![]() ![]() Added the CSP Not Implemented that will be reported as confirmed.Added JWT Token pre-request script template.Added ‘Is Encoded’ option to OAuth2 parameters.Changed the default ignored parameter comparison to case insensitive.Added Web Application Firewall to the site profile.Added highlighting support for custom scripts.Added support for exploiting local storage and session storage in the DOM XSS security checks.Improved Cross-site Scripting attack pattern.Updated CWE classification category orders for Out-of-date templates.Added setting to configure Session Cookie Names.Added the notification on the Reporting page when the time start predates the time end.Added the “not contains” filter to exclude specific titles, such as Out-of-Date.Improved the SCIM error message when a user filters users/groups with mistaken syntax.Added validation of the URLs entered by a user in the ImportedLink section while saving the database.Added the DeleteById field when a website is deleted.Added a check to prevent entering special characters into the optimized scan policy.Updated the Bamboo plug-in to version 1.8. ![]() Changed the brand name of Clubhouse to Shortcut.Improved Invicti to be compatible with FIPS 140-2.Improved the U2F Security Key standard to the Web Authentication API.Improved Invicti to comply with WCAG 2.1 – Level AA.This improvement requires the re-installation of the Authentication Verifier Agent. The new version supports the improved performance for single-page applications, consumes fewer resources, and comes with the auto-update feature. Improved the Authentication Verifier Agent.Added PHP Version Detection via phpinfo() call.Added the Shopify Identified security check.Added exclusion feature to JavaScript Library detection.Added Atlassian Confluence Version disclosure and Out-of-date security checks.Added phpMyAdmin Version Disclosure security check.Added patterns for Base64 encoded DOM Cross-site Scripting.Added signature matching to Web app fingerprint checker.Added the OWASP API Top Ten 2019 scan policy.Introduced the default scan and report policy, so you can set default policies for your team.Updated a Docker agent library to run more security checks.Added unique IDs on the HTTP 500 Error page.Improved the error messages and code returned from the updating issue API endpoint.Added the Scan Profile Default option to the column filters on the Recent Scans page to speed up the search for the default scan profiles.Improved the search for scan profiles on the Recent Scans page.Added OWASP Top Ten 2021 report and classification.Added Authentication Verifier Service for the authentication verifier agent.Added support for scanning GraphQL APIs.Added Software Composition Analysis (SCA) feature.Added the Bridge URL and token support for AcuSensor.Fixed the bug that causes the request not to be sent because of an empty referer header.Īcunetix 360 On-Premises 2.3 – NEW FEATURES.Fixed the bug that requires the cache to be cleared so that the new authentication verifier can be listed on the Manage Agents page.Fixed the bug that does not produce any logs for the Authentication Verifier Service.Fixed the bug that does not show the screenshot of the scanned target URL on the scan summary page.Improved the Authentication Verifier Agent to work with self-signed SSL.Updated the scan profile to include the verified form authentication.Added the support to download scanner and authentication verifier agents from the Configure New Agent page.Acunetix 360 On-Premises Update – 19 July 2022 (v2.3.1) IMPROVEMENTS ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |