VYPR

Simple Editor

by LG

CVEs (25)

  • CVE-2023-40504CriMay 3, 2024
    risk 0.74cvss 9.8epss 0.88

    LG Simple Editor readVideoInfo Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific…

  • CVE-2023-40498CriMay 3, 2024
    risk 0.73cvss 9.8epss 0.83

    LG Simple Editor cp Command Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific…

  • CVE-2023-40497CriMay 3, 2024
    risk 0.69cvss 9.8epss 0.67

    LG Simple Editor saveXml Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific flaw…

  • CVE-2023-40502CriMay 3, 2024
    risk 0.66cvss 9.1epss 0.84

    LG Simple Editor cropImage Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific…

  • CVE-2023-40494CriMay 3, 2024
    risk 0.66cvss 9.1epss 0.84

    LG Simple Editor deleteFolder Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The…

  • CVE-2023-40492CriMay 3, 2024
    risk 0.66cvss 9.1epss 0.84

    LG Simple Editor deleteCheckSession Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The…

  • CVE-2023-40505CriMay 3, 2024
    risk 0.64cvss 9.8epss 0.02

    LG Simple Editor createThumbnailByMovie Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The…

  • CVE-2023-40501CriMay 3, 2024
    risk 0.64cvss 9.8epss 0.01

    LG Simple Editor copyContent Exposed Dangerous Function Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The…

  • CVE-2023-40500CriMay 3, 2024
    risk 0.64cvss 9.8epss 0.01

    LG Simple Editor copyContent Exposed Dangerous Function Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The…

  • CVE-2023-40493CriMay 3, 2024
    risk 0.64cvss 9.8epss 0.02

    LG Simple Editor copySessionFolder Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The…

  • CVE-2023-40509CriMay 3, 2024
    risk 0.59cvss 9.1epss 0.02

    LG Simple Editor deleteCanvas Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The…

  • CVE-2023-40508CriMay 3, 2024
    risk 0.59cvss 9.1epss 0.02

    LG Simple Editor putCanvasDB Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific…

  • CVE-2023-40499CriMay 3, 2024
    risk 0.59cvss 9.1epss 0.02

    LG Simple Editor mkdir Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific flaw…

  • CVE-2023-40496HigMay 3, 2024
    risk 0.55cvss 7.5epss 0.77

    LG Simple Editor copyStickerContent Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability.…

  • CVE-2023-40495HigMay 3, 2024
    risk 0.55cvss 7.5epss 0.77

    LG Simple Editor copyTemplateAll Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. …

  • CVE-2023-40516HigMay 3, 2024
    risk 0.51cvss 7.8epss 0.00

    LG Simple Editor Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of LG Simple Editor. An attacker must first obtain the ability to execute low-privileged code on…

  • CVE-2023-40515HigMay 3, 2024
    risk 0.49cvss 7.5epss 0.01

    LG Simple Editor joinAddUser Improper Input Validation Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability.…

  • CVE-2023-40511HigMay 3, 2024
    risk 0.49cvss 7.5epss 0.01

    LG Simple Editor checkServer Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific flaw exists within the…

  • CVE-2023-40510HigMay 3, 2024
    risk 0.49cvss 7.5epss 0.01

    LG Simple Editor getServerSetting Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific flaw exists…

  • CVE-2023-40507HigMay 3, 2024
    risk 0.49cvss 7.5epss 0.01

    LG Simple Editor copyContent XML External Entity Processing Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG Simple Editor. Authentication is not required to exploit this…

Page 1 of 2