Sign in / up

back to article Yet another WordPress vuln: Image furtler plugin lets BADNESS in

Self-hosted installations of WordPress are at risk of attack following the disclosure of a vulnerability in a widely used plugin for the blogging software-cum-website CMS. The vulnerable TimThumb plugin is used by many blogs to easily resize images. However a zero-day vulnerability in the Webshot function of TimThumb (2.8.13 …

COMMENTS

House rules Send corrections
This topic is closed for new posts.
  1. Anonymous Coward
    Anonymous Coward

    Deja Vu

    Wasn't TimThumb exposed not so long ago?

    0 0
    1. Anonymous Coward
      Reply Icon
      Anonymous Coward

      Re: Deja Vu

      RTFA

      1 1
      1. Anonymous Coward
        Reply Icon
        Anonymous Coward

        Re: Deja Vu

        So it's not really news then, is it? It has always been vulnerable and the recommendation for a long time has been not to use it.

        1 0
  2. Ruairi

    Yet another WordPress vuln: Image furtler plugin lets BADNESS in

    <pedantic>

    Dont you mean "Yet another WordPress plugin vuln: Image furtler plugin lets BADNESS in"

    </pedantic>

    1 0
    1. Anonymous Coward
      Reply Icon
      Anonymous Coward

      To be fair....

      you have to bow to the commentards level.

      Like if Adobe flash has an flaw, that means Windoze is full of holes (even when it's multi platform)

      3 0
  3. Mage Silver badge

    Rule of thumb

    Install as few plugins as possible on your CMS/Blogging platform.

    0 0
  4. Donkey Molestor X

    forget it Jake, it's PHP.

    1 0
This topic is closed for new posts.

Other stories you might like