CVE-2013-5708

Coursemill Learning Management System 6.8 - Cross-Site Request Forgery via Time-Based Token Prediction

Title source: llm
STIX 2.1

Description

Coursemill Learning Management System (LMS) 6.8 constructs secret tokens based on time values, which makes it easier for remote attackers to conduct cross-site request forgery (CSRF) attacks via vectors related to cookies, a different vulnerability than CVE-2013-3605.

References (1)

Core 1
Core References
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/960908

Scores

EPSS 0.0070
EPSS Percentile 48.7%

Details

CWE
CWE-352
Status published
Products (1)
trivantis/coursemill_learning_management_system 6.8
Published Sep 06, 2013
Tracked Since Feb 18, 2026