Detectify releases major security updates bi-weekly, incorporating new findings and improvements sourced from their security researchers and the Crowdsource ethical hacker community. These updates are immediately integrated into their scanner tool, although confidentiality agreements prevent full disclosure of all updates. Recently highlighted vulnerabilities include an Episerver GetGeoData API misconfiguration that could expose internal server IP addresses, a Jingo XSS flaw where older versions fail to escape HTML/JavaScript inputs, a Ruby on Rails file disclosure vulnerability allowing attackers to read local files, and a WordPress vulnerability that, when combined with a CSRF attack, increases the risk of unauthorized remote code execution.