal security scanner designed to be lightning fast and dead simple to use while providing all the necessary features to manage and track vulnerabilities from discovery to resolution.
The CMS vulnerability scanner within Acunetix runs tests for vulnerabilities in Drupal core. While Drupal modules can greatly extend the capabilities of a website, they usually expose a greater attack surface since they could be developed and distributed by anyone on the Internet and, as a result may not only contain vulnerabilities, but also malicious code.
Speed without compromises
Additionally, unlike many other CMS vulnerability scanners, Acunetix is lightning fast. With a re-engineered core, and a highly optimized crawler, every inch of Acunetix is tuned for speed and efficiency, allowing it to scan even even the largest Drupal websites without breaking a sweat.
What’s more, Acunetix can throttle the speed at which a vulnerability scan runs, ensuring that even high-traffic sites can be scanned without affecting their performance.
Say goodbye to boring reports
Finally, another problem that Acunetix solves which many other CMS vulnerability scanners sorely lack is the ability to produce great reports. After a vulnerability scan is complete, Acunetix can instantly generate a wide variety of technical and regulatory and compliance reports such as PCI DSS, HIPAA, OWASP Top 10 and many others.
Additionally, Acunetix also allows users to export discovered vulnerabilities to Issue Trackers such as Atlassian JIRA, GitHub and Microsoft Team Foundation Server (TFS).
Take charge of your Joomla CMS vulnerabilities with Acunetix. Try Acunetix online or download it now to try it on premises to gain the insight you need to build and maintain secure web applications and CMSs.
We use Acunetix for initial site enumeration and to ensure that we cover all common surface area and attacks with at least a minimum level of testing. Most of our testing is completed manually and we find logic issues, and so on, but occasionally we focus on difficult to find issues instead of simple issues, like a file upload flaw hidden in the corner of a site that Acunetix brings to our attention.