Tenable Web App Scanning Scanner 1.13.x Release Notes

The Tenable Web App Scanning Scanner automatically updates to new releases:

For information about the new features, improvements, and bug fixes included in each 1.13.x release, see:

Bug Fixes

Tenable Web App Scanning Scanner version 1.13.3 includes the following bug fixes.

Bug Fixes Defect ID
Fixed garbled HTTP response that was provided for some plugins 01202807
Addressed bug where scan finalization logic was not triggered 01199034
Fixed OpenAPI file processing when file contains high number of links 01175743

Bug Fixes

Tenable Web App Scanning Scanner version 1.13.2 includes the following bug fixes.

Bug Fixes Defect ID
Fixed scan abortions due to curl wrapper library crashes 01135870, 01155745, 01146313, 01172330, 01170358, 01180936, 01188461, 01195484

Bug Fixes

Tenable Web App Scanning Scanner version 1.13.1 includes the following bug fixes.

Bug Fixes Defect ID
Addressed scan logic issues when executing JS scripts on target N/A
Addressed scan logic issues when submitting forms during assessment N/A
Addressed scan logic issues when triggering events on DOM elements N/A

New Features and Improvements

Tenable Web App Scanning Scanner version 1.13.0 includes the following new features and improvements.

  • New Components Detected

    Selligent Message Studio

  • New Plugins

    • 112741 - Apache Struts 2 'action:' Parameter Arbitrary Remote Command Execution [S2-016]

    • 112742 - Apache Struts 2 devMode Remote Code Execution

    • 112743 - Joomla 3.9.26

    • 112744:112754 - WordPress 5.7.1

    • 112755 - WP Super Cache Plugin for WordPress < 1.7.2 Remote Code Execution

Bug Fixes

Tenable Web App Scanning Scanner version 1.13.0 includes the following bug fixes.

Bug Fixes Defect ID
Fixed typos in plugins 98612, 112526, 112551, and 112553 01194119
Ensure authentication plugins to be published even if outside target scope 01180012
False positive on SQL Injection plugin detection 01177933
Selenium authentication failure 01104836