VYPR

Visual Access Manager

by Selesta

CVEs (26)

  • CVE-2023-42240LowJan 13, 2025
    risk 0.25cvss 3.8epss 0.00

    An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /monitor/s_scheduledfile.php.

  • CVE-2023-42239LowJan 13, 2025
    risk 0.25cvss 3.8epss 0.00

    An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_ep.php.

  • CVE-2023-42238LowJan 13, 2025
    risk 0.25cvss 3.8epss 0.00

    An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_eps.php.

  • CVE-2023-42237LowJan 13, 2025
    risk 0.25cvss 3.8epss 0.00

    An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple GET parameters of /vam/vam_i_command.php.

  • CVE-2023-42236LowJan 13, 2025
    risk 0.25cvss 3.8epss 0.00

    An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in a GET parameter of /common/ajaxfunction.php.

  • CVE-2023-42235LowJan 13, 2025
    risk 0.25cvss 3.8epss 0.00

    An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple parameters of /monitor/s_normalizedtrans.php.

Page 2 of 2