verbb/image-resizer Security Advisories for 2.0.7 (2)
-
[HIGH] Image Resizer Cross-Site Request Forgery (CSRF)
PKSA-9j3v-5zvg-m5d5 CVE-2020-13458 GHSA-5v5q-3m7m-97j7
Affected version: <2.0.9
Reported by:
GitHub -
[MEDIUM] Image Resizer Cross-site Scripting (XSS) in the Bulk Resize action
PKSA-23rr-5k1s-v1hb CVE-2020-13459 GHSA-p7rm-gh9g-5fr8
Affected version: <2.0.9
Reported by:
GitHub