Skip to content

Active scanner rules version 52
Compare
Choose a tag to compare
@zapbot zapbot released this 03 Feb 14:33
· 4499 commits to main since this release
ascanrules-v52
e74ad5d
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

Changed

  • The following scan rules now include example alert functionality for documentation generation purposes (Issue 6119 & 7100).
    • Buffer Overflow
    • Cloud Metadata
    • Code Injection
    • Path Traversal
    • Remote File Include
  • The Path Traversal scan rule no longer populates the Other Info field with check information, as the Alert Reference now provides that detail.
  • Maintenance changes.
  • CVE-2012-1823 Remote Execution and Source Code Disclosure, and Heart Bleed scan rules now include Alert Tags for the applicable CVEs.

Fixed

  • A false positive that could occur in the External Redirect scan rule if the payload was included in the redirect as a param or portion of the value.
Assets 3
Loading