Medium severity6.5NVD Advisory· Published Jan 13, 2025· Updated Jun 17, 2026
CVE-2023-42248
CVE-2023-42248
Description
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can write arbitrary files by manipulating POST parameters of the page "common/vam_Sql.php".
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <4.42.2
Patches
Vulnerability mechanics
References
1- gitlab.com/daniele_m/cve-list/-/blob/main/README.mdnvdThird Party Advisory
News mentions
0No linked articles in our index yet.