Netsparker is now Invicti

Get a demo

AppSec with Zero Noise

Get a demo

Get a demo

Product
Why Us?
Pricing
About Us
Resources
- Blog
- White Papers
- Webinars
- Podcasts
- Invicti Learn
- Resource Library
- Partners
  - Channel
  - MSSP
- Support

Home / Support / Invicti Standard changelogs / 16 Nov 2023

Product Changelogs

Invicti Product Changelogs

Invicti Enterprise On-Demand
Invicti Enterprise On-Premises
Invicti Standard

16 Nov 2023

Invicti Standard 16 Nov 2023 v23.11.0.42728

New features

Added an option under New Scan Policy > Ignored Parameters to allow customers to set ‘Cookie’ as a type of ignored parameter

New security checks

Added new checks for the WordPress Login with Phone Number Plugin: CVE-2023-23492
Added new checks for the WordPress JupiterX Core Plugin: CVE-2023-38389, CVE-2023-38388

Improvements

Added support for custom authentication tokens without token type
Improved LFI attack patterns for better accuracy
Fixed some vulnerabilities in the Docker image
Stricter sensitive data rules
Improved bot detection bypass scenarios

Fixes

Fixed custom header values in scan profiles so that they are masked
Docker Cloud Stack check has been updated to reduce noise
Fixed an issue with adding configuration files to scan profiles
SSL/TLS classification updated from CWE-311 to CWE-319

Invicti Security Corp
1000 N Lamar Blvd Suite 300
Austin, TX 78703, US

© Invicti 2024

RESOURCES
USE CASES
WEB SECURITY
COMPARISON
COMPANY
- About Us
- Contact Us
- Support
- Careers
- Resources
- Partners

© Invicti 2024

Compliance
Legal
Privacy Policy
California Privacy Rights
Terms of Use
Accessibility
Sitemap

By using this website you agree with our use of cookies to improve its performance and enhance your experience. More information in our Privacy Policy.