Visual Access Manager Security Vulnerabilities and Issues — Visual Access Manager CVE List

Lucene search

SelingVisual Access Manager

16 matches found

CVE•added 2025/01/13 10:15 p.m.•37 views

CVE-2023-42244

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_visits.php.

8.8CVSS8.2AI score0.00056EPSS

CVE•added 2025/01/13 10:15 p.m.•36 views

CVE-2023-42245

Selesta Visual Access Manager

6.1CVSS6.1AI score0.00037EPSS

CVE•added 2025/01/13 10:15 p.m.•34 views

CVE-2023-42250

Selesta Visual Access Manager

6.1CVSS6.1AI score0.00037EPSS

CVE•added 2025/01/13 10:15 p.m.•33 views

CVE-2023-42249

Selesta Visual Access Manager

6.1CVSS6.1AI score0.00037EPSS

CVE•added 2025/01/13 10:15 p.m.•32 views

CVE-2023-42246

Selesta Visual Access Manager

6.1CVSS6AI score0.00037EPSS

CVE•added 2025/01/13 10:15 p.m.•31 views

CVE-2023-42247

Selesta Visual Access Manager

6.1CVSS6AI score0.00037EPSS

CVE•added 2025/01/13 10:15 p.m.•24 views

CVE-2023-42237

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple GET parameters of /vam/vam_i_command.php.

3.8CVSS7.9AI score0.00037EPSS

CVE•added 2025/01/13 10:15 p.m.•22 views

CVE-2023-42243

In Selesta Visual Access Manager

5.4CVSS7.5AI score0.00043EPSS

CVE•added 2025/01/13 10:15 p.m.•21 views

CVE-2023-42235

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple parameters of /monitor/s_normalizedtrans.php.

3.8CVSS7.9AI score0.00037EPSS

CVE•added 2025/01/13 10:15 p.m.•21 views

CVE-2023-42239

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_ep.php.

3.8CVSS7.9AI score0.00037EPSS

CVE•added 2025/01/13 10:15 p.m.•21 views

CVE-2023-42240

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /monitor/s_scheduledfile.php.

3.8CVSS7.9AI score0.00037EPSS

CVE•added 2025/01/13 10:15 p.m.•18 views

CVE-2023-42242

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in a GET parameter of /monitor/s_terminal.php.

3.8CVSS8.1AI score0.00037EPSS

CVE•added 2025/01/13 10:15 p.m.•17 views

CVE-2023-42236

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in a GET parameter of /common/ajaxfunction.php.

3.8CVSS7.9AI score0.00032EPSS

CVE•added 2025/01/13 10:15 p.m.•17 views

CVE-2023-42238

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_eps.php.

3.8CVSS7.9AI score0.00037EPSS

CVE•added 2025/01/13 10:15 p.m.•17 views

CVE-2023-42241

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_anagraphic.php.

3.8CVSS8.2AI score0.00037EPSS

CVE•added 2025/01/13 10:15 p.m.•15 views

CVE-2023-42248

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can write arbitrary files by manipulating POST parameters of the page "common/vam_Sql.php".

6.5CVSS6.9AI score0.00059EPSS