Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-25 | CVE-2025-0411 | Unspecified vulnerability in 7-Zip 7-Zip Mark-of-the-Web Bypass Vulnerability. | 7.0 |
| 2025-01-24 | CVE-2025-0707 | A vulnerability was found in Rise Group Rise Mode Temp CPU 2.1. | 7.8 |
| 2025-01-24 | CVE-2025-24618 | Missing Authorization vulnerability in Elementinvader Addons for Elementor Missing Authorization vulnerability in ElementInvader ElementInvader Addons for Elementor allows Exploiting Incorrectly Configured Access Control Security Levels. | 8.8 |
| 2025-01-24 | CVE-2025-24753 | Missing Authorization vulnerability in Kadencewp Gutenberg Blocks With AI Missing Authorization vulnerability in Kadence WP Gutenberg Blocks by Kadence Blocks allows Exploiting Incorrectly Configured Access Control Security Levels. | 8.8 |
| 2025-01-24 | CVE-2024-25034 | Unrestricted Upload of File with Dangerous Type vulnerability in IBM Planning Analytics 2.0/2.1 IBM Planning Analytics 2.0 and 2.1 could be vulnerable to malicious file upload by not validating the type of file in the File Manager T1 process. | 8.8 |
| 2025-01-24 | CVE-2024-40693 | Unrestricted Upload of File with Dangerous Type vulnerability in IBM Planning Analytics 2.0/2.1 IBM Planning Analytics 2.0 and 2.1 could be vulnerable to malicious file upload by not validating the content of the file uploaded to the web interface. | 8.0 |
| 2025-01-24 | CVE-2024-41739 | IBM Cognos Dashboards 4.0.7 and 5.0.0 on Cloud Pak for Data could allow a remote attacker to perform unauthorized actions due to dependency confusion. | 8.8 |
| 2025-01-24 | CVE-2024-13408 | Unspecified vulnerability in Pickplugins Post Grid The Post Grid, Slider & Carousel Ultimate – with Shortcode, Gutenberg Block & Elementor Widget plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.6.10 via the 'theme' attribute of the `pgcu` shortcode. | 8.8 |
| 2025-01-24 | CVE-2024-13409 | Unspecified vulnerability in Wpwax Post Grid, Slider & Carousel Ultimate The Post Grid, Slider & Carousel Ultimate – with Shortcode, Gutenberg Block & Elementor Widget plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.6.10 via the 'theme' parameter of the post_type_ajax_handler() function. | 8.8 |
| 2025-01-23 | CVE-2024-50664 | Out-of-bounds Write vulnerability in Gpac 2.4 gpac 2.4 contains a heap-buffer-overflow at isomedia/sample_descs.c:1799 in gf_isom_new_mpha_description in gpac/MP4Box. | 7.8 |