Outpost24 logo
CVE-2024-58248: Race condition vulnerability leaves nopCommerce at risk of single-packet attacks
Application Security
01 Jul 2025
I recently discovered an interesting race condition vulnerability in the eCommerce software nopCommerce, during a manual pen test as part...

Featured Posts
Research & Threat Intel
02 Jan 2024
How to monitor your organization’s presence on the dark web
Application Security
15 Nov 2023
Can traditional pen testing keep up with modern AppSec? Ask the pen tester 
Application Security
10 Jan 2023
A pen tester’s guide to Content Security Policy

Topics

Graphic for hacktivist article
How hacktivist cyber operations surged amid Israeli-Iranian conflict
Cybersecurity News
01 Jul 2025
In June 2025, Israel carried out airstrikes against key Iranian military and nuclear facilities. Iran swiftly retaliated, escalating regional tensions...
Computer screen with a cryptocurrency symbol
Analyzing the Gonjeshke Darande attack on Iranian crypto exchange...
Cybersecurity News
23 Jun 2025
The cyberattack by Gonjeshke Darande on Nobitex (Iran’s largest cryptocurrency exchange) made global headlines, not only for its scale, but...
Graphic for blog on OAuth vulnerabilities
Tokens & traps: Seven common OAuth vulnerabilities (plus mitigations)
Application Security
18 Jun 2025
In the world of modern web applications, the OAuth flow is our trusty gatekeeper, enabling seamless logins and secure data...
EASM buyer's guide
EASM Buyer’s Guide 2025: A guide for a futureproof...
EASM
11 Jun 2025
Your external attack surface is growing — whether you’re aware of it or not. Cloud migration, IoT, AI, and remote...