Trivantis Coursemill Learning Management System — known CVE vulnerabilities
Every CVE whose affected-product data names Trivantis Coursemill Learning Management System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2013-3599 — CVSS 9.3 (critical): userlogin.jsp in Coursemill Learning Management System (LMS) 6.6 and 6.8 allows remote attackers to gain privileges via a modified…
CVE-2013-3600 — CVSS 8.5 (high): Coursemill Learning Management System (LMS) 6.6 allows remote authenticated users to gain privileges via a modified userid value to…
CVE-2013-3602 — CVSS 7.5 (high): SQL injection vulnerability in admindocumentworker.jsp in Coursemill Learning Management System (LMS) 6.6 allows remote authenticated users…
CVE-2013-5708 — CVSS 6.8 (medium): Coursemill Learning Management System (LMS) 6.8 constructs secret tokens based on time values, which makes it easier for remote attackers…
CVE-2013-3605 — CVSS 6.8 (medium): Cross-site request forgery (CSRF) vulnerability in Coursemill Learning Management System (LMS) 6.6 allows remote attackers to hijack the…
CVE-2013-3601 — CVSS 6.0 (medium): Coursemill Learning Management System (LMS) 6.6 does not properly restrict JSP function calls, which allows remote authenticated users to…
CVE-2013-3604 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Coursemill Learning Management System (LMS) 6.6 allow remote attackers to inject…
CVE-2013-5706 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Coursemill Learning Management System (LMS) 6.8 allow remote attackers to inject…
CVE-2013-5707 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Coursemill Learning Management System (LMS) 6.8 allow remote attackers to inject…
CVE-2013-3603 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Coursemill Learning Management System (LMS) 6.6 allows remote attackers to inject arbitrary web…