Acunetix Premium - v9.5.20140505

New Features

• Introduced capability to manipulate/test JSON and XML inputs
• Updated AcuSensor to support .NET 4 - .NET 4.5 (includes various improvements to .NET AcuSensor)
• Introduced support for CRUD (create, read, update and delete)
• Introduced support for scanning web applications developed using Google Web Toolkit
• Vulnerability Alerts now include CVSS, CVE and CWE classification
• Introduced input schemes for manipulating/testing Host header
• Introduced input schemes for manipulating Cookies with values formatted as JSON/XML
• Introduced report that covers NIST 800-53 rev4
• Added checks for Apache Struts 2 ClassLoader Manipulation (S2-020 and S2-021)
• Added checks for partial user controllable script source (that could lead to what Google is describing as Reverse Clickjacking)
• Added checks for “Security Exploit Patched in versions 3.5, 3.6, 3.7, 3.8, 4.X, 5.X of vBulletin”

Improvements

• Improved parsing of robots.txt
• Various improvements to existing reports
• Improved testing for SQL injection

Bug Fixes

• Fixed a crash in crawler caused by memory corruption
• Fixed a leak in the XML parser
• Fixed a few false positives in the Expression Language Injection script