Securing CI/CD workflows with Wazuh

May 21, 2025

Continuous Integration and Continuous Delivery/Deployment (CI/CD) refers to practices that automate how code is developed and released to different environments. CI/CD pipelines are fundamental in modern software development, ensuring code is consistently tested, built, and deployed quickly and efficiently.
While CI/CD automation accelerates software delivery, it can also introduce security

Source: Read More

Previous ArticleFake Kling AI Facebook Ads Deliver RAT Malware to Over 22 Million Potential Victims

Next Article How to Detect Phishing Attacks Faster: Tycoon2FA Example

Highlights

CVE-2025-2850 – “GL.iNet Router Unauthorized Download Interface Processing Vulnerability”

April 26, 2025

CVE ID : CVE-2025-2850

Published : April 26, 2025, 8:15 a.m. | 3 hours, 49 minutes ago

Description : A vulnerability was found in GL.iNet GL-A1300 Slate Plus, GL-AR300M16 Shadow, GL-AR300M Shadow, GL-AR750 Creta, GL-AR750S-EXT Slate, GL-AX1800 Flint, GL-AXT1800 Slate AX, GL-B1300 Convexa-B, GL-B3000 Marble, GL-BE3600 Slate 7, GL-E750, GL-E750V2 Mudi, GL-MT300N-V2 Mango, GL-MT1300 Beryl, GL-MT2500 Brume 2, GL-MT3000 Beryl AX, GL-MT6000 Flint 2, GL-SFT1200 Opal, GL-X300B Collie, GL-X750 Spitz, GL-X3000 Spitz AX, GL-XE300 Puli and GL-XE3000 Puli AX 4.x. It has been rated as problematic. This issue affects some unknown processing of the component Download Interface. The manipulation leads to improper authorization. It is recommended to upgrade the affected component.

Severity: 3.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

A Week In The Life Of An AI-Augmented Designer

This week in AI updates: Gemini Code Assist Agent Mode, GitHub’s Agents panel, and more (August 22, 2025)

Microsoft adds Copilot-powered debugging features for .NET in Visual Studio

Blackstone portfolio company R Systems Acquires Novigo Solutions, Strengthening its Product Engineering and Full-Stack Agentic-AI Capabilities

I found the ultimate MacBook Air alternative for Windows users – and it’s priced well

Outdated IT help desks are holding businesses back – but there is a solution

Android’s latest update can force apps into dark mode – how to see it now

I tried the Google Pixel Watch 4 – and these key features made it feel indispensable

Building Cross-Platform Alerts with Laravel’s Notification Framework

Building Cross-Platform Alerts with Laravel’s Notification Framework

Add Notes Functionality to Eloquent Models With the Notable Package

How to install OpenPlatform — IoT platform

Basics of Digital Forensics

Basics of Digital Forensics

Top Linux Server Automation Tools: Simplifying System Administration

Rising from the Ashes: How AlmaLinux and Rocky Linux Redefined the Post-CentOS Landscape

Securing CI/CD workflows with Wazuh

Building Cross-Platform Alerts with Laravel’s Notification Framework

Add Notes Functionality to Eloquent Models With the Notable Package

CVE-2025-6309 – PHPGurukul Emergency Ambulance Hiring Portal SQL Injection Vulnerability

CVE-2025-48922 – Drupal GLightbox Cross-Site Scripting (XSS) Vulnerability

Darcula Adds GenAI to Phishing Toolkit, Lowering the Barrier for Cybercriminals

CVE-2025-4802 – GNU C Library LD_LIBRARY_PATH Path Traversal Vulnerability

CVE-2025-2850 – “GL.iNet Router Unauthorized Download Interface Processing Vulnerability”

Word for the Web Finally Gets Proper Header and Footer Editing

CVE-2025-7768 – Tigo Energy CCA Hard-Coded Credentials Vulnerability

CVE-2025-34126 – RIPS Scanner Remote File Read Vulnerability

Securing CI/CD workflows with Wazuh

Related Posts