A vulnerability categorized as critical has been discovered in Cewe-Photoworld CEWE Photoshow 6.3.4 . The impacted element is an unknown function. Such manipulation of the argument email address/password leads to buffer overflow. This vulnerability is documented as CVE-2018-25294 . The attack can be executed remotely. Additionally, an exploit exists.