13Oca
CVE-2023-42236 | Selesta Visual Access Manager up to 4.42.1 GET Parameter /common/ajaxfunction.php sql injection
A vulnerability was found in Selesta Visual Access Manager up to 4.42.1. It has been classified as critical. This affects an unknown part of the file /common/ajaxfunction.php of the component GET Parameter Handler. The manipulation leads to sql injection. This vulnerability is uniquely identified as CVE-2023-42236. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.