WordPress.org

Ready to get started?Download WordPress

Forums

Add New Default Avatar [Emrikol's Fork]
Using TimThumb: security issue? (2 posts)

  1. Shea Bunge
    Member
    Posted 1 year ago #

    Hello,

    I was reading this plugin's description page and I noticed that it said that it used the TimThumb library to resize and cache thumbnails.
    I remember a security scandal awhile back about TimThumb, and I was wondering if this plugin was safe to use.

    Thanks, Shea.

    http://wordpress.org/extend/plugins/add-new-default-avatar-emrikols-fork/

  2. helgatheviking
    Member
    Posted 1 year ago #

    The plugin is using TimThumb 2.8 and if I recall the security vulnerability was patched with 2.0.

    The problem is that gravatar has changed their API and no long will support TimThumb images.

    https://en.gravatar.com/site/implement/images/

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic