- Scan multipart/form-data for forms authentication and fixed some bugs in the multipart scanning. - web admin was not accessible on Windows 10 with latest updates - Excluded referrer url for false positives for Yahoo search results and Google doubleclick referrers
- Fixed a non-critical bug and compatibility issue (introduced in 4.6). - Improved user experience with first time configuration wizard and navigation bar. - Web admin interface basic authentication possible and unblock IP. - Scan multipart/form-data for parameter pollution, input validation and name require regex
This is a feature release focused on improving and hardening the engine.
- Improved scanning of content-type. Limit content length based on content type and block bad content-types seen in the wild. - Detect url parsing errors - Check for payload RFC compliancy