CVE-2013-5708

2022-10-0316:14:54

mitre

www.cve.org

coursemill lms 6.8

csrf

vulnerability

remote attackers

cross-site request forgery

time values

6.5 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

31.1%

JSON

Coursemill Learning Management System (LMS) 6.8 constructs secret tokens based on time values, which makes it easier for remote attackers to conduct cross-site request forgery (CSRF) attacks via vectors related to cookies, a different vulnerability than CVE-2013-3605.

References

www.kb.cert.org/vuls/id/960908