ZohoCorp ManageEngine Password Manager Pro 5.4
Approved changes feed: RSS · Atom
cpe:2.3:a:zohocorp:manageengine_password_manager_pro:5.4:*:*:*:-:*:*:*
part: a version: 5.4 update: *
| Vendor | Zohocorp (4f1ab088-ab0e-54ac-b0dc-2304879a7502) |
|---|---|
| Product | Manageengine Password Manager Pro (3bc1e2cc-f2eb-500e-95b3-eb5f44d90392) |
| Edition | * |
| Language | * |
| Software edition | - |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2022-40300 |
vulnerable | 2026-06-03 14:48:01.109148 |
Details available
Zoho ManageEngine Password Manager Pro through 12120 before 12121, PAM360 through 5550 before 5600, and Access Manager Plus through 4304 before 4305 have multiple SQL injection vulnerabilities.
Published: 2022-09-16T22:47:55.000Z
Updated: 2024-08-03T12:14:39.986Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2014-3997 |
vulnerable | 2026-06-03 14:34:02.368110 |
Details available
SQL injection vulnerability in the MetadataServlet servlet in ManageEngine Password Manager Pro (PMP) and Password Manager Pro Managed Service Providers (MSP) edition 5 through 7 build 7003, IT360 and IT360 Managed Service Providers (MSP) edition before 10.3.3 build 10330, and possibly other ManageEngine products, allows remote attackers or remote authenticated users to execute arbitrary SQL commands via the sv parameter to MetadataServlet.dat.
Published: 2014-12-05T15:00:00.000Z
Updated: 2024-08-06T11:04:27.709Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.