Check_MK Werk 6618: Fixed missing CSRF protection for host diagnostic AJAX calls

18 Sep 2018

ID:          6618
Title:       Fixed missing CSRF protection for host diagnostic AJAX calls
Component:   WATO
Level:       1
Class:       Security fix
Version:     1.6.0i1

The AJAX calls used by the host diagnostic page were not correctly using
CSRF tokens to protect logged in users against malicious links that could
trigger actions.

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

Check_MK Werk 6618: Fixed missing CSRF protection for host diagnostic AJAX calls