Lucene search
K

6 matches found

NVD
NVD
added 2014/12/05 3:59 p.m.17 views

CVE-2014-3997

SQL injection vulnerability in the MetadataServlet servlet in ManageEngine Password Manager Pro PMP and Password Manager Pro Managed Service Providers MSP edition 5 through 7 build 7003, IT360 and IT360 Managed Service Providers MSP edition before 10.3.3 build 10330, and possibly other ManageEngi...

7.5CVSS8AI score0.09199EPSS
Exploits5References4
CVE
CVE
added 2014/12/05 3:0 p.m.61 views

CVE-2014-3997

The CVE-2014-3997 entry concerns SQL injection in the MetadataServlet.dat endpoint of ManageEngine Password Manager Pro (PMP) and PMP MSP, affecting PMP 5–7 build 7003 and IT360/IT360 MSP prior to 10.3.3 build 10330 (and related products). Public sources confirm vulnerable vectors via the sv para...

7.5CVSS8.2AI score0.09199EPSS
Exploits5References4Affected Software1
Cvelist
Cvelist
added 2014/12/05 3:0 p.m.33 views

CVE-2014-3997

SQL injection vulnerability in the MetadataServlet servlet in ManageEngine Password Manager Pro PMP and Password Manager Pro Managed Service Providers MSP edition 5 through 7 build 7003, IT360 and IT360 Managed Service Providers MSP edition before 10.3.3 build 10330, and possibly other ManageEngi...

7.9AI score0.09199EPSS
Exploits5References4
Packet Storm
Packet Storm
added 2014/08/20 12:0 a.m.78 views

ManageEngine Desktop Central / Password Manager Pro / IT360 SQL Injection

TL;DR CVE-2014-3996 / CVE-2014-3997 Blind SQL injection in ManageEngine Desktop Central, Password Manager Pro and IT360 including MSP versions Scroll to the bottom for the Metasploit module link; the module will be submitted to Metasploit proper in a pull request in the next few days...

7.5CVSS0.5AI score0.35547EPSS
Exploits13
0day.today
0day.today
added 2014/08/20 12:0 a.m.92 views

ManageEngine Desktop Central / Password Manager Pro / IT360 SQL Injection

ManageEngine Desktop Central, Password Manager Pro, and IT360 suffer from remote blind SQL injection vulnerabilities. Metasploit module included. TL;DR CVE-2014-3996 / CVE-2014-3997 Blind SQL injection in ManageEngine Desktop Central, Password Manager Pro and IT360 including MSP versions Scroll t...

7.5CVSS0.5AI score0.35547EPSS
Exploits13
Circl
Circl
added 2014/08/20 12:0 a.m.16 views

CVE-2014-3997

creationtimestamp| type| source ---|---|--- 2014-08-20 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39288...

7.5CVSS6.8AI score0.09199EPSS
Exploits5References1
Rows per page
Query Builder