CVE-2026-5785

Zohocorp ManageEngine PAM360 versions before 8531 and ManageEngine Password Manager Pro versions from 8600 to 13230 are vulnerable to Authenticated SQL injection in the query report module...

CVE-2026-5785

The CVE-2026-5785 issue affects Zohocorp ManageEngine PAM360 (versions before 8531) and ManageEngine Password Manager Pro (versions 8600 to 13230). The vulnerability is an Authenticated SQL injection in the query report module, allowing an attacker with LOW privileges and no user interaction to t...

CVE-2026-5785 SQL Injection

Zohocorp ManageEngine PAM360 versions before 8531 and ManageEngine Password Manager Pro versions from 8600 to 13230 are vulnerable to Authenticated SQL injection in the query report module...

PT-2026-33319

Name of the Vulnerable Software and Affected Versions ManageEngine PAM360 versions prior to 8531 ManageEngine Password Manager Pro versions 8600 through 13230 Description An authenticated SQL injection exists in the query report module. SQL injection is a type of flaw that allows an attacker to...

CVE-2025-11669

Zohocorp ManageEngine PAM360 versions before 8202; Password Manager Pro versions before 13221; Access Manager Plus versions prior to 4401 are vulnerable to an authorization issue in the initiate remote session functionality...

CVE-2025-11669 Broken Access Control

Zohocorp ManageEngine PAM360 versions before 8202; Password Manager Pro versions before 13221; Access Manager Plus versions prior to 4401 are vulnerable to an authorization issue in the initiate remote session functionality...

CVE-2025-11669

The vulnerability CVE-2025-11669 affects Zohocorp ManageEngine PAM360 (versions before 8202), Password Manager Pro (before 13221), and Access Manager Plus (before 4401). It is described as an authorization issue in the initiate remote session functionality. Remediation: upgrade PAM360 to 8202 or ...

PT-2026-2436

Name of the Vulnerable Software and Affected Versions ManageEngine PAM360 versions prior to 8202 Password Manager Pro versions prior to 13221 Access Manager Plus versions prior to 4401 Description The software is subject to an authorization issue within the initiate remote session functionality...

ZOHO多款产品 安全漏洞

ZOHO Password Manager Pro PMP and so on are products of ZOHO USA company.ZOHO Password Manager Pro is a password manager.ZOHO ManageEngine Access Manager Plus is the ZOHO ManageEngine PAM360 is a complete PAM software. A security vulnerability exists in several ZOHO products, which stems from an...

EUVD-2023-33797

Malicious code in bioql PyPI...

EUVD-2024-24528

Malicious code in bioql PyPI...

CVE-2024-27313

Zoho ManageEngine PAM360 is vulnerable to Stored XSS vulnerability. This vulnerability is applicable only in the version 6610...

ManageEngine PAM360 < 7.0 Build 7001 SQLi

The remote host is running a version of ManageEngine PAM360 prior to 7.0 Build 7001. It is, therefore, affected by a SQL injection vulnerability. An unauthenticated, remote attacker can exploit this to inject or manipulate SQL queries in the back-end database, resulting in the disclosure or...

ZOHO ManageEngine Password Manager Pro 安全漏洞

ZOHO ManageEngine Password Manager Pro is a password manager from ZOHO, Inc. A security vulnerability exists in ZOHO ManageEngine Password Manager Pro prior to version 12431 and ManageEngine PAM360 prior to version 7001, which stems from a failure to properly filter input via the global search...

CVE-2024-27313 XSS Vulnerability

Zoho ManageEngine PAM360 is vulnerable to Stored XSS vulnerability. This vulnerability is applicable only in the version 6610...

Zoho ManageEngine PAM360 安全漏洞

ZOHO ManageEngine PAM360 is a complete PAM software from ZOHO, Inc. that provides complete privileged access security for your IT infrastructure. A security vulnerability exists in Zoho ManageEngine PAM360 version 6610, which stems from the presence of a stored cross-site scripting XSS...

PT-2024-21815

Name of the Vulnerable Software and Affected Versions Zoho ManageEngine PAM360 version 6610 Description The issue is related to a Stored XSS vulnerability. Recommendations For Zoho ManageEngine PAM360 version 6610, at the moment, there is no information about a newer version that contains a fix f...

CVE-2024-27312

Zohocorp ManageEngine PAM360 version 6601 is vulnerable to authorization vulnerability which allows a low-privileged user to perform admin actions. Note: This vulnerability affects only the PAM360 6600 version. No other versions are applicable to this vulnerability...

CVE-2024-27312

Zohocorp ManageEngine PAM360 version 6601 is vulnerable to authorization vulnerability which allows a low-privileged user to perform admin actions. Note: This vulnerability affects only the PAM360 6600 version. No other versions are applicable to this vulnerability...

ZOHO ManageEngine PAM360 安全漏洞

ZOHO ManageEngine PAM360 is a complete PAM software from ZOHO, Inc. It provides complete privileged access security for your IT infrastructure. A security vulnerability exists in Zoho ManageEngine PAM360 version 6601, which stems from allowing a low-privileged user to perform administrative...