2 matches found
CVE-2023-40504
LG Simple Editor readVideoInfo Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...
PT-2023-4730 · Lg · Lg Simple Editor
Name of the Vulnerable Software and Affected Versions: LG Simple Editor affected versions not specified Description: The issue is related to the readVideoInfo method of LG Simple Editor, which lacks proper validation of user-supplied strings before executing system calls. This allows remote...