>> TAG: #0day

Advantech WebAccess < 8.3 – Directory Traversal / Remote Code Execution

Prisma Industriale Checkweigher PrismaWEB 1.21 – Hard-Coded Credentials

DEWESoft X3 SP1 (64-bit) – Remote Command Execution

ManageEngine Applications Manager 13.5 – Remote Code Execution (Metasploit)

SC 7.16 – Stack-Based Buffer Overflow

MikroTik RouterOS < 6.38.4 (MIPSBE) – 'Chimay Red' Stack Clash Remote Code Execution

WebLog Expert Enterprise 9.4 – Denial of Service

WebLog Expert Enterprise 9.4 – Authentication Bypass

Bacula-Web < 8.0.0-rc2 – SQL Injection

Memcached 1.5.5 – ‘Memcrashed ‘ Insufficient Control of Network Message Volume Denial of Service With Shodan API