In ZOHO Password Manager Pro (PMP) 8.3.0 (Build 8303) and 8.4.0 (Build 8400,8401,8402), underprivileged users can obtain sensitive information (entry password history) via a vulnerable hidden service.Referenceshttps://excellium-services.com/cert-xlm-advisory/cve-2016-1159/https://www.manageengine.com/products/passwordmanagerpro/release-notes.htmlhttp://jvn.jp/vu/JVNVU90405898/index.htmlhttps://www.manageengine.com/products/passwordmanagerpro/issues-fixed.html
