v25.5.1 - 27 Jun 2025
New security checks Added a new check to detect Grafana Open Redirect (CVE-2025-4123) Improvements Updated Secret Token detection to increase coverage Updated detection of DB connection in JSON fields Updated DeepScan for more prop extraction Added a new check to detect Prototype Pollution (Server-Side) Updated...
New security checks
-
Added a new check to detect Grafana Open Redirect (CVE-2025-4123)
Improvements
- Updated Secret Token detection to increase coverage
- Updated detection of DB connection in JSON fields
- Updated DeepScan for more prop extraction
- Added a new check to detect Prototype Pollution (Server-Side)
- Updated dompurify to detect more vulnerabilities
- Updated iframe injection detection on dom-based vulnerabilities
- Updated XPath injection for better coverage