Ostorlab: Mobile App Security Testing for Android and iOS

Tag

kev

Revamped Search, new detection capabilities, actively exploited CVEs and much more.

The latest releases introduces a revamped search UI, new detection capabilities, attack surface & inventory performance improvements, plus much more.

Ostorlab Team


            Tue 22 October 2024

Security

Deep Dive: Stored XSS Vulnerability in LiteSpeed Cache Plugin for WordPress (CVE-2024-47374)

An in-depth look at the CVE-2024-47374 vulnerability affecting LiteSpeed Cache plugin for WordPress, its impact, and a technical breakdown of our detection method.

Nour Eddine Masdoufi


                  Thu 10 October 2024

Product

HTTP2, Private Custom Checks, actively exploited CVE and much more.

The latest releases introduce HTTP/2 support, improve UI and detection, enhance privacy and security measures, and update custom checks and analysis environments for better performance.

Ostorlab Team


                  Mon 07 October 2024

Security

Actively Exploited CVE-2022-21445, Deep Dive

The article delves into the technical details of this CVE, its potential impact, and the methods used to detect and exploit it.

Nour Eddine Masdoufi


                  Wed 25 September 2024

Security

Unraveling the VigorConnect Vulnerability: A Journey of Discovery and Correction

The article uncovers an Arbitrary File Read vulnerability in VigorConnect that lets attackers access sensitive files. The issue originates from improper input validation in file handling methods.

Nour Eddine Masdoufi, Abderrahim Haddadi


                  Thu 12 September 2024

Security

CVE-2024-5315 Dolibarr SQL Injection Investigation

CVE-2024-5315, an actively exploited Dolibarr SQL Injection with in incorrect patched-in version.

Youssef Badaoui


                  Sun 14 July 2024

Latest posts

Security

Ostorlab KEV update for 02 April 2024

New vulnerabilities added to Ostorlab known exploited vulnerabilities catalog

Ostorlab Team


                    Tue 02 April 2024

Security

Ostorlab KEV update for 11th March 2024

New vulnerabilities added to Ostorlab known exploited vulnerabilities catalog

Ostorlab Team


                    Mon 11 March 2024

Security

Ostorlab KEV update for 26th February 2024

New vulnerabilities added to Ostorlab known exploited vulnerabilities catalog

Ostorlab Team


                    Mon 26 February 2024

Security

Known Exploitable Vulnerabilities: Catching them all

In this article we will Discover essential tools and empirical insights for identifying critical, high-severity, and actively exploitable vulnerabilities sourced from reputable platforms like CISA KEV, Google’s Tsunami, and the innovative Ostorlab’s Asteroid Project.

Saad Mazouzi


                    Wed 10 January 2024

Changelog

View all changes

Revamped Search, new detection capabilities, actively exploited CVEs and much more.


                  Tue 22 October 2024

HTTP2, Private Custom Checks, actively exploited CVE and much more.


                  Mon 07 October 2024

kev

Revamped Search, new detection capabilities, actively exploited CVEs and much more.

Deep Dive: Stored XSS Vulnerability in LiteSpeed Cache Plugin for WordPress (CVE-2024-47374)

HTTP2, Private Custom Checks, actively exploited CVE and much more.

Actively Exploited CVE-2022-21445, Deep Dive

Unraveling the VigorConnect Vulnerability: A Journey of Discovery and Correction

CVE-2024-5315 Dolibarr SQL Injection Investigation

Latest posts

Ostorlab KEV update for 02 April 2024

Ostorlab KEV update for 11th March 2024

Ostorlab KEV update for 26th February 2024

Known Exploitable Vulnerabilities: Catching them all

Changelog

Revamped Search, new detection capabilities, actively exploited CVEs and much more.

HTTP2, Private Custom Checks, actively exploited CVE and much more.

Subscribe to the Ostorlab Newsletter