TimThumb Vulnerability Still in the Wild

Comments

1. Brad Dalton (3 comments.) says:

   4/10/2012 at 10:51 am

   I just scanned by site using the TimThumb Vulnerability Scanner and found the timthumb script was out of date which i updated using this plugin.

   All my other sites on another server where all exploited because i hadn’t updated all my plugins and themes
2. Nikki Elizabeth (9 comments.) says:

   4/10/2012 at 8:19 pm

   This is really good to know, thanks.
   I suppose there is reasoning behind Google’s notices to update CMS versions in Google Webmaster Tools.
3. Steven (2 comments.) says:

   4/11/2012 at 2:17 pm

   I have many sites and till recently I was not aware that few of my sites still had this outdated TimThumb version that had security issues. Luckily Google Webmaster tools are warning about outdated themes, frameworks, etc.
4. Andrew (1 comments.) says:

   4/11/2012 at 3:21 pm

   I don’t see how anyone can not want to fix their site to cover a vulnerability like this.

   Not doing it can only leave you open to bad things.
5. James (1 comments.) says:

   4/17/2012 at 7:01 am

   All my other sites on another server where all exploited because i hadn’t updated all my plugins and themes.