Directory Traversal Attack

update timthumb. the previous version had a security vulnerability. there are some other threads in the forum talking about it.

Is it updated with WordPress or do I have to do it manually?

Is it updated with WordPress or do I have to do it manually?

It’s not really a WordPress issue*, so you need to play it safe. Check and update the code manually.

https://wptheming.com/2011/08/cleaning-up-the-timthumb-hack/

See Ipstenu’s comment in that post too.

*It’s not a WordPress issue because that software that the bot is looking for is not part of the core WordPress installation. It’s part of add-ons such as themes or plugins.

Do it manually if you haven’t.

I was hit by that too last night, and I don’t even use TimThumb! Basically they’re scanning servers to see if they MIGHT have it. It’s a pain in the ass.

It is pain, my inbox is full of warnings due to this. I’m busy updating all my sites and making sure it is not used. Is it only templates that use this or are there plugins as well?

plugins as well

It seems more plugins use it then themes.

The current scan bot is looking at themes only.

https://ipstenu.org/code/apachestatus.html is a snapshot of last night :/ They ended up pegging my server with 70% of all traffic being this. I set my firewall to auto-block anyone who directly hits a page with timthumb.php more than five times in a row from the same IP.