2018-10-15 19:00:00
mitre
PUBLISHED
Agentejo Cockpit lacks an anti-CSRF protection mechanism. Thus, an attacker is able to change API tokens, passwords, etc.