Vulnerability Details CVE-2023-42244
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_visits.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.5%
CVSS Severity
CVSS v3 Score 8.8
Products affected by CVE-2023-42244
-
cpe:2.3:a:seling:visual_access_manager:4.15.0
-
cpe:2.3:a:seling:visual_access_manager:4.29.0