CVE-2020-13459: Cross-site Scripting

May 25, 2020 (updated May 27, 2020)

An issue was discovered in the Image Resizer plug for Craft CMS. There is stored XSS in the Bulk Resize action.

References

nvd.nist.gov/vuln/detail/CVE-2020-13459

Detect and mitigate CVE-2020-13459 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →