Detectify's Crowdsource ethical hacker community has been actively contributing security updates, including zero-day research, which are quickly integrated into their asset monitoring scanner, offering users near-immediate access. While the full details of these updates remain confidential, some notable vulnerabilities addressed between November 30 and December 11 include remote code execution in Apache Struts 2, local file inclusion in Cisco’s SD-WAN vManage, a reflected XSS vulnerability in the WooCommerce Jetpack plugin for WordPress, a blind SQL injection in ArcGIS REST Services, and an XML External Entity Injection in IBM Maximo. Additionally, Detectify has enhanced its scanner to detect prototype pollution vulnerabilities across various technologies, including Adobe Dynamic Tag Management, Akamai Boomerang, and Google reCAPTCHA, among others. These efforts underscore Detectify's commitment to maintaining robust security measures through prompt and comprehensive vulnerability detection.