3 matches found
CVE-2023-33534
A Cross-Site Request Forgery CSRF in Guanzhou Tozed Kangwei Intelligent Technology ZLTS10G software version S10G3.11.6 allows attackers to takeover user accounts via sending a crafted POST request to /goform/goformsetcmdprocess...
CVE-2023-33534
A Cross-Site Request Forgery CSRF in Guanzhou Tozed Kangwei Intelligent Technology ZLTS10G software version S10G3.11.6 allows attackers to takeover user accounts via sending a crafted POST request to /goform/goformsetcmdprocess...
CVE-2023-33534
CVE-2023-33534 concerns a CSRF in Guanzhou Tozed Kangwei Intelligent Technology’s ZLTS10G S10G_3.11.6. The issue arises via a crafted POST to the API endpoint /goform/goform_set_cmd_process, potentially allowing an attacker to takeover a user’s account. Documents consistently name the affected pr...