With more than 30% of websites on the Internet running on open source Content Management Systems (CMSs) like Joomla, WordPress and Drupal, CMS security is becoming an increasingly important factor in an organization security. Unfortunately, despite their popularity, thousands of Joomla installations contain high-severity vulnerabilities which could easily allow attackers to gain access to the the web server (such as Apache HTTP Server or Nginx), or even, in some cases the underlying Linux or Windows operating system.
With Joomla installations making up a significant portion of websites on the Internet, it’s no surprise that it, and CMSs like it are juicy targets for attackers — including novice attackers known as “script kiddies”. To add insult to injury, some organizations may be operating dozens of Joomla websites, making it a nightmare to keep track of security patches of each site they administer.
A Joomla! vulnerability scanner you can depend on
Acunetix is a web security scanner featuring a fully fledged Joomla security scanner designed to be lightning fast and dead simple to use while providing all the necessary features to manage and track vulnerabilities such as Cross-site Scripting (XSS) and SQL injection (SQLi) from discovery to resolution.
The CMS vulnerability scanner within Acunetix not only scans for the latest Joomla vulnerabilities in the current version of the CMS, but it will also raise alerts for older, insecure versions of Joomla, as well as for vulnerable extensions (plugins). While Joomla extensions can greatly extend the capabilities of a website, they usually expose a greater attack surface since they could be developed and distributed by anyone on the Internet and, as a result may not only contain vulnerabilities, but also malicious code.
Speed without compromises
Additionally, unlike many other Joomla vulnerability scanners, Acunetix is lightning fast. With a re-engineered core, and a highly optimized crawler, every inch of Acunetix is tuned for speed and efficiency, allowing it to scan even even the largest Joomla websites without breaking a sweat.
What’s more, Acunetix can throttle the speed at which a vulnerability scan runs, ensuring that even high-traffic sites can be scanned without affecting their performance.
Say goodbye to boring reports
Finally, another problem that Acunetix solves which many other CMS vulnerability scanners sorely lack is the ability to produce great reports. After a vulnerability scan is complete, Acunetix can instantly generate a wide variety of technical and regulatory and compliance reports such as PCI DSS, HIPAA, OWASP Top 10 and many others.
Additionally, Acunetix also allows users to export discovered vulnerabilities to Issue Trackers such as Atlassian JIRA, GitHub and Microsoft Team Foundation Server (TFS).
Take charge of your Joomla CMS vulnerabilities with Acunetix. Try Acunetix online or download it now to try it on premises to gain the insight you need to build and maintain secure web applications and CMSs.
We use Acunetix for initial site enumeration and to ensure that we cover all common surface area and attacks with at least a minimum level of testing. Most of our testing is completed manually and we find logic issues, and so on, but occasionally we focus on difficult to find issues instead of simple issues, like a file upload flaw hidden in the corner of a site that Acunetix brings to our attention.