0 items in your shopping cart

No products in the cart.

View Cart Confim Order

timthumb.php Security Fixed

Yogi Blog, Theme Updates

Mak Maunder, the CEO of Feedjit early this Monday discovered a security flaw in TimThumb script. TimThumb is script commonly used in many WordPress themes to resize images on the fly.

The only theme in our collection that is affected to this security flaw is nowLedge, we have release an update and you can download latest version of nowLedge 1.0.2 from our support forum. All you need to do is download the zipped theme file and overwrite your current timthumb.php file located in /wp-content/themes/nowledge/timthumb.php with the one in the new version.

Alternatively, you can update your timthumb.php located in your theme folder with the latest version in http://timthumb.googlecode.com/svn/trunk/timthumb.php

Andra Yogi

    The brain behind ThemeWarrior, also a father to a beautiful baby girl named Amanda and a handsome boy named Raihan.

    2 Comments

    • Maxime

      It looks like your theme “Blogue” has Timthumb in it.

      You may not use it but I suggest you update it too as it contains version 1.12! 🙂

      August 10, 2011 - 09.19 pm

      Reply

    • Yogi

      The security flaws only effect timthumb.php version that allows generate thumbs from external sites, the version we use didn’t have that feature.

      August 10, 2011 - 09.43 pm

      Reply

    Leave a response