two error: recent plugin, crf token

sanatisharif

one about nodebb-plugin-recent-cards:

(node) warning: possible EventEmitter memory leak detected. 11 nodebb:ready listeners added. Use emitter.setMaxListeners() to increase limit.
Trace
    at EventEmitter.addListener (events.js:179:15)
    at Object.<anonymous> (/.../node_modules/nodebb-plugin-recent-cards/library.js:8:9)
    at Module._compile (module.js:460:26)
    at Object.Module._extensions..js (module.js:478:10)
    at Module.load (module.js:355:32)
    at Function.Module._load (module.js:310:12)
    at Module.require (module.js:365:17)
    at require (module.js:384:17)
    at Object.Plugins.requireLibrary (/.../src/plugins.js:40:33)
    at registerHooks (/.../src/plugins/load.js:82:13)

second:
some users can't use reset password just on Chrome because of invalid csrf token but they are fine with firefox.