wonderfully unique software solutions

Acunetix unleashes IAST wave of scan updates and fixes

Web application scanning specialist Acunetix has launched interactive application security testing (IAST) updates for vulnerability and misconfiguration detection as well as improved scan coverage for customers.

According to Nicholas Sciberras, blogging for parent company Invicti Security, the latest Acunetix Premium update for Windows, Linux and macOs introduces multiple IAST updates that will help detect several severe vulnerabilities.

“Acunetix has been updated to detect the following vulnerabilities using IAST: LDAP, XPath, MongoDB, email header and server-side template injections; unsafe reflection and deserialisation of untrusted data, and server-side request forgery,” he writes.

The IAST updates will also provide full coverage for the newly supported web frameworks and improve the detection of server-side misconfigurations.

“Acunetix IAST (AcuSensor) has been updated to detect over 30 new server-side misconfigurations across all sensors,” he writes.

The vendor has also introduced new vulnerability checks for various web applications from the likes of SolarWinds, Apache, Citrix, VMware, SonicWall, WordPress, MobileIron, Ubiquiti, and ManageEngine, and token handling updates amid assorted other updates and fixes, according to Sciberras.

Acunetix will start reporting if an old version of the IAST sensor (AcuSensor) is installed on the web application,” he added.

Specific fixes include GitLab, Amazon AWS, scanner crashes, timeout issues and more. Read the full details on the Acunetix update page.

( Image copyright © TBIT from Pixabay 2022 )

Recent Articles

Arista warns SMBs to take precautions against edge threats

Arista Networks, the vendor of Arista Edge Threat Management (ETM) has warned that SMBs aren't always aware of the extent of targeting...

Instructure rolls out iWork update for Canvas LMS users on Apple

Learning management software company Instructure has taken the covers off an Apple iWork update for its Canvas learning management system (LMS).

E-learning player iSpring adds six integrations for its LMS platform

Customers of the iSpring Learn learning management system (LMS) can now connect to no less than six additional platforms with a view...

What’s new in JetBrains code analyser Qodana 2023.2

The code-quality platform Qodana, new from a cornucopia of JetBrains developer tools, now boasts server-side analysis integrated with the 2023.2 releases of...

N-able leads RMM field across multiple awards programmes

Remote monitoring and management (RMM) provider N-able has taken two more coveted titles for 2023, including a prestigious CRN award for the...

Related Stories

Leave A Reply

Please enter your comment!
Please enter your name here

Weirdware monthly - Get the latest news in your inbox