Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-04-30 | CVE-2025-30391 | Improper Input Validation vulnerability in Microsoft Dynamics 365 Customer Service Improper input validation in Microsoft Dynamics allows an unauthorized attacker to disclose information over a network. | 7.5 |
| 2025-04-30 | CVE-2025-30392 | Improper Authorization vulnerability in Microsoft Azure AI BOT Service Improper authorization in Azure Bot Framework SDK allows an unauthorized attacker to elevate privileges over a network. | 9.8 |
| 2025-04-30 | CVE-2025-33074 | Improper Verification of Cryptographic Signature vulnerability in Microsoft Azure Functions Improper verification of cryptographic signature in Microsoft Azure Functions allows an authorized attacker to execute code over a network. | 8.8 |
| 2025-04-30 | CVE-2025-39413 | Missing Authorization vulnerability in Wpgoplugins Simple Sitemap Missing Authorization vulnerability in David Gwyer Simple Sitemap – Create a Responsive HTML Sitemap.This issue affects Simple Sitemap – Create a Responsive HTML Sitemap: from n/a through 3.5.14. | 8.8 |
| 2025-04-30 | CVE-2025-4135 | A vulnerability was found in Netgear WG302v2 up to 5.2.9 and classified as critical. | 6.3 |
| 2025-04-30 | CVE-2025-3599 | Unspecified vulnerability in Broadcom Symantec Endpoint Protection Symantec Endpoint Protection Windows Agent, running an ERASER Engine prior to 119.1.7.8, may be susceptible to an Elevation of Privilege vulnerability, which may allow an attacker to delete resources that are normally protected from an application or user. | 7.5 |
| 2025-04-30 | CVE-2025-3859 | Open Redirect vulnerability in Mozilla Firefox Focus Websites directing users to long URLs that caused eliding to occur in the location view could leverage the truncating behavior to potentially trick users into thinking they were on a different webpage This vulnerability affects Focus < 138. | 6.1 |
| 2025-04-30 | CVE-2025-27134 | Unspecified vulnerability in Joplin Project Joplin Joplin is a free, open source note taking and to-do application, which can handle a large number of notes organised into notebooks. | 8.8 |
| 2025-04-30 | CVE-2025-27409 | Unspecified vulnerability in Joplin Project Joplin Joplin is a free, open source note taking and to-do application, which can handle a large number of notes organised into notebooks. | 7.5 |
| 2025-04-30 | CVE-2025-32376 | Improper Access Control vulnerability in Discourse Discourse is an open-source discussion platform. | 4.3 |