Lucene search
MitreCVELIST:CVE-2014-3997HistoryDec 05, 2014 - 3:00 p.m.
CVE-2014-3997
2014-12-0515:00:00
mitre
www.cve.org
1
SQL injection vulnerability in the MetadataServlet servlet in ManageEngine Password Manager Pro (PMP) and Password Manager Pro Managed Service Providers (MSP) edition 5 through 7 build 7003, IT360 and IT360 Managed Service Providers (MSP) edition before 10.3.3 build 10330, and possibly other ManageEngine products, allows remote attackers or remote authenticated users to execute arbitrary SQL commands via the sv parameter to MetadataServlet.dat.
Related
cve
cve
CVE-2014-3997
2014-12-05 15:59:01
prion
prion
Sql injection
2014-12-05 15:59:00
nvd
nvd
CVE-2014-3997
2014-12-05 15:59:01
exploitpack
exploitpack
ManageEngine Password Manager Pro ManageEngine IT360 - SQL Injection
2014-08-20 00:00:00
packetstorm
packetstorm
ManageEngine Desktop Central / Password Manager Pro / IT360 SQL Injection
2014-08-20 00:00:00
nessus
nessus
ManageEngine Password Manager Pro < 7.0 Build 7003 SQL Injection
2015-01-23 00:00:00
zdt
zdt
ManageEngine Desktop Central / Password Manager Pro / IT360 SQL Injection
2014-08-20 00:00:00
exploitdb
exploitdb
ManageEngine Password Manager Pro / ManageEngine IT360 - SQL Injection
2014-08-20 00:00:00