Seling Visual Access Manager vulnerabilities
26 known vulnerabilities affecting seling/visual_access_manager.
Total CVEs
26
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH4MEDIUM13LOW8
Vulnerabilities
Page 2 of 2
CVE-2023-42238P4LOWCVSS 3.8fixed in 4.42.22025-01-13
CVE-2023-42238 [LOW] CWE-89 CVE-2023-42238: An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated att
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_eps.php.
nvd
CVE-2023-42235P4LOWCVSS 3.8fixed in 4.42.22025-01-13
CVE-2023-42235 [LOW] CWE-89 CVE-2023-42235: An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated att
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple parameters of /monitor/s_normalizedtrans.php.
nvd
CVE-2023-42239P4LOWCVSS 3.8fixed in 4.42.22025-01-13
CVE-2023-42239 [LOW] CWE-89 CVE-2023-42239: An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated att
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_ep.php.
nvd
CVE-2023-42241P4LOWCVSS 3.8fixed in 4.42.22025-01-13
CVE-2023-42241 [LOW] CWE-89 CVE-2023-42241: An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated att
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_anagraphic.php.
nvd
CVE-2023-42237P4LOWCVSS 3.8fixed in 4.42.22025-01-13
CVE-2023-42237 [LOW] CWE-89 CVE-2023-42237: An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated att
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple GET parameters of /vam/vam_i_command.php.
nvd
CVE-2023-42240P4LOWCVSS 3.8fixed in 4.42.22025-01-13
CVE-2023-42240 [LOW] CWE-89 CVE-2023-42240: An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated att
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /monitor/s_scheduledfile.php.
nvd
← Previous2 / 2