Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
password manager vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-8499
Multiple SQL injection vulnerabilities in ManageEngine Password Manager Pro (PMP) and Password Manager Pro Managed Service Providers (MSP) edition prior to 7.1 build 7105 allow remote authenticated users to execute arbitrary SQL commands via the SEARCH_ALL parameter to (1) SQLAdv...
Manageengine Password Manager Pro
1 EDB exploit
5.4
CVSSv3
CVE-2019-19461
Post-authentication Stored XSS in Team Password Manager up to and including 7.93.204 allows malicious users to steal other users' credentials by creating a shared password with HTML code as the title.
Teampasswordmanager Team Password Manager
7.8
CVSSv3
CVE-2020-8469
Trend Micro Password Manager for Windows version 5.0 is affected by a DLL hijacking vulnerability would could potentially allow an attacker privleged escalation.
Trendmicro Password Manager 5.0
7.8
CVSSv3
CVE-2019-14687
A DLL hijacking vulnerability exists in Trend Micro Password Manager 5.0 in which, if exploited, would allow an malicious user to load an arbitrary unsigned DLL into the signed service's process. This process is very similar, yet not identical to CVE-2019-14684.
Trendmicro Password Manager 5.0
8.8
CVSSv3
CVE-2021-44036
Team Password Manager (aka TeamPasswordManager) prior to 10.135.236 has a CSRF vulnerability during import.
Teampasswordmanager Team Password Manager
7.8
CVSSv3
CVE-2019-14684
A DLL hijacking vulnerability exists in Trend Micro Password Manager 5.0 in which, if exploited, would allow an malicious user to load an arbitrary unsigned DLL into the signed service's process. This process is very similar, yet not identical to CVE-2019-14687.
Trendmicro Password Manager 5.0
5.9
CVSSv3
CVE-2018-12240
The Norton Identity Safe product before 5.3.0.976 may be susceptible to a privilege escalation issue via a hard coded IV, which is a type of vulnerability that can potentially increase the likelihood of encrypted data being recovered without adequate credentials.
Symantec Norton Password Manager
5.5
CVSSv3
CVE-2019-12755
Norton Password Manager, before 6.5.0.2104, may be susceptible to an information disclosure issue, which is a type of vulnerability whereby there is an unintentional disclosure of information to an actor that is not explicitly authorized to have access to that information.
Symantec Norton Password Manager
8.8
CVSSv3
CVE-2019-10884
Uniqkey Password Manager 1.14 contains a vulnerability because it fails to recognize the difference between domains and sub-domains. The vulnerability means that passwords saved for example.com will be recommended for usersite.example.com. This could lead to successful phishing c...
Uniqkey Password Manager 1.14
8
CVSSv3
CVE-2016-1161
Cross-site request forgery (CSRF) vulnerability in ManageEngine Password Manager Pro prior to 8.5 (Build 8500).
Zohocorp Password Manager Pro
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »