Lucene search
K

4 matches found

NVD
NVD
added 2024/05/03 3:15 a.m.34 views

CVE-2023-40507

LG Simple Editor copyContent XML External Entity Processing Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific...

7.5CVSS7.2AI score0.01271EPSS
Exploits0References1
CVE
CVE
added 2024/05/03 2:11 a.m.57 views

CVE-2023-40507

The provided sources confirm a concrete vulnerability in LG Simple Editor: an XML External Entity (XXE) handling flaw in the copyContent command. A crafted document with a URI causes the XML parser to fetch the URI and embed its contents back into the XML, allowing a remote attacker to disclose i...

7.5CVSS7.2AI score0.01271EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/05/03 2:11 a.m.45 views

CVE-2023-40507 LG Simple Editor copyContent XML External Entity Processing Information Disclosure Vulnerability

LG Simple Editor copyContent XML External Entity Processing Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific...

7.5CVSS7.4AI score0.01271EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/03 2:11 a.m.16 views

CVE-2023-40507 LG Simple Editor copyContent XML External Entity Processing Information Disclosure Vulnerability

LG Simple Editor copyContent XML External Entity Processing Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific...

7.5CVSS7.2AI score0.01271EPSS
Exploits0References1
Rows per page
Query Builder