Alliance Technology Partners, partnering with Acunetix since 2007, have announced they shall be offering Acunetix Training Courses, delivered via the web, by two of their senior security engineers. This Basic Training 3 hour course, is highly interactive and tailored to the users’ experience level and…
Tag Archives wvs
Acunetix WVS v9.5 build 20140902 detects Hibernate Query Injection, Format Strings and more
Acunetix Web Vulnerability Scanner version 9.5 build 20140902 has been updated to include new vulnerability checks, including detection of Hibernate Query Injection, format strings vulnerabilities, MySQL username disclosure and others, including some, in well-known web applications. This new build also optimises existing checks, including its…
Common Platform Enumeration (CPE) Explained
When running a network scan on your perimeter server using Acunetix Vulnerability Scanner, one of the Informational alerts shown in the scan results is the CPE Inventory. The data that is collected during the scan is aggregated using the CPE standard, originally defined by MITRE,…
Acunetix WVS v9.5 Build 20140602 – New Security Tests
Each Acunetix WVS update generally includes new vulnerability tests or an improvement to existing checks. This post summarizes the new security tests added in the latest Acunetix WVS update. Cross Domain Data Hijacking A website is vulnerable if an attacker can create/upload a malicious Flash (SWF) file…
Acunetix WVS v9.5 build 20140602 includes new vulnerability checks for popular web applications and platforms
Acunetix Web Vulnerability Scanner version 9.5, build 20140602, identifies new vulnerabilities in Google Web Toolkit™, Joomla!, Parallels Plesk, nginx, and a number of WordPress plugins including the popular All in One SEO plugin. The following is the full list of updates included in this release….
JSON/XML Input and Google Web ToolkitTM support with Latest Version of Acunetix
Manipulation of JSON/XML Input, Google Web ToolkitTM support and new .NET 4.5 AcuSensor are just some of the new features available in the latest version of Acunetix Vulnerability Scanner. London, May 8, 2014 – Acunetix have just announced the launch of a new version of…
More comprehensive scanning with Acunetix WVS v9.5 – Part II
In addtion to full JSON and XML support (already covered in Part I), Acunetix WVS version 9.5 includes other improvements that increase the scan coverage and improves its abilities to find vulnerabilities. In this blog post, I will cover CRUD support, Host header testing and…
More comprehensive scanning with Acunetix WVS v9.5 – Part I
In these 2 articles, I will be detailing the new functionality introduced in Acunetix WVS version 9.5. An important update introduced in the new version of Acunetix WVS is full JSON and XML support. If you are scanning a web application that is exchanging data…
Better scan results with CVSS, CVE and CWE
Acunetix includes the classification of vulnerabilities using CVE (Common Vulnerabilities Exposure), CWE (Common Weakness Enumeration) and CVSS (Common Vulnerability Scoring System). The table below provides a quick overview of the main differences between the three standards and how they benefit Acunetix users. CVE CWE CVSS…