Manageengine Password Manager Pro@12.0 Security Vulnerabilities and Issues — Manageengine Password Manager Pro@12.0 CVE List

Lucene search

ZohocorpManageengine Password Manager Pro12.0

3 matches found

CVE•added 2022/04/28 8:15 p.m.•552 views

CVE-2022-29081

Zoho ManageEngine Access Manager Plus before 4302, Password Manager Pro before 12007, and PAM360 before 5401 are vulnerable to access-control bypass on a few Rest API URLs (for SSOutAction. SSLAction. LicenseMgr. GetProductDetails. GetDashboard. FetchEvents. and Synchronize) via the ../RestAPI subs...

9.8CVSS9.4AI score0.1457EPSS

In wild

CVE•added 2024/08/28 9:15 a.m.•54 views

CVE-2024-5546

Zohocorp ManageEngine Password Manager Pro versions before 12431 and ManageEngine PAM360 versions before 7001 are affected by authenticated SQL Injection vulnerability via a global search option.

8.8CVSS8.6AI score0.04159EPSS

CVE•added 2022/09/16 11:15 p.m.•45 views

CVE-2022-40300

Zoho ManageEngine Password Manager Pro through 12120 before 12121, PAM360 through 5550 before 5600, and Access Manager Plus through 4304 before 4305 have multiple SQL injection vulnerabilities.

9.8CVSS9.8AI score0.46103EPSS