📦 Visual Access Manager
by Seling
🔍 What is Visual Access Manager?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
CVE-2019-19994 is a critical command injection vulnerability in Selesta Visual Access Manager (VAM) that allows unauthenticated attackers to execute arbitrary operating system commands on affected sys...
This vulnerability allows authenticated attackers to perform SQL injection attacks through multiple POST parameters in the /vam/vam_visits.php endpoint of Selesta Visual Access Manager. Attackers coul...
This vulnerability allows unauthenticated attackers to execute arbitrary SQL SELECT statements via SQL injection in the 'persoid' parameter of the Visual Access Manager (VAM) web interface. It affects...
This vulnerability allows authenticated users to create arbitrary files with any content anywhere on the filesystem via a web interface component. It affects Selesta Visual Access Manager (VAM) instal...
This vulnerability allows attackers to inject malicious scripts into the Visual Access Manager web interface via the monitor/s_monitor_map.php endpoint. When exploited, these scripts execute in the co...
This vulnerability allows attackers to inject malicious scripts into the Visual Access Manager web interface via the vam/vam_visits.php endpoint. When exploited, these scripts execute in victims' brow...
This vulnerability allows authenticated users in Selesta Visual Access Manager to access an administrative SQL interface (/common/vam_Sql.php) and execute arbitrary SQL queries. This affects all versi...
CVE-2023-42245 is a cross-site scripting vulnerability in Selesta Visual Access Manager that allows attackers to inject malicious scripts into web pages viewed by other users. This affects all users o...