- Several checks for new types of vulnerabilities have been added.
- Various existing checks have been enhanced to improve their accuracy in avoiding false negatives and positives.
- A number of bugs have been fixed.
- Remote file inclusion
- Recursive XML entity expansion
- Response dependent on X-Forwarded-For header in request
- "Long" redirection responses
- Base64-encoded data within request parameters
SHA256 : 40b917c1a9034ec0c0698968c2bbbcde2e07a842043015843a30fcdd11f31b5d