Invicti Standard 03 Dec 2024 v24.12.0

New Security Checks

  • Added detection of Google Tag Manager as a technology in the Vulnerability Database (VDB)

Improvements

  • Invicti Standard Agent upgraded to .NET 8 for improved performance and compatibility
  • Improved analysis and remediation capabilities for [Possible] Server-Side Template Injection vulnerabilities

Fixes

  • Fixed a missing proxy implementation for ICBD and Puppeteer
  • Fixed an issue where Retest-type scans did not identify the same vulnerabilities detected during full scans
  • Fixed high CPU usage in some agents caused by Chromium
  • Fixed an issue where the Misconfigured Access-Control-Allow-Origin Header vulnerability was not detected
  • Improved detection of the [Possible] Password Transmitted over Query String vulnerability.