cbcvebase.

Seling Visual Access Manager vulnerabilities

26 known vulnerabilities affecting seling/visual_access_manager.

Total CVEs
26
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH4MEDIUM13LOW8

Vulnerabilities

Page 2 of 2
CVE-2023-42238P4LOWCVSS 3.8fixed in 4.42.22025-01-13
CVE-2023-42238 [LOW] CWE-89 CVE-2023-42238: An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated att An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_eps.php.
nvd
CVE-2023-42235P4LOWCVSS 3.8fixed in 4.42.22025-01-13
CVE-2023-42235 [LOW] CWE-89 CVE-2023-42235: An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated att An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple parameters of /monitor/s_normalizedtrans.php.
nvd
CVE-2023-42239P4LOWCVSS 3.8fixed in 4.42.22025-01-13
CVE-2023-42239 [LOW] CWE-89 CVE-2023-42239: An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated att An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_ep.php.
nvd
CVE-2023-42241P4LOWCVSS 3.8fixed in 4.42.22025-01-13
CVE-2023-42241 [LOW] CWE-89 CVE-2023-42241: An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated att An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_anagraphic.php.
nvd
CVE-2023-42237P4LOWCVSS 3.8fixed in 4.42.22025-01-13
CVE-2023-42237 [LOW] CWE-89 CVE-2023-42237: An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated att An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple GET parameters of /vam/vam_i_command.php.
nvd
CVE-2023-42240P4LOWCVSS 3.8fixed in 4.42.22025-01-13
CVE-2023-42240 [LOW] CWE-89 CVE-2023-42240: An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated att An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /monitor/s_scheduledfile.php.
nvd
Seling Visual Access Manager vulnerabilities | cvebase