timthumb.php vulnerability | ww.wp.xz.cn

Bill Parrott
(@chimericdream)

14 years, 10 months ago

It looks like the version of timthumb.php that you are using is slightly modified from his published version, but you may consider generating the thumbnails in a different way or auditing the code.

It appears there is a zero-day vulnerability in the timthumb.php code (and potentially other vulnerabilities) that has serious repercussions.

Link to the article:
http://markmaunder.com/2011/zero-day-vulnerability-in-many-wordpress-themes/

The topic ‘timthumb.php vulnerability’ is closed to new replies.

0 replies
1 participant
Last reply from: Bill Parrott
Last activity: 14 years, 10 months ago
Status: not resolved