Vulnerabilities > Zohocorp > Manageengine Pam360 > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-28 | CVE-2024-5546 | SQL Injection vulnerability in Zohocorp Manageengine Pam360 Zohocorp ManageEngine Password Manager Pro versions before 12431 and ManageEngine PAM360 versions before 7001 are affected by authenticated SQL Injection vulnerability via a global search option. | 8.8 |
| 2024-05-20 | CVE-2024-27312 | Incorrect Authorization vulnerability in Zohocorp Manageengine Pam360 Zohocorp ManageEngine PAM360 version 6601 is vulnerable to authorization vulnerability which allows a low-privileged user to perform admin actions. | 8.1 |
| 2023-04-26 | CVE-2023-2291 | Unspecified vulnerability in Zohocorp products Static credentials exist in the PostgreSQL data used in ManageEngine Access Manager Plus (AMP) build 4309, ManageEngine Password Manager Pro, and ManageEngine PAM360. | 7.8 |