CVEブラウザに戻る

CVE-2008-3738

CRITICAL

9.1

CVSS Severity Score

EPSS Score0.0650%

EPSS Percentile31.79th

Published2008年8月27日

Last Modified2026年4月23日

Vulnerability Description

Session fixation vulnerability in SpaceTag LacoodaST 2.1.3 and earlier allows remote attackers to hijack web sessions via unspecified vectors.

Affected Platforms (CPE)

📦

Spacetag

Lacoodast

<= 2.1.3

References & Advisories

🔗 http://jvn.jp/en/jp/JVN31723154/index.html

🔗 http://secunia.com/advisories/31582

🔗 http://www.securityfocus.com/bid/30791

🔗 http://www.spacetag.jp/modules/products/index.php?id=54

🔗 http://jvn.jp/en/jp/JVN31723154/index.html

🔗 http://secunia.com/advisories/31582

🔗 http://www.securityfocus.com/bid/30791

🔗 http://www.spacetag.jp/modules/products/index.php?id=54

関連する脆弱性情報

CVE-2008-373710.0

Unspecified vulnerability in (1) System Consultants La!Cooda WIZ 1.4.0 and earlier and (2) SpaceTag LacoodaST 2.1.3 and earlier al...

CVE-2008-37366.0

Multiple cross-site request forgery (CSRF) vulnerabilities in (1) System Consultants La!Cooda WIZ 1.4.0 and earlier and (2) SpaceT...

CVE-2008-37394.3

Cross-site scripting (XSS) vulnerability in (1) System Consultants La!Cooda WIZ 1.4.0 and earlier and (2) SpaceTag LacoodaST 2.1.3...

CVE-2008-461510.0

Unspecified vulnerability in i_utils.asp in PortalApp before 4.01a has unknown impact and attack vectors.