Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:26 a.m.9 views

CVE-2022-47523

Zoho ManageEngine Access Manager Plus before 4309, Password Manager Pro before 12210, and PAM360 before 5801 are vulnerable to SQL Injection...

9.8CVSS7.5AI score0.70578EPSS
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2023/01/12 2:20 p.m.72 views

Recog Release v3.0.3

Recog Release v3.0.3, which is available now, includes updated fingerprints for Zoho ManageEngine PAM360, Password Manager Pro, and Access Manager Plus; Atlassian Bitbucket Server; and Supervisord Supervisor. It also includes new fingerprints and a number of bug fixes, all of which are detailed...

0.1AI score0.9994EPSS
Exploits29
hivepro
hivepro
added 2023/01/06 2:16 p.m.37 views

Zoho Addresses SQL Injection Vulnerability in ManageEngine Products

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary A security flaw affecting multiple ManageEngine products identified as CVE-2022-47523 is an SQL injection vulnerability found in the ZOHO’s Password Manager Pro Secure Vault, PAM360 Privileged...

4.4AI score0.70578EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/01/06 12:0 a.m.46 views

ManageEngine PAM360 < 5.8 Build 5801 SQLi

The remote host is running a version of ManageEngine PAM360 prior to 5.8 Build 5801. It is, therefore, affected by a SQL injection vulnerability. An unauthenticated, remote attacker can exploit this to inject or manipulate SQL queries in the back-end database, resulting in the disclosure or...

9.8CVSS9.1AI score0.70578EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2023/01/05 7:52 a.m.62 views

Fortinet and Zoho Urge Customers to Patch Enterprise Software Vulnerabilities

Fortinet has warned of a high-severity flaw affecting multiple versions of FortiADC application delivery controller that could lead to the execution of arbitrary code. "An improper neutralization of special elements used in an OS command vulnerability in FortiADC may allow an authenticated attack...

2.6AI score0.70578EPSS
Exploits0
CVE
CVE
added 2023/01/05 12:0 a.m.131 views

CVE-2022-47523

CVE-2022-47523 affects Zoho ManageEngine PAM360 (previous to 5801), Password Manager Pro (previous to 12210), and Access Manager Plus (previous to 4309). The vulnerability is SQL injection in backend query handling, enabling access to or manipulation of database entries as described in the connec...

9.8CVSS9.6AI score0.70578EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/05 12:0 a.m.8 views

CVE-2022-47523

Zoho ManageEngine Access Manager Plus before 4309, Password Manager Pro before 12210, and PAM360 before 5801 are vulnerable to SQL Injection...

7.4AI score0.70578EPSS
Exploits0References1
Rows per page
Query Builder