The Acunetix team is back from two successful events in the EU, namely OWASP AppSec held in London, UK and CEBIT held in Hannover, Germany. This was the first time that Acunetix exhibited at CEBIT. Regional Sales Executives and Technical Support personnel were present at…
New build introduces HTTP Responses in Alerts, adds manual intervention, vulnerability checks in Cisco ASA, Apache Tomcat
Acunetix v12 (build 12.0.180725167) has been released. This new build adds detection for vulnerabilities in Cisco ASA, Apache Tomcat, Altassian Jira, Spring, JBoss and misconfigured nginx installations. The new build also includes HTTP Responses in the vulnerability alerts, and re-introduces manual intervention in the Login…
Will my Target settings and scan data be retained when upgrading from Acunetix v11 to Acunetix v12?
When you install Acunetix v12 on the same machine as Acunetix v11, your Acunetix settings, Targets, Scan and Report data will all be retained. You will just need to install Acunetix v12 on the same machine as Acunetix v11,and your Acunetix installation will be upgraded…
How many Targets can I configure in Acunetix?
Please email this question along with your license key to sales@acunetix.com
How to choose which paths to scan after crawling the site
There are situations where you need to crawl a site, and choose which paths to scan after crawling the site. This feature has been re-introduced in Acunetix version 12. You will first need to run a Crawl, after which you can choose which files not…
New build detects an unfixed WordPress file deletion vulnerability, vulnerabilities in WordPress plugins and Joomla! Core
Acunetix v12 (build 12.0.180628131) has been released. This new build detects an unfixed WordPress file deletion vulnerability, vulnerabilities in multiple WordPress Plugins and two Joomla! Core vulnerabilities. Below is a full list of updates. New Features and Vulnerability tests New test for WordPress Arbitrary File…
Visit us at OWASP AppSec EU 2018
Acunetix will be exhibiting at OWASP AppSec in London between the 2nd and 6th July 2018 at the Queen Elizabeth 11 Centre (QE2) The OWASP Annual AppSec EU Security Conference, is the premier application security conference for European developers and security experts. We invite all…
New build adds detection of vulnerabilities in WordPress, Django, multiple Spring Framework and Atlassian products
Acunetix v12 (build 12.0.180619111) has been released. This new build introduces new vulnerability checks for WordPress, Django, multiple Spring Framework and Atlassian products. Below is a full list of updates. New Features and Vulnerability tests Spring Data Commons RCE via Spring Expression Language (SpEL) injection…
Deserialization vulnerabilities: attacking deserialization in JS
At ZeroNights 2017 conference, I spoke about “Deserialization vulnerabilities in various languages”. For my presentation, I used an interesting article about two serialization packages of Node.js. I showed them as examples of vulnerable implementations of deserialization processes. In this post, I’d like to show results…