Unrated severityNVD Advisory· Published Aug 27, 2008· Updated Apr 23, 2026

CVE-2008-3739

Description

Cross-site scripting (XSS) vulnerability in (1) System Consultants La!Cooda WIZ 1.4.0 and earlier and (2) SpaceTag LacoodaST 2.1.3 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly involving upload of files containing XSS sequences.

Affected products

Spacetag/Lacoodast
cpe:2.3:a:spacetag:lacoodast:*:*:*:*:*:*:*:*
Range: <=2.1.3
System Consultants/La Cooda Wiz
cpe:2.3:a:system_consultants:la_cooda_wiz:*:*:*:*:*:*:*:*
Range: <=1.4.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/31574nvdVendor Advisory
secunia.com/advisories/31582nvdVendor Advisory
jvn.jp/en/jp/JVN27417220/index.htmlnvd
jvn.jp/en/jp/JVN52557009/index.htmlnvd
jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-000048.htmlnvd
wiz.syscon.co.jp/Details.htmnvd
www.securityfocus.com/bid/30791nvd
www.spacetag.jp/modules/products/index.phpnvd
exchange.xforce.ibmcloud.com/vulnerabilities/44593nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000