2 matches found
CVE-2025-15540 Authenticated RCE in Raytha CMS
"Functions" module in Raytha CMS allows privileged users to write custom code to add functionality to application. Due to a lack of sandboxing or access restrictions, JavaScript code executed through Raytha’s “functions” feature can instantiate .NET components and perform arbitrary...
SUSE CVE-2018-11416
jpegoptim.c in jpegoptim 1.4.5 fixed in 1.4.6 has an invalid use of realloc and free, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact...