[wp-forums] Another timthumb exploit
Mark Ratledge
mark at markratledge.com
Wed Jun 25 19:21:43 UTC 2014
Woothemes use timthumb, but all the themes I have and have checked don't have WEBSHOT_ENABLED as "true" which seems to be the security issue.
But yes; all themes - and WP itself - get lumped in together as an undifferentiated whole.
On Jun 25, 2014, at 12:20 PM, esmi at quirm dot net wrote:
> And doesn't that now make us all feel rather smug? ;-)
>
> Bet we'll still get some "WordPress has security problems" from some people who are using commercial themes and plugins, though.
>
> Mel
More information about the wp-forums
mailing list