3 matches found
CVE-2023-40495
LG Simple Editor copyTemplateAll Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific flaw...
CVE-2023-40495 LG Simple Editor copyTemplateAll Directory Traversal Information Disclosure Vulnerability
LG Simple Editor copyTemplateAll Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific flaw...
CVE-2023-40495
CVE-2023-40495 affects LG Simple Editor. The vulnerability lies in the copyTemplateAll method, where a user-supplied path is not properly validated before file operations, enabling a directory traversal information disclosure in the SYSTEM context. Exploitation is possible remotely without authen...