Scans your wp-content directory for vulnerable instances of timthumb.php, and optionally upgrades them to a safe version.
It correctly identified an older version I had running that was creating a vulnerability that was being exploited, and upgraded it in no time. Even gave correct error messages when I had permissions set up incorrectly for it to be able to make the change itself.
As in http://wordpress.org/support/topic/not-recognizing-timthumb-2813-as-latest-version said, it seemed to be broken. Doesn't work anymore. Also the plugin-homepage exist any longer, it's now a paid service instead.
A website I manage for a non-profit was recently hacked. Found out that the theme the company had been using was extremely out of date and unfortunately had this exploit. This plugin found the file and updated it to the newest version! Install, activate, scan, found and update! That easy!
It does what it says on the tin, and does so nicely and seamlessly. If only all WordPress plugins could be like that!
it´s really working out
Great tool ! Thank you very much !
Not only useful for those running sites with these scripts, but also for developers and theme makers making use of the script (which despite the bad rep is vary good too!)
No WordPress site should be without this plugin. Too many vulnerable/outdated timthumb scripts still exist in some plugins and themes.
Great plugin, easily found the out of date timthumb script in my theme and suspicious files. A nice surprise it was able to automatically update the timthumb script too.
Everybody needs it, because if you install later a plugin or theme which include an old version of TT, you're screwed.
Thank you for this plugin!
You must log in to submit a review. You can also log in or register using the form near the top of this page.