Three days ago, a zero-day vulnerability was discovered in TimThumb, a plug-in used in numerous blogs and applications designed to resize images. Today, the developers has released a fix that can be applied by updating to the latest version (2.8.14) of the utility. TimThumb is a PHP script that can help with cropping, zooming and resizing JPG, PNG and GIF images into thumbs. Its versatility led to adoption in many WordPress themes. The vulnerability affected the Webshot feature in TimThumb, …
Comments are closed.
