CVE-2023-42236

Publication date

2025-01-13 00:00:00

Family

mitre

State

PUBLISHED

Description

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in a GET parameter of /common/ajaxfunction.php.