source: https://www.securityfocus.com/bid/23693/info ManageEngine Password Manager Pro is prone to a remote unauthorized-access vulnerability due to a design error. An attacker may leverage this issue to gain unauthorized access to the application's database with administrative privileges. Successful exploits will result in a complete compromise of vulnerable applications and may aid in further attacks. ManageEngine Password Manager Pro Free edition is vulnerable; other versions may also be affected. $mysql -h example.com --port 2345 -u root