Acunetix releases IAST support for Jetty and WildFly Java servers as well as Servlet 3 and Jersey Java frameworks

A new Acunetix Premium update has been released for Windows, Linux, and macOS: 14.8.220519149.

This Acunetix release introduces support for Jetty and WildFly, allowing the Java IAST sensor (AcuSensor) to be used with these Java servers. In addition, the Java IAST sensor has been updated to fully support Servlet 3 and Jersey, improving the coverage for scans performed on web applications that use these Java frameworks. This Acunetix update also includes a number of new vulnerability checks, updates, improvements, and product fixes.

New features

  • The Java IAST sensor now supports Jetty and WildFly Java Severs
  • Improved support for Servlet3 and Jersey Java Frameworks

New vulnerability checks

Updates

  • Various UI improvements
  • Improved detection of directory traversal vulnerabilities
  • Improved detection of directory listing vulnerabilities
  • Improved detection of development files
  • Several improvements to LSR / DeepScan

Fixes

  • Fixed an issue causing some vulnerabilities detected by AcuSensor not to show as AcuSensor verified
  • Fixed an issue causing routes to not be listed by the Java IAST sensor
  • Fixed 2 issues in target CSV import
  • Fixed an issue causing SCA not to be done on Java Spring boot web applications
  • Fixed an issue causing some checks not to be executed on cookies with the Secure flag

Upgrade to the latest build

If you are already using Acunetix build 14.x, you can initiate the automatic upgrade from the new build notification in the Acunetix UI> About page.

If you are using Acunetix build 13.x or earlier, you need to download Acunetix from here. Use your Acunetix license key to download and activate your product.

THE AUTHOR
Nicholas Sciberras
Chief Technical Officer

As the Head of Acunetix Engineering, Nicholas is passionate about IT security and technology at large. Prior to joining Acunetix in 2012, Nicholas spent 12 years at GFI Software, where he managed email security and anti-spam product lines, led multiple customer service teams, and provided technical training.

Source

A new Acunetix Premium update has been released for Windows, Linux, and macOS: 14.8.220519149.

This Acunetix release introduces support for Jetty and WildFly, allowing the Java IAST sensor (AcuSensor) to be used with these Java servers. In addition, the Java IAST sensor has been updated to fully support Servlet 3 and Jersey, improving the coverage for scans performed on web applications that use these Java frameworks. This Acunetix update also includes a number of new vulnerability checks, updates, improvements, and product fixes.

New features

  • The Java IAST sensor now supports Jetty and WildFly Java Severs
  • Improved support for Servlet3 and Jersey Java Frameworks

New vulnerability checks

Updates

  • Various UI improvements
  • Improved detection of directory traversal vulnerabilities
  • Improved detection of directory listing vulnerabilities
  • Improved detection of development files
  • Several improvements to LSR / DeepScan

Fixes

  • Fixed an issue causing some vulnerabilities detected by AcuSensor not to show as AcuSensor verified
  • Fixed an issue causing routes to not be listed by the Java IAST sensor
  • Fixed 2 issues in target CSV import
  • Fixed an issue causing SCA not to be done on Java Spring boot web applications
  • Fixed an issue causing some checks not to be executed on cookies with the Secure flag

Upgrade to the latest build

If you are already using Acunetix build 14.x, you can initiate the automatic upgrade from the new build notification in the Acunetix UI> About page.

If you are using Acunetix build 13.x or earlier, you need to download Acunetix from here. Use your Acunetix license key to download and activate your product.

THE AUTHOR
Nicholas Sciberras
Chief Technical Officer

As the Head of Acunetix Engineering, Nicholas is passionate about IT security and technology at large. Prior to joining Acunetix in 2012, Nicholas spent 12 years at GFI Software, where he managed email security and anti-spam product lines, led multiple customer service teams, and provided technical training.

Source

More from author

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Related posts

Advertismentspot_img

Latest posts

Threat Intelligence Services Are Universally Valued by IT Staff

Almost all IT professionals believe that threat intelligence services and feeds will help their company get ready for and repulse malware attacks. Only...

Black Basta may be an all-star ransomware gang made up of former Conti and REvil members

The group has targeted 50 businesses from English speaking countries since April 2022. ...

APAC companies are failing to build successful digital models: Forrester

Approximately 61% of APAC organizations have failed to build robust and successful digital business business models, primarily due to unsound practices of enterprise architecture...

Want to stay up to date with the latest news?

We would love to hear from you! Please fill in your details and we will stay in touch. It's that simple!