| Sentinel Security | https://sentinel-security.tech/ |
π¨ New Critical WordPress Vulnerability: CVE-2025-7710
The Brave Conversion Engine (PRO) plugin β€ 0.7.7 suffers from an Authentication Bypass via Facebook login.
π Unauthenticated attackers can impersonate any user, even admins.
β‘οΈ CVSS: 9.8 (Critical)
π₯ Impact: Full takeover
π https://nvd.nist.gov/vuln/detail/CVE-2025-7710
Why use Makefiles with Go? π€
β
One-liners for common tasks
π Portable across teams
π§Ή Built-in cleanup with make clean
```
clean:
rm -rf bin/
```
```
make build && make test
```
πΉ + π οΈ = πͺ #Golang #Makefiles #DevLife
𧡠Go + Makefiles = π₯ Developer Flow
π οΈ Writing Go?
π¦ Tired of running go build, go test, go run manually?
Make a Makefile your new best friend:
```
build:
go build -o bin/app main.go
test:
go test ./...
run:
go run main.go
```
π±οΈ Now just make run like a boss π»
#Golang #Makefile #DevTips
π§ͺ Chrome Dev Channel Updated
π
July 24, 2025
π» Version: 140.0.7312.0
π₯οΈ Platforms: Windows, macOS, Linux
π§ Check the Git log for changes
π Found a bug? Report it!
π’ More info: chromium.org/getting-involved/dev-channel
Multiple vulnerabilities in Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an unauthenticated, remote attacker to issue commands on the underlying operating system as the root user. For more information about these vulnerabilities, see the Details section of this advisory. Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities. Note: Since the publication of version 1.0 of this advisory, improved fixed releases have become available. Cisco recommends upgrading to an enhanced fixed release as follows: If Cisco ISE is running Release 3.4 Patch 2, no further action is necessary. If Cisco ISE is running Release 3.3 Patch 6, additional fixes are available in Release 3.3 Patch 7, and the device must be upgraded. If Cisco ISE has either hot patch ise-apply-CSCwo99449_3.3.0.430_patch4-SPA.tar.gz or hot patch ise-apply-CSCwo99449_3.4.0.608_patch1-SPA.tar.gz installed, Cisco recommends upgrading to Release 3.3 Patch 7 or Release 3.4 Patch 2. The hot patches did not address CVE-2025-20337 and have been deferred from CCO. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-unauth-rce-ZAd2GnJ6
β οΈ CVE-2025-53770
𧨠Critical Deserialization Vulnerability in on-prem Microsoft SharePoint Server
π Exploitable remotely β lets attackers execute arbitrary code without auth!
π Full details soon in our new Vulnerability Management Portal β launching shortly.
π‘ Stay secure. Stay ahead.
#CVE2025 #SharePoint #Infosec #VulnMgmt
π Stop giving away your real email!
π¨ Use aliases or email forwarding services.
π No more spam, no more tracking.
π§ Bonus: Pair it with a VPN and encrypted inbox.
Because your inbox is your business.
#PrivacyMatters #Infosec #EmailTips
π¬ Your inbox is not a safe space.
π΅οΈββοΈ Trackers hide in emails.
π‘ Links can reveal your location.
ποΈ Images can auto-load and spy.
π Use a privacy-focused email client.
βοΈ Block remote content.
π‘οΈ Mask your real address when signing up.