Visual Access Manager@* Security Vulnerabilities and Issues — Visual Access Manager@* CVE List

Lucene search

SelingVisual Access Manager*

16 matches found

CVE•added 2025/01/13 10:15 p.m.•38 views

CVE-2023-42244

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_visits.php.

8.8CVSS8.2AI score0.0007EPSS

CVE•added 2025/01/13 10:15 p.m.•37 views

CVE-2023-42245

Selesta Visual Access Manager

6.1CVSS6.1AI score0.00044EPSS

CVE•added 2025/01/13 10:15 p.m.•35 views

CVE-2023-42250

Selesta Visual Access Manager

6.1CVSS6.1AI score0.00044EPSS

CVE•added 2025/01/13 10:15 p.m.•34 views

CVE-2023-42249

Selesta Visual Access Manager

6.1CVSS6.1AI score0.00044EPSS

CVE•added 2025/01/13 10:15 p.m.•33 views

CVE-2023-42246

Selesta Visual Access Manager

6.1CVSS6AI score0.00044EPSS

CVE•added 2025/01/13 10:15 p.m.•32 views

CVE-2023-42247

Selesta Visual Access Manager

6.1CVSS6AI score0.00044EPSS

CVE•added 2025/01/13 10:15 p.m.•25 views

CVE-2023-42237

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple GET parameters of /vam/vam_i_command.php.

3.8CVSS7.9AI score0.00045EPSS

CVE•added 2025/01/13 10:15 p.m.•23 views

CVE-2023-42243

In Selesta Visual Access Manager

5.4CVSS7.5AI score0.00052EPSS

CVE•added 2025/01/13 10:15 p.m.•22 views

CVE-2023-42235

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple parameters of /monitor/s_normalizedtrans.php.

3.8CVSS7.9AI score0.00045EPSS

CVE•added 2025/01/13 10:15 p.m.•22 views

CVE-2023-42239

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_ep.php.

3.8CVSS7.9AI score0.00045EPSS

CVE•added 2025/01/13 10:15 p.m.•22 views

CVE-2023-42240

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /monitor/s_scheduledfile.php.

3.8CVSS7.9AI score0.00045EPSS

CVE•added 2025/01/13 10:15 p.m.•19 views

CVE-2023-42242

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in a GET parameter of /monitor/s_terminal.php.

3.8CVSS8.1AI score0.00045EPSS

CVE•added 2025/01/13 10:15 p.m.•18 views

CVE-2023-42236

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in a GET parameter of /common/ajaxfunction.php.

3.8CVSS7.9AI score0.00039EPSS

CVE•added 2025/01/13 10:15 p.m.•18 views

CVE-2023-42238

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_eps.php.

3.8CVSS7.9AI score0.00045EPSS

CVE•added 2025/01/13 10:15 p.m.•18 views

CVE-2023-42241

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_anagraphic.php.

3.8CVSS8.2AI score0.00045EPSS

CVE•added 2025/01/13 10:15 p.m.•16 views

CVE-2023-42248

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can write arbitrary files by manipulating POST parameters of the page "common/vam_Sql.php".

6.5CVSS6.9AI score0.00075EPSS