2 matches found
CVE-2023-40510
LG Simple Editor is affected by CVE-2023-40510 where the getServerSetting method exposes plaintext credentials, allowing remote attackers to bypass authentication. The issue is documented in ZDI-23-1214 and appears in multiple feeds (NVD/NVD-related entries). The available sources describe an aut...
CVE-2023-40510 LG Simple Editor getServerSetting Authentication Bypass Vulnerability
LG Simple Editor getServerSetting Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...