CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

OSV•added 2022/05/24 5:18 p.m.•9 views

GHSA-5V5Q-3M7M-97J7 Image Resizer Cross-Site Request Forgery (CSRF)

An issue was discovered in the Image Resizer plugin before 2.0.9 for Craft CMS. There are CSRF issues with the log-clear controller action...

8.8CVSS8.8AI score0.00141EPSS

Exploits0References3

Github Security Blog•added 2022/05/24 5:18 p.m.•11 views

Image Resizer Cross-Site Request Forgery (CSRF)

An issue was discovered in the Image Resizer plugin before 2.0.9 for Craft CMS. There are CSRF issues with the log-clear controller action...

8.8CVSS7.3AI score0.00141EPSS

Exploits0References3Affected Software1

Prion•added 2020/05/25 5:15 p.m.•7 views

Cross site request forgery (csrf)

An issue was discovered in the Image Resizer plugin before 2.0.9 for Craft CMS. There are CSRF issues with the log-clear controller action...

6.8CVSS8.7AI score0.00141EPSS

Exploits0References1Affected Software1

CVE•added 2020/05/25 4:34 p.m.•41 views

CVE-2020-13458

CVE-2020-13458 affects the Craft CMS Image Resizer plugin prior to 2.0.9. The issue is a CSRF flaw in the log-clear controller action, enabling CSRF exploitation with no authentication and requiring user interaction. CVSSv3.1 base score is 8.8 (HIGH) with network attack vector, low attack complex...

8.8CVSS8.7AI score0.00141EPSS

Exploits0References1Affected Software1