CVE-2014-4785
IBM Initiate Master Data Service (versions 9.5, 9.7, 10.0, 10.1) contains a CSRF vulnerability (CVE-2014-4785) that could allow remote authenticated users to hijack another user’s session by submitting requests that insert XSS sequences. The issue is documented in IBM’s security bulletin covering...