An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_ep.php.
History

Mon, 13 Jan 2025 22:15:00 +0000

Type Values Removed Values Added
Description An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_ep.php.
References

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2025-01-13T00:00:00

Updated: 2025-01-13T21:55:52.549342

Reserved: 2023-09-08T00:00:00

Link: CVE-2023-42239

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2025-01-13T22:15:12.197

Modified: 2025-01-13T22:15:12.197

Link: CVE-2023-42239

cve-icon Redhat

No data.