Acunetix 360 Changelog

Acunetix 360 On-Premises 1.9.2 – 28th October 2020

IMPROVEMENTS

  • Added a ‘Generate optimized css code path’ feature to the Authentication Verifier
  • Improved the Minimum Security Level area on the Reporting page
  • Added a Detailed issue template option to the Template field in the ServiceNow integration
  • HIPAA will be displayed instead of OWASP in the scan summary
  • Scan folder path change option has been added for internal agents

FIXES

  • Fixed the issue where the IP addresses of websites listed on the Discovered Website page were ignored
  • Fixed the issue where .SAML files failed to download on MAC devices
  • Fixed the problem that occurred during verification of the form authentication API endpoint where it returned the same result after the first request
  • Fixed the problem that occurred while configuring email notifications
  • Fixed the problem that occurred while cancelling stalled scans
  • Fixed the connection problem that occured while using a proxy in internal agents

 

Acunetix 360 On-Premises 1.9.1 – 1st October 2020

NEW FEATURES

  • Added support for alternate email for SSO login
  • Form authentication Hashicorp Vault integration added
  • Technologies chart added to the global dashboard and website dashboard pages
  • Test credential API endpoint added for scan profiles
  • Added Form Auth Custom Scripting feature to the New Scan page
  • Login page has been redesigned
  • The SSO help text area in the SSO settings page has been redesigned
  • Added an API endpoint for Updating Issue States
  • Travis CI integration has been added
  • Jira integration now supports custom Resolved statuses
  • Kenna integration now supports Asset Application Identifier
  • Agents can now be installed using Linux and a Linux Agent button has been added to the Configure New Agent page
  • Upgraded the scanning engine to version 5.9.027701. Auto-update is not possible in this version

NEW SECURITY CHECKS

  • Added Out-of-date security checks for the Liferay portal
  • Added Version Disclosure and Out-of-date security checks for Jolokia
  • Added Nested XSS security checks
  • Added an ASP.NET Razor SSTI security check
  • Added a Java Pebble SSTI security check
  • Added a Thymeleaf SSTI security check
  • Added Version Disclosure and Out-of-date security checks for Grafana

IMPROVEMENTS

  • Added an Issue Update API swagger model improvement
  • New password criterion of a minimum of 15 characters has been imposed on admin and top level users.
  • Improvements have been made to the Form Authentication Test Script screen

FIXES

  • Fixed the problem of a slowVulnerable Websites per Period report on the Reporting
  • Fixed the file uploading problem on Imported Links
  • Fixed the Knowledge Base Report’s exporting problem
  • Fixed the Yukon time zone problem.
  • Fixed the Imported Links problem.
  • Fixed the problem where the wrong time zone was displaying in Report Templates
  • Moved the Scan Profile Test Credentials api post method fields to the body element
  • Fixed a db file error in the Report Policy Editor
  • Fixed the issue where report policy user changes were not applied when reset.
  • Fixed the Vulnerability Detail page responsiveness problem
  • Fixed the Sitemap treeview responsiveness problem
  • Fixed the highlighted code focus problem
  • Added help text to the HashiCorp vault integration page
  • Fixed the bug that occurred when another team member updated the shared profile
  • Fixed a bug that occured when non admin users updated profiles
  • The Report policy Editor CVSS scores fields now accept empty values
  • Fixed a server error that occured while saving a cloned Scan Policy
  • Fixed the problem that occurred when reconfirming the Verify Login and Logout settings