13Oca
CVE-2023-42238 | Selesta Visual Access Manager up to 4.42.1 POST Parameter /vam/vam_eps.php sql injection
A vulnerability, which was classified as critical, was found in Selesta Visual Access Manager up to 4.42.1. This affects an unknown part of the file /vam/vam_eps.php of the component POST Parameter Handler. The manipulation leads to sql injection. This vulnerability is uniquely identified as CVE-2023-42238. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.