v14.9.220913107 - 14 Sep 2022 Copy Link Copy Link Version 14 build 14.9.220913107 for Windows, Linux and macOS – 14th September 2022 Updates Updated to Chromium 105.0.5195.102 Fixes Fixed DeepScan issue
v14.9.220830118 - 30 Aug 2022 Copy Link Copy Link Version 14 build 14.9.220830118 for Windows, Linux and macOS – 30th August 2022 New Features Added support for the Zend Framework in the PHP IAST AcuSensor New Vulnerability Checks New check for Oracle E-Business Suite iStore open user registration New check for InfluxDB Unauthorized Access Vulnerability New check for Bonita Authorization Bypass (CVE-2022-25237) New check for Oracle ADF Faces ‘Miracle’ RCE (CVE-2022-21445) Updates Various DeepScan Improvements Updated to Chromium 104.0.5112.101 (Linux) / 104.0.5112.102 (Windows) Improved XSS in URI (folder/file) Improved handling of SourceMaps Updated exposed web installers check Updated exposed development files check Updated exposed monitoring systems check Fixes Fixed issue in the PHP IAST AcuSensor when reporting SCA components Fixed scanner crash
v14.9.220713150 - 14 Jul 2022 Copy Link Copy Link Version 14 build 14.9.220713150 for Windows, Linux and macOS – 14th July 2022 New features JAVA IAST AcuSensor can now be used on WebSphere HTTP requests can be copied as Curl command from the vulnerability data New vulnerability checks New check for DotCMS unrestricted file upload (CVE-2022-26352) New check for .NET JSON.NET Deserialization RCE New check for Unauthenticated RCE in Confluence Server and Data Center (CVE-2022-26134) New check for Authentication bypass via MongoDB operator injection New check for MongoDB $where operator JavaScript injection Updates Multiple DeepScan updates improving crawling of Single Page Applications (SPAs) Upgraded Chromium to v103.0.5060.114 Improved handling of installed.json by PHP IAST AcuSensor SCA, AcuMonitor (OOB vulnerability checks) and URL malware checks now require the “Acunetix Online Services” to be enabled in the user profile Updated the MongoDB Injection checks Various UI updates and fixes Fixes Multiple fixes in the JAVA and .NET IAST AcuSensors Fixed false negative in “Possible virtual host found” Fixed bug causing CSRF tokens to be retrieved using HTTP Fixed false positive in “Apache HTTP Server Source Code Disclosure”
v14.8.220610146 - 13 Jun 2022 Copy Link Copy Link Version 14 build 14.8.220610146 for Linux (only) – 13th June 2022 Fixes Fixed issue when using Acunetix on Amazon Linux 2
v14.8.220606174 - 08 Jun 2022 Copy Link Copy Link Version 14 build 14.8.220606174 for Windows, Linux and macOS – 8th June 2022 New Vulnerability checks Test for Unauthenticated remote code execution vulnerability in Confluence Server and Data Center (CVE-2022-26134)
v14.8.220519149 - 23 May 2022 Copy Link Copy Link Version 14 build 14.8.220519149 for Windows, Linux and macOS – 23rd May 2022 New Features JAVA IAST sensor now supports JBoss, Jetty and Wildfly JAVA Severs Improved support for Servlet3 and Jersey JAVA Frameworks New Vulnerability Checks New IAST checks for Expression Language Injection New IAST checks for Hibernate Query Injection New test for Apache OFBiz Log4Shell RCE (CVE-2021-44228) New WordPress plugin checks New / updated JavaScript Audit checks Updates Various UI improvements Improved detection of Directory Traversal vulnerabilities Improved detection of Directory Listing vulnerabilities Improved detection of development files Several improvements to LSR / DeepScan Fixes Fixed issue causing some vulnerabilities detected by AcuSensor not to show as AcuSensor verified Fixed issue causing routes to not be listed by JAVA IAST sensor Fixed 2 issues in Target CSV import Fixed issue causing SCA not to be done on JAVA Spring boot web applications Fixed issue causing some checks not to be executed on cookies with Secure flag
v14.7.220425114 - 26 Apr 2022 Copy Link Copy Link Version 14 build 14.7.220425114 for Windows, Linux and macOS – 26th April 2022 Updates Upgraded Chromium to v100.0.4896.127
v14.7.220401065 - 01 Apr 2022 Copy Link Copy Link Version 14 build 14.7.220401065 for Windows, Linux and macOS – 1st April 2022 New Vulnerability checks Test for Spring4Shell vulnerability (CVE-2022-22965)
v14.7.220329162 - 30 Mar 2022 Copy Link Copy Link Version 14 build 14.7.220329162 for Windows, Linux and macOS – 30th March 2022 Updates Upgraded Chromium to v99.0.4844.84