Description
Cross-site request forgery (CSRF) vulnerability in ManageEngine Password Manager Pro before 8.5 (Build 8500).
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/91531
Third Party Advisory, VDB Entry x_refsource_misc
http://jvn.jp/en/vu/JVNVU95113461/
Third Party Advisory x_refsource_misc
https://www.excellium-services.com/cert-xlm-advisory/cve-2016-1161/
Scores
CVSS v3
8.0
EPSS
0.0024
EPSS Percentile
47.6%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-352
Status
published
Products (1)
zohocorp/password_manager_pro
< 8.5
Published
Apr 20, 2017
Tracked Since
Feb 18, 2026