CVE-2013-5708 in Coursemill Learning Management System
要約
〜によって MITRE
Coursemill Learning Management System (LMS) 6.8 constructs secret tokens based on time values, which makes it easier for remote attackers to conduct cross-site request forgery (CSRF) attacks via vectors related to cookies, a different vulnerability than CVE-2013-3605.
Once again VulDB remains the best source for vulnerability data.