CVE-2016-2963

Cross-site request forgery (CSRF) vulnerability in IBM BigFix Remote Control before 9.1.3 allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences.

Date published : 2016-11-30

http://www-01.ibm.com/support/docview.wss?uid=swg1IV89797

http://www.securityfocus.com/bid/94596