- Author was Featured
- Bought between 1 and 9 items
- Exclusive Author
- Has been a member for 3-4 years
- Item was Featured
- Referred between 100 and 199 users
- Sold between 100 000 and 250 000 dollars
- United Kingdom
I received an email from a buyer today linking me to a post made by a blog owner about a serious vulnerability in timthumb that led to his site being hacked. I don’t use timthumb in my themes but I know a lot of people do so I thought I would post it here to make sure authors are aware of the problem and can apply fixes to their themes.
Article is here: http://markmaunder.com/2011/zero-day-vulnerability-in-many-wordpress-themes/
- Has been a member for 4-5 years
- Exclusive Author
- Europe
- Bought between 10 and 49 items
- Referred between 100 and 199 users
- Sold between 100 and 1 000 dollars
- Microlancer Beta Tester
Thanks for posting this Eugene. I’m actually working on a site that’ll use the script and this is good to know. Appreciated 
- Author had a File in an Envato Bundle
- Author was Featured
- Bought between 1 and 9 items
- Europe
- Exclusive Author
- Has been a member for 2-3 years
- Item was Featured
- Referred between 100 and 199 users
This will start a frenzy among customers… already started with our themes.
- Exclusive Author
- Repeatedly Helped protect Envato Marketplaces against copyright violations
- Sold between 250 000 and 1 000 000 dollars
- Author was Featured
- Item was Featured
- Attended a Community Meetup
- Referred between 100 and 199 users
- Contributed a Tutorial to a Tuts+ Site
I’ve already updated 
- Author had a File in an Envato Bundle
- Author was Featured
- Bought between 1 and 9 items
- Europe
- Exclusive Author
- Has been a member for 2-3 years
- Item was Featured
- Referred between 100 and 199 users
ThemeProvince said
I’ve already updated
This is what i am doing now
- Author was Featured
- Sold between 100 000 and 250 000 dollars
- Has been a member for 3-4 years
- Bought between 100 and 499 items
- Referred between 50 and 99 users
- United Kingdom
- Exclusive Author
duotive said
ThemeProvince saidThis is what i am doing now
I’ve already updated
Likewise, I’m updating my themes ASAP .
- Author had a File in an Envato Bundle
- Author was Featured
- Bought between 1 and 9 items
- Europe
- Exclusive Author
- Has been a member for 2-3 years
- Item was Featured
- Referred between 100 and 199 users
ChrisMooney said
duotive saidLikewise, I’m updating my themes ASAP .
ThemeProvince saidThis is what i am doing now
I’ve already updated
Done and accepted :)))
- Microlancer Beta Tester
- Europe
- Exclusive Author
- Has been a member for 2-3 years
- Referred between 50 and 99 users
- Bought between 1 and 9 items
- Sold between 50 000 and 100 000 dollars
- Has been a member for 5-6 years
- Sold between 10 000 and 50 000 dollars
- Exclusive Author
- Interviewed on the Envato Notes blog
- Philippines
- Bought between 10 and 49 items
- Referred between 200 and 499 users
- Bought between 100 and 499 items
- Has been a member for 4-5 years
- United Kingdom
As a “buyer” I went through the panic of checking all our sites and checking/replacing the latest version of timthumb.php (renamed to thumb.php by some). So for the help of other buyers out there I can confirm that at least the following do use instances of timthumb….
PLUGINS (timthumb.php)—> Sugar slider
WP THEMES (timthumb.php)—> CONCISE , CORPORATE, PUREVISION , LEVITATION, CLOCKSTONE , RTTHEME6, LOTUS , SINTAGMA, DANDELION , BIG FEATURE , INNOVA, AMPLIFY
WP THEMES (thumb.php)—> INFOCUS
