Cross-site request forgery (CSRF) vulnerability in the web interface in Pattern Insight 2.3 allows remote attackers to hijack the authentication of arbitrary users.
https://exchange.xforce.ibmcloud.com/vulnerabilities/79783
http://www.securityfocus.com/bid/56381