Update V2.9.9

V2.9.9

AppSec Release
January 4, 2026 Signatures 2026.01.04 Engine build 4691

Enhanced threat detection capabilities and user experience improvements. This update introduces smarter scanning algorithms and streamlined configuration options.

Added 3 changes
Dark mode theme improved
Toggle between light and dark interfaces for comfortable viewing during extended analysis sessions.
Batch scan scheduling
Queue multiple targets for automated sequential analysis. Scans execute in order with consolidated reporting on completion.
XSS payload library expansion
150+ new detection signatures for modern frameworks including React, Vue, and Angular DOM-based vectors.
Reworked 2 changes
Dashboard statistics panel
Cleaner layout with real-time threat metrics and severity distribution at a glance.
Authentication bypass detection
Enhanced logic for JWT and session-based flaws including token replay, weak signing algorithms, and missing expiry validation.
Fixed 3 fixes
Export timeout on large reports
Resolved hanging issue when generating 500+ page documents. Export pipeline now streams chunks instead of buffering the full report in memory.
API rate limiting inconsistency
Fixed throttle calculations for concurrent requests that caused premature 429 responses under parallel scan workloads.
False positive in CORS misconfiguration checks
Improved validation for wildcard origins. Reflective origin headers are now correctly distinguished from permissive wildcard policies.
Removed 1 change
Legacy XML-RPC scanner module
Deprecated in favor of modern REST API analysis. Existing XML-RPC scan results remain accessible in historical reports.
Questions or issues? Reach out through the support portal. ← Back to Home
Return