Site Overlay

TimThumb Script vulnerability issue in WordPress Themes & Plugins

Recently, lot of WordPress Themes and Plugins are open to the vulnerability found in the older version of TimThumb script that has been used by most of the popular themes and plugin. Exploiting this vulnerability an attacker can upload and excute a PHP file of his choice on a vulnerable website.

TimThumb is a “A small php script for cropping, zooming and resizing web images (jpg, png, gif). Perfect for use on blogs and other applications.“

You can download the fixed version (v1.34) from the TimThumb project page (http://code.google.com/p/timthumb/).

Read more

Published By:

Author: sakinshrestha

Hello. My name is Sakin Shrestha, and I am a technology entrepreneur from Nepal. I am passionate about helping this sector grow, for many reasons. The technology sector creates jobs for many young Nepalis who would otherwise migrate to foreign countries. It lets Nepali professionals develop skills for a fast-changing global workplace, and compete at a high level with anyone, anywhere in the world. If it grows, it will provide a viable career option for many young Nepalis, and help us reap the benefits of a global economy.