An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can perform SQL Injection in a GET parameter of /monitor/s_terminal.php.Referenceshttps://gitlab.com/daniele_m/cve-list/-/blob/main/README.md
