- SQL injection, including Blind SQL injection
- Cross-site Scripting (XSS), including advanced DOM-based XSS
- Server-side request forgery (SSRF) and Host Header attacks
Check your website for threats from libraries and other componentsYour website security can also be threatened by vulnerabilities in open source libraries and frameworks. Acunetix looks for vulnerabilities in both your and third-party code such as:
- Known risks in WordPress core, themes, and plugins.
- URLs linked to phishing and website malware
- Vulnerabilities in RESTful and SOAP APIs whether they’re using JSON, or XML
- Acunetix Premium uses OpenVAS scanner to find external network vulnerabilities like open ports and server misconfigurations.
Create a Plan to Audit Your WebsiteWith so many potential website security vulnerabilities, it’s important to have a plan to make sure your vulnerability management efforts are effective. You don’t want to become aware of a hacked website when it is too late. Use the Acunetix online website vulnerability scanner to make it easy and effective to comprehensively scan your website:
- Amongst the industry’s highest vulnerability detection rate with the least number of false positives, ensuring you don’t waste time chasing non-existent problems and can focus on closing real security holes
- Check test results in comprehensive scan reports that identify issues (tracking down to the line of code causing them when using AcuSensor)
- Integrate Acunetix with Atlassian JIRA, GitHub and other bug tracking tools to make it easy to manage remediation
- Use comparison reports to verify that web vulnerabilities have been properly corrected
Learn more about prominent vulnerabilities, keep up with recent product updates, and catch the latest news from Acunetix.
"We use Acunetix as part of our Security in the SDLC and to test code in DEV and SIT before being promoted to Production."Kurt Zanzi, Xerox CA-MMIS Information Securtiy Office, Xerox