Redaxo CMS Mediapool add-on versions prior to 5.5.1 suffer from a remote file upload vulnerability.
fc88fcd8d8d8a4493cd0e55256224396d95092f387906c01283820235f21d630
Redaxo CMS Addon MyEvents version 2.2.1 suffers from a remote SQL injection vulnerability.
afb2b825e3b294c01bab12027b413b03b6108bdd1a0d8298f3e5d78245571cd9