Vulnerabilities > Zohocorp > Manageengine Pam360 > 5.8

DATE CVE VULNERABILITY TITLE RISK
2024-08-28 CVE-2024-5546 SQL Injection vulnerability in Zohocorp Manageengine Pam360
Zohocorp ManageEngine Password Manager Pro versions before 12431 and ManageEngine PAM360 versions before 7001 are affected by authenticated SQL Injection vulnerability via a global search option.
network
low complexity
zohocorp CWE-89
8.8
8.8
2024-05-20 CVE-2024-27312 Incorrect Authorization vulnerability in Zohocorp Manageengine Pam360
Zohocorp ManageEngine PAM360 version 6601 is vulnerable to authorization vulnerability which allows a low-privileged user to perform admin actions.
network
low complexity
zohocorp CWE-863
8.1
8.1
2023-01-05 CVE-2022-47523 SQL Injection vulnerability in Zohocorp Manageengine Password Manager PRO
Zoho ManageEngine Access Manager Plus before 4309, Password Manager Pro before 12210, and PAM360 before 5801 are vulnerable to SQL Injection.
network
low complexity
zohocorp CWE-89
critical
 9.8
9.8