Ostorlab: Mobile App Security Testing for Android and iOS

mdi-slash-forward

Blog

Engineering

Product

Security

Documentation

Changelog

Demo

mdi-menu

Engineering

Product

Security

Documentation

Changelog

Demo

Tag

POC

Security

Automating Security Research: AI Engine Exploits Zulip Stored XSS (CVE-2025-52559)

This article presents a thorough, hands-on analysis and proof of concept for exploiting the stored XSS vulnerability CVE-2025-52559 in Zulip. It details how Ostorlab's AI-powered pentesting engine was used to automate the full cycle.

Ostorlab Team


            Mon 28 July 2025

POC

Automating Security Research: AI Engine Exploits Zulip Stored XSS (CVE-2025-52559)

Subscribe to the Ostorlab Newsletter