Many web sites are vulnerable to cross-site scripting (CSS) - allows an attacker to embed malicious JavaScript, VBScript, ActiveX, HTML, or Flash into a vulnerable dynamic page to fool the user, executing the script on his machine. Hackers are manipulating these vulnerabilities to steal sensitive data.
How can you see and stop this?
Acunetix has recently released a free edition of Acunetix WVS software which can be used to scan your site for CSS vulnerabilities. The software is surely very useful for web designers to protect their works.This edition allows you to scan any web site, operated by you, for Cross Site Scripting Vulnerabilities, their location and techniques to fix them.
As per Acunetix “Out of the 100,000 websites scanned by Acunetix WVS, 42% were found to be vulnerable to Cross Site Scripting. XSS is extremely dangerous and the number of the attacks is on the rise”.
Exploited Cross Site Scripting is commonly used to achieve the following malicious results:
- Identity theft
- Accessing sensitive or restricted information
- Gaining free access to otherwise paid for content
- Spying on user’s web browsing habits
- Altering browser functionality
- Public defamation of an individual or corporation
- Web application defacement
- Denial of Service attacks.
License - free (registration required)
After registration you will get full documentation in pdf and a link to download
Thank you for this best information
ReplyDelete