New to the web platform in April

May 2, 2025

Discover some of the interesting features that have landed in stable and beta web browsers during April 2025.

Source: web.dev: BlogÂ

Previous ArticleRedis returns to open source with AGPLv3 license but not everyone is happy

Next Article New to the web platform in March

Highlights

CVE-2025-4731 – TOTOLINK HTTP POST Request Handler Buffer Overflow Vulnerability

May 15, 2025

CVE ID : CVE-2025-4731

Published : May 16, 2025, 12:15 a.m. | 42 minutes ago

Description : A vulnerability classified as critical has been found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615. This affects an unknown part of the file /boafrm/formPortFw of the component HTTP POST Request Handler. The manipulation of the argument service_type leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CodeSOD: A Unique Way to Primary Key

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

I’m a wearables editor and here are the 7 Pixel Watch 4 rumors I’m most curious about

8 ways I quickly leveled up my Linux skills – and you can too

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

Execute Ping Commands and Get Back Structured Data in PHP

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

“I don’t think I changed his mind” — NVIDIA CEO comments on H20 AI GPU sales resuming in China following a meeting with President Trump

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

New to the web platform in April

GPT-5 is Coming: Revolutionizing Software Testing

Win the Accessibility Game: Combining AI with Human Judgment

How to Create Partitions in Linux Using fdisk Command

CVE-2025-20272 – Cisco Prime Infrastructure and EPNM Blind SQL Injection

Easily Toggle Ubuntu’s New Wellbeing Reminders On/Off

Playwright vs Selenium

CVE-2025-4731 – TOTOLINK HTTP POST Request Handler Buffer Overflow Vulnerability

CRUSH is an astronomical data reduction and imaging tool

CVE-2025-3817 – SourceCodester Online Eyewear Shop SQL Injection Vulnerability

CVE-2025-48927 – Apache TeleMessage Spring Boot Actuator Heap Dump Exposed Endpoint Vulnerability

New to the web platform in April

Related Posts