Spring Data REST < 2.6.9 (Ingalls SR9), 3.0.1 (Kay SR1) – PATCH Request Remote Code Execution
>> TAG: #remote exploit
Android DRM Services – Buffer Overflow
MikroTik RouterOS < 6.41.3/6.42rc27 – SMB Buffer Overflow
SecurEnvoy SecurMail 9.1.501 – Multiple Vulnerabilities
Tuleap 9.17.99.189 – Blind SQL Injection
TextPattern 4.6.2 – ‘qty’ SQL Injection
Advantech WebAccess < 8.3 – Directory Traversal / Remote Code Execution
Prisma Industriale Checkweigher PrismaWEB 1.21 – Hard-Coded Credentials
DEWESoft X3 SP1 (64-bit) – Remote Command Execution
ManageEngine Applications Manager 13.5 – Remote Code Execution (Metasploit)