Added critical severity as a new vulnerability classification and reclassified select high vulnerabilities to critical severity – more information on the Acunetix blog
Added the ability to specify proxy settings for the Internal Scanning Agent
New security checks
Acunetix now detects the following SSL vulnerabilities:
Certificate signed using a weak signature algorithm
Revoked SSL certificate
Anonymous ciphers supported
SSL untrusted root certificate
Confirm validity of Certificate Authority (CA) signature
Improvements
Updated the user agent string to Chromium 117
Updated Chromium to 117.0.5938.63
Fixed misbehaving scrolling behavior in the LSR recorder screen
Improved detection of DOM-based XSS vulnerabilities
Moved license subscription details from the Profile section to Settings > Subscription
Improvements to DeepScan coverage
Improvements to the UI during scan configuration
Set client certificate import default format to PFX
Fixes
Engine/Open SSL: Fixed scanning sites that require connection with enabled legacy unsafe renegotiation
Minor UI navigation fixes
Fixed occasional crash on importing Postman files
Fixed false positive “ASP.NET expired session IDs are not regenerated“ when <sessionState> section of web.config is encrypted