header-logo
Suggest Exploit
vendor:
Password Manager Pro
by:
Unknown
7.5
CVSS
HIGH
Remote unauthorized access
287
CWE
Product Name: Password Manager Pro
Affected Version From: Free edition
Affected Version To: Unknown
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
Unknown

ManageEngine Password Manager Pro Remote Unauthorized Access Vulnerability

An attacker can gain unauthorized access to the application's database with administrative privileges, leading to a complete compromise of vulnerable applications.

Mitigation:

Unknown
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/23693/info

ManageEngine Password Manager Pro is prone to a remote unauthorized-access vulnerability due to a design error.

An attacker may leverage this issue to gain unauthorized access to the application's database with administrative privileges. Successful exploits will result in a complete compromise of vulnerable applications and may aid in further attacks.

ManageEngine Password Manager Pro Free edition is vulnerable; other versions may also be affected. 

$mysql -h example.com --port 2345 -u root

Navigation

Suggest Exploit

Services By CQR