Cross-site request forgery (CSRF) vulnerability in TS Webfonts for SAKURA 3.1.2 and earlier allows a remote unauthenticated attacker to hijack the authentication of a user and to change settings by having a user view a malicious page.
[
{
"vendor": "SAKURA internet Inc.",
"product": "TS Webfonts for SAKURA",
"versions": [
{
"version": "3.1.2 and earlier",
"status": "affected"
}
]
}
]