New feature
- Added a new option to export results to HTTP Fuzzer
New Security Checks
- Test for XML External Entity Injection
- Test for XML Injection
Improvements
- Improved directory traversal vulnerability check
- Improved Cross-site Scripting (XSS) vulnerability checks
Bug Fixes
- Fixed: access violation when the application exists
- Fixed: access violation when protocol was terminated in NotifyCaller function in LSR
- Fixed: AbortVulnXML OnFirstAlert was not imported from settings
- Fixed: Form values were not encoded correctly when submitted from JavaScript (CSA engine)