Lucene search
K

173 matches found

CNVD
CNVD
added 2025/01/16 12:0 a.m.4 views

Selesta Visual Access Manager SQL Injection Vulnerability (CNVD-2025-22654)

Selesta Visual Access Manager is a visual access manager from Selesta. A SQL injection vulnerability exists in Selesta Visual Access Manager. The vulnerability stems from the application's lack of validation of externally entered SQL statements and is exploited by an attacker to perform SQL...

3.8CVSS8AI score0.00309EPSS
Exploits0References1
CNVD
CNVD
added 2025/01/16 12:0 a.m.4 views

Selesta Visual Access SQL Injection Vulnerability (CNVD-2025-22546)

Selesta Visual Access Manager is a visual access manager from Selesta. A SQL injection vulnerability exists in Selesta Visual Access Manager. An attacker can exploit this vulnerability to perform SQL injection in the GET parameter of /monitor/sterminal.php...

3.8CVSS8AI score0.00309EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/01/13 10:15 p.m.5 views

CVE-2023-42249

Selesta Visual Access Manager 4.42.2 is vulnerable to Cross Site Scripting XSS via vam/vamvisits.php...

6.1CVSS5.8AI score0.00224EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2025/01/13 10:15 p.m.5 views

CVE-2023-42250

Selesta Visual Access Manager 4.42.2 is vulnerable to Cross Site Scripting XSS via /common/autocomplete.php...

6.1CVSS5.8AI score0.00224EPSS
Exploits0References2
OSV
OSV
added 2025/01/13 10:15 p.m.7 views

CVE-2023-42248

An issue was discovered in Selesta Visual Access Manager VAM prior to 4.42.2. An authenticated attacker can write arbitrary files by manipulating POST parameters of the page "common/vamSql.php"...

6.5CVSS5.9AI score0.00344EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/01/13 10:15 p.m.5 views

CVE-2023-42247

Selesta Visual Access Manager 4.42.2 is vulnerable to Cross Site Scripting XSS via monitor/smonitormap.php...

6.1CVSS5.8AI score0.00226EPSS
Exploits0References2
NVD
NVD
added 2025/01/13 10:15 p.m.28 views

CVE-2023-42248

An issue was discovered in Selesta Visual Access Manager VAM prior to 4.42.2. An authenticated attacker can write arbitrary files by manipulating POST parameters of the page "common/vamSql.php"...

6.5CVSS0.00344EPSS
Exploits0References1
NVD
NVD
added 2025/01/13 10:15 p.m.11 views

CVE-2023-42249

Selesta Visual Access Manager 4.42.2 is vulnerable to Cross Site Scripting XSS via vam/vamvisits.php...

6.1CVSS0.00224EPSS
Exploits0References1
NVD
NVD
added 2025/01/13 10:15 p.m.28 views

CVE-2023-42246

Selesta Visual Access Manager 4.42.2 is vulnerable to Cross Site Scripting XSS via /vam/vamep.php...

6.1CVSS0.00226EPSS
Exploits0References1
NVD
NVD
added 2025/01/13 10:15 p.m.26 views

CVE-2023-42247

Selesta Visual Access Manager 4.42.2 is vulnerable to Cross Site Scripting XSS via monitor/smonitormap.php...

6.1CVSS0.00226EPSS
Exploits0References1
NVD
NVD
added 2025/01/13 10:15 p.m.30 views

CVE-2023-42250

Selesta Visual Access Manager 4.42.2 is vulnerable to Cross Site Scripting XSS via /common/autocomplete.php...

6.1CVSS0.00224EPSS
Exploits0References1
OSV
OSV
added 2025/01/13 10:15 p.m.5 views

CVE-2023-42246

Selesta Visual Access Manager 4.42.2 is vulnerable to Cross Site Scripting XSS via /vam/vamep.php...

6.1CVSS5.8AI score0.00226EPSS
Exploits0References1
OSV
OSV
added 2025/01/13 10:15 p.m.4 views

CVE-2023-42244

An issue was discovered in Selesta Visual Access Manager VAM prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vamvisits.php...

8.8CVSS5.9AI score0.00371EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/01/13 10:15 p.m.5 views

CVE-2023-42244

An issue was discovered in Selesta Visual Access Manager VAM prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vamvisits.php...

8.8CVSS6AI score0.00371EPSS
Exploits0References2
OSV
OSV
added 2025/01/13 10:15 p.m.5 views

CVE-2023-42238

An issue was discovered in Selesta Visual Access Manager VAM prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vameps.php...

3.8CVSS5.9AI score0.00309EPSS
Exploits0References1
OSV
OSV
added 2025/01/13 10:15 p.m.6 views

CVE-2023-42241

An issue was discovered in Selesta Visual Access Manager VAM prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vamanagraphic.php...

3.8CVSS5.9AI score0.00232EPSS
Exploits0References1
NVD
NVD
added 2025/01/13 10:15 p.m.12 views

CVE-2023-42239

An issue was discovered in Selesta Visual Access Manager VAM prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vamep.php...

3.8CVSS0.00309EPSS
Exploits0References1
NVD
NVD
added 2025/01/13 10:15 p.m.13 views

CVE-2023-42240

An issue was discovered in Selesta Visual Access Manager VAM prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /monitor/sscheduledfile.php...

3.8CVSS0.00232EPSS
Exploits0References1
NVD
NVD
added 2025/01/13 10:15 p.m.21 views

CVE-2023-42242

An issue was discovered in Selesta Visual Access Manager VAM prior to 4.42.2. An authenticated attacker can perform SQL Injection in a GET parameter of /monitor/sterminal.php...

3.8CVSS0.00309EPSS
Exploits0References1
NVD
NVD
added 2025/01/13 10:15 p.m.9 views

CVE-2023-42244

An issue was discovered in Selesta Visual Access Manager VAM prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vamvisits.php...

8.8CVSS0.00371EPSS
Exploits0References1
Rows per page
Query Builder