CVE-2016-10766

CVE-2016-10766

edx-platform before 2016-06-06 allows CSRF.

Source: CVE-2016-10766