25 Mar 2024

Acunetix Premium - v24.3.240322155

New features

Smart API Scanning capabilities for Swagger 2
Smart API Scanning capabilities for OpenAPI 3

New security checks

Jira Seraph Authentication Bypass (CVE-2022-0540)
Jira QueryComponent Information Disclosure (CVE-2020-14179)
TeamCity Authentication Bypass (CVE-2024-27198)
Kramer VIAware RCE (CVE-2021-36356/CVE-2021-35064)
Cacti Unauthenticated Command Injection (CVE-2022-46169)

Improvements

Improved Crawling of websites using IFrames
.NET IAST sensor will report SQL Injection issues introduced through the usage of MSSQL Entity Framework Sql_Query
Improved detection of DOM XSS in Referrer Header
Improved detection of DOM XSS in document.cookie

Fixes

Fixed a situation when a new target couldn't be created via API
Fixed: Missing HTTP response for vulnerabilities reported by internal scanning agent
Fixed: Missing Attack Details for Unsupported SSL Secure Renegotiation vulnerability