New features
- Windows Internal Scanning Agents can now scan websites which make use of Smart Card Authentication
- Acunetix On Premise can now be installed on Windows Server 2025
New security checks
- Added a check for PAN-OS Management Interface Authentication Bypass (CVE-2025-0108)
- Added a check for SimpleHelp Path Traversal (CVE-2024-57727)
Improvements
- Technologies: DAST scanner updated to report over 30 new technologies
- Improved detection of Open Redirect
- Improved detection of Reverse Proxy
- Improved detection of ViewState problems
- Improvements to timeouts while crawling SPAs
- Improved parsing of double URL encoded files
Resolved issues
- Fixed: Technologies incorrectly reported as normal vulnerabilities
- Fix: False Negative reporting EspoCRM
- Fixed issue causing Login Sequence Recorder to not load on Windows 10 / Windows Server 2016