Ostorlab: Mobile App Security Testing for Android and iOS

Tag

RCE

CVE-2026-2599 : Unauthenticated PHP Object Injection → WP_HTML_Token POP Chain

A technical breakdown of CVE-2026-2599, a CVSS 9.8 Critical unauthenticated PHP Object Injection vulnerability in the "Contact Form Entries" WordPress plugin (≤ 1.4.7). The download_csv function deserializes untrusted user input without allowed_classes restrictions. When combined with WordPress 6.4.0-6.4.1, the built-in WP_HTML_Token class provides a complete all-public POP chain leading to full Remote Code Execution via two unauthenticated HTTP requests.

Mohammed Lachhab


            Wed 25 March 2026

Security

GHSA-cr3w-cw5w-h3fj: 1-Click RCE in Saltcorn

Analysis of GHSA-cr3w-cw5w-h3fj, a CVSS 9.7 critical XSS-to-RCE vulnerability in Saltcorn (≤ 1.5....

Mohammed Lachhab


                  Wed 11 March 2026

Security

CVE-2025-64712: Path Traversal RCE in Unstructured Library MSG Processing

A technical breakdown of CVE-2025-64712, a CVSS 9.8 critical path traversal remote code execution...

Aziz Elbelaychy


                  Mon 23 February 2026

Security

CVE-2026-1357: Unauthenticated RCE in WPvivid Backup Plugin

A technical breakdown of CVE-2026-1357, a CVSS 9.8 critical unauthenticated remote code execution...

Mohammed Lachhab


                  Fri 20 February 2026

Security

Pre-Auth Root RCE Vulnerability in CyberPanel: Deep Dive Exploit Analysis

A technical analysis of a vulnerability in CyberPanel, a Pre-Auth Root RCE, including confirmed exploitation paths, investigated components, and research methodology findings.

Ostorlab


                  Wed 30 October 2024

Security

Actively Exploited CVE-2022-21445, Deep Dive

The article delves into the technical details of this CVE, its potential impact, and the methods used to detect and exploit it.

Nour Eddine Masdoufi


                  Wed 25 September 2024

Latest posts

Security

Text4Shell (CVE-2022-42889) in Mobile Applications ... should I worry?

CVE-2022-42889 is a vulnerability in the Apache Commons Text Library caused by string interpolation abusing powerful handlers and present in popular application like Amazon Shopping, Udemy and Grammarly. This article goes over the applicability and risk of this vulnerability for Mobile Applications.

Alaeddine Mesbahi


                    Mon 24 October 2022

Security

How did we react to Log4j vulnerability? Read our analysis for mobile applications.

What is the impact of Log4j vulnerability on mobile applications

Martin Salis


                    Mon 20 December 2021

Changelog

View all changes

RCE

CVE-2026-2599 : Unauthenticated PHP Object Injection → WP_HTML_Token POP Chain

GHSA-cr3w-cw5w-h3fj: 1-Click RCE in Saltcorn

CVE-2025-64712: Path Traversal RCE in Unstructured Library MSG Processing

CVE-2026-1357: Unauthenticated RCE in WPvivid Backup Plugin

Pre-Auth Root RCE Vulnerability in CyberPanel: Deep Dive Exploit Analysis

Actively Exploited CVE-2022-21445, Deep Dive

Latest posts

Text4Shell (CVE-2022-42889) in Mobile Applications ... should I worry?

How did we react to Log4j vulnerability? Read our analysis for mobile applications.

Changelog

Subscribe to the Ostorlab Newsletter