Checkmk Conference #6 is coming! Learn more about it here!
|Title||Fixed missing CSRF protection for host diagnostic AJAX calls|
|Checkmk Edition||Checkmk Raw Edition (CRE)|
|Compatibility||Compatible - no manual interaction needed|
The AJAX calls used by the host diagnostic page were not correctly using CSRF tokens to protect logged in users against malicious links that could trigger actions.