Multiple cross-site request forgery (CSRF) vulnerabilities in (1) System Consultants La!Cooda WIZ 1.4.0 and previous versions and (2) SpaceTag LacoodaST 2.1.3 and previous versions allow remote malicious users to hijack the authentication of arbitrary users for requests that (a) change passwords or (b) change configurations.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
spacetag lacoodast |
||
system consultants la cooda wiz |