Full title: LG Simple Editor Remote Code Execution Exploit 
Category: remote exploits
Platform: windows
This Metasploit module exploits broken access control and directory traversal vulnerabilities in LG Simple Editor software for gaining code execution. The vulnerabilities exist in versions of LG Simple Editor prior to v3.21. By exploiting this flaw, an attacker can upload and execute a malicious JSP payload with the SYSTEM user permissions.

# 0day.today @ http://0day.today/