CVE-2019-1000022
Taoensso Sente versions prior to 1.14.0 contain a CSRF vulnerability in the WebSocket handshake endpoint that can enable a CSRF attack and possibly leak an anti-CSRF token. Affected component: Sente WebSocket handshake. Root cause: missing CSRF protections during handshake. Impact per sources: po...