fix: #9287, generate csrf_token on 404

4 years ago · 94f72d6093
parent 783786cf8c
commit 94f72d6093
1 changed files with 1 additions and 0 deletions
--- a/src/controllers/404.js
+++ b/src/controllers/404.js
@ -43,6 +43,7 @@ exports.send404 = async function (req, res) {
 	if (res.locals.isAPI) {
 		return res.json({ path: validator.escape(path.replace(/^\/api/, '')), title: '[[global:404.title]]' });
 	}
+	await middleware.applyCSRFasync(req, res);
 	await middleware.buildHeaderAsync(req, res);
 	res.render('404', { path: validator.escape(path), title: '[[global:404.title]]' });
 };