13Oca
CVE-2023-42239 | Selesta Visual Access Manager up to 4.42.1 POST Parameter /vam/vam_ep.php sql injection
A vulnerability was found in Selesta Visual Access Manager up to 4.42.1 and classified as critical. Affected by this issue is some unknown functionality of the file /vam/vam_ep.php of the component POST Parameter Handler. The manipulation leads to sql injection. This vulnerability is handled as CVE-2023-42239. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.