Cross-Site Request Forgery (CSRF) Vulnerability in Coursemill Learning Management System (LMS) 6.8

Cross-Site Request Forgery (CSRF) Vulnerability in Coursemill Learning Management System (LMS) 6.8

CVE-2013-5708 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Coursemill Learning Management System (LMS) 6.8 constructs secret tokens based on time values, which makes it easier for remote attackers to conduct cross-site request forgery (CSRF) attacks via vectors related to cookies, a different vulnerability than CVE-2013-3605.

Learn more about our E Learning Pen Testing.