Invicti Standard 09 Apr 2020


  • Added an image injection pattern to the Blind Cross-site Scripting security check
  • Added Script Type information to the comment section of the Custom Security Check scripts
  • Added the ability to show the Custom Scripts Panel without opening a scan


  • Fixed an issue so that the JavaScript configuration in the Scan Policy is saved when it is updated by Invicti Assistant
  • Fixed an issue where the web proxy was not being used while connecting to Invicti Enterprise
  • Fixed an issue where the Custom Scripts were not executing inside pop-up dialogs that open during Form Authentication
  • Fixed an issue wherelogouts was not detected with single page applications that used Form Authentication