SBN

Acunetix releases IAST support for Jetty and WildFly Java servers as well as Servlet 3 and Jersey Java frameworks

A new Acunetix Premium update has been released for Windows, Linux, and macOS: 14.8.220519149.

This Acunetix release introduces support for Jetty and WildFly, allowing the Java IAST sensor (AcuSensor) to be used with these Java servers. In addition, the Java IAST sensor has been updated to fully support Servlet 3 and Jersey, improving the coverage for scans performed on web applications that use these Java frameworks. This Acunetix update also includes a number of new vulnerability checks, updates, improvements, and product fixes.

New features

  • The Java IAST sensor now supports Jetty and WildFly Java Severs
  • Improved support for Servlet3 and Jersey Java Frameworks

New vulnerability checks

Updates

  • Various UI improvements
  • Improved detection of directory traversal vulnerabilities
  • Improved detection of directory listing vulnerabilities
  • Improved detection of development files
  • Several improvements to LSR/DeepScan

Fixes

  • Fixed an issue causing some vulnerabilities detected by AcuSensor not to show as AcuSensor verified
  • Fixed an issue causing routes to not be listed by the Java IAST sensor
  • Fixed 2 issues in target CSV import
  • Fixed an issue causing SCA not to be done on Java Spring boot web applications
  • Fixed an issue causing some checks not to be executed on cookies with the Secure flag

Upgrade to the latest build

If you are already using Acunetix build 14.x, you can initiate the automatic upgrade from the new build notification in the Acunetix UI > About page.

If you are using Acunetix build 13.x or earlier, you need to download Acunetix from here. Use your Acunetix license key to download and activate your product.

THE AUTHOR
Nicholas Sciberras
Chief Technical Officer

As the Head of Acunetix Engineering, Nicholas is passionate about IT security and technology at large. Prior to joining Acunetix in 2012, Nicholas spent 12 years at GFI Software, where he managed the email security and anti-spam product lines, led multiple customer service teams, and provided technical training.

*** This is a Security Bloggers Network syndicated blog from Web Security Blog – Acunetix authored by Nicholas Sciberras. Read the original post at: https://www.acunetix.com/blog/releases/acunetix-releases-iast-support-for-jetty-and-wildfly-java-servers-as-well-as-servlet-3-and-jersey-java-frameworks/