CVE-2023-42237 Information

Description

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in multiple GET parameters of /vam/vam_i_command.php.

Reference

https://gitlab.com/daniele_m/cve-list/-/blob/main/README.md