exploitDog

GHSA-r6wm-q4gx-9q2v

Опубликовано: 14 янв. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 3.8

Описание

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_eps.php.

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_eps.php.

Ссылки

EPSS

Процентиль: 28%

0.001

Низкий

3.8 Low

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2023-42238

CVSS3: 3.8

nvd

около 1 года назад

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple POST parameters of /vam/vam_eps.php.

EPSS

Процентиль: 28%

0.001

Низкий

3.8 Low

CVSS3

CVE ID

Дефекты

CWE-89