Vuln ID: CVE-2021-33617
Published: 2021-07-31 17:15:07Z
Description: Zoho ManageEngine Password Manager Pro before 11.2 11200 allows login/AjaxResponse.jsp?RequestType=GetUserDomainName&userName= username enumeration, because the response (to a failed login request) is null only when the username is invalid.
Source: NVD.NIST.GOV