Support » Plugin: Timthumb Vulnerability Scanner » [Plugin: Timthumb Vulnerability Scanner] False positive in WooThemes Canvas theme-options.php

  • Hiya!

    Awesome plugin 🙂

    Just wanted to let ya know that it incorrectly flags the theme-options.php file in Canvas as a timthumb file. I went through the file and had a look. It contains references to the fact that timthumb is used in the code comments, but no version numbers that I could see.

    More of an FYI and notice to anyone else out there – you shouldn’t overwrite this file 😉

    Thanks again!

    http://wordpress.org/extend/plugins/timthumb-vulnerability-scanner/

Viewing 4 replies - 31 through 34 (of 34 total)
  • FYI i moved the site from a shared window server to a shared linux server (still on godaddy) and timthumb.php is magically working again. thank you all for your help. [a]

    madaboutu

    (@madaboutu)

    Hi there – Wondered if this is normal?

    I run the updated Timthumb Scanner and get the following responses

    Vulnerable ……. cg-tvs-filescanner.php

    Vulnerable……. class-cg-tvs-filescanner.php

    Am I going mad or am I not supposed to be selecting these ones to update ;o) ????

    Plugin Author Peter Butler

    (@peterebutler)

    @madaboutu – no, not normal, but I haven’t been able to figure out exactly why it happens yet. Regardless – just don’t replace those files – the rest of the scanner should work just fine.

    Thanks!
    Peter

    madaboutu

    (@madaboutu)

    Thanks Peter!!!! that was quick!!!!

    I am not sure if this matters but I am on a Windows server – looking at the code garage site (author of Plugin) I am not sure if that may be the reason ;o)

    thanks again for the super fast response dude!!

Viewing 4 replies - 31 through 34 (of 34 total)
  • The topic ‘[Plugin: Timthumb Vulnerability Scanner] False positive in WooThemes Canvas theme-options.php’ is closed to new replies.