New Features
- Acunetix is now available on Docker
- New Scan Statistics page for each Scan
- Vulnerability information can now be sent to AWS WAF
New Vulnerability Checks
Updates
- Full rows and column selection is now possible in the Excluded Hours page
- Updated UI with new Acunetix branding
- Issue Tracker ID will be shown for vulnerabilities sent to any Issue Tracker
- Issue Trackers can now be restricted to a specific Target Group
- Target Description will be sent to the Issue Trackers
- Updated Jira integration to support Jira version 9
- Multiple updates to the JAVA AcuSensor
- Scanning engine will now test cookies on pages which do not have any inputs
- The scanner will stop testing cookies which have been found to be vulnerable
- Where possible, DOM XSS vulnerabilities will show the code snippet of the vulnerable JavaScript call
- CSV Export will now show the Target Address
- Maximum size for a custom cookie configured in a Target increased to 4096 characters
- New date filter in the Vulnerabilities page
- Vulnerability severity now shows text in addition to color coded icon
- Multiple updates to the LSR
- Added support for BaseUrl / Global Variables in Postman import files
Fixes
- Fixed extra CR in Target CSV export
- Fixed DeepScan crash
- Fixed: Discovery options are only shown to users with "Access All Targets" permission
- Fixed: Existing user's details shown when adding a new user
- Fixed a scanner crash
- Fixed: Blind XSS check is now part of the XSS scanning profile
- Fixed: AcuMonitor checks where not done when scan done by an engineonly installation
- Fixed issue causing AcuMonitor not to be registered when using authenticated proxy
- Fixed issue when loading vulnerabilities for a Target Group
- Fixed issue with Postman importer
- Fixed sporadic issue when checking for new Acunetix updates on Mac
- Fixed issue in WP XMLRPC pingback check