Cross-site Request Forgery (CSRF)

github.com/openshift/origin is vulnerable to cross-site request forgery CSRF attacks. These attacks are possible because it does not check the X-CSRF-Token header of requests...