CVE-2020-9347

Zoho ManageEngine Password Manager Pro through 10.x has a CSV Excel Macro Injection vulnerability via a crafted name that is mishandled by the Export Passwords feature. NOTE: the vendor disputes the significance of this report because they expect CSV risk mitigation to be provided by an external...

ZOHO ManageEngine Password Manager Pro Injection Vulnerability

Zoho ManageEngine Password Manager Pro is a password management software for storing, sharing and resetting passwords. A security vulnerability exists in Zoho ManageEngine Password Manager Pro. The vulnerability stems from improper handling of specially crafted names in the "Export Passwords"...

PT-2020-20602 · Zoho · Manageengine Password Manager Pro

Name of the Vulnerable Software and Affected Versions: Zoho ManageEngine Password Manager Pro versions prior to 11.x Description: The issue is related to a CSV Excel Macro Injection vulnerability. It occurs when a crafted name is mishandled by the Export Passwords feature. The vendor has expresse...

openSUSE Security Update : chromium (openSUSE-2018-381)

This update for Chromium to version 66.0.3359.117 fixes the following issues : Security issues fixed boo1090000 : - CVE-2018-6085: Use after free in Disk Cache - CVE-2018-6086: Use after free in Disk Cache - CVE-2018-6087: Use after free in WebAssembly - CVE-2018-6088: Use after free in PDFium -...