WordPress.org

Support

Support » Themes and Templates » Suffusion » Security Issue : timthumb.php

Security Issue : timthumb.php

Viewing 1 replies (of 1 total)
  • Theme Author Sayontan Sinha

    @sayontan

    Suffusion doesn’t have TimThumb. You can verify the source code from the official WP repository: http://themes.svn.wordpress.org/suffusion/4.4.4/. The last version of Suffusion to have TimThumb was 3.7.1, which was almost 2 years back. In fact I took TimThumb out of Suffusion 6 months before the TimThumb vulnerability was discovered.

    Attackers try thousands of random strings in the hopes of injecting malicious code, but rest assured that TimThumb is not a part of the Suffusion code. Moreover, every theme distributed through http://wordpress.org/extend/themes/ goes through a review, and TimThumb is not allowed in your code. So there is no theme on this site that has TimThumb in it.

Viewing 1 replies (of 1 total)
  • The topic ‘Security Issue : timthumb.php’ is closed to new replies.
Skip to toolbar