garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Updated WordPress Security Tips (markdown)

ethicalhack3r
2014-10-17 15:12:09 -07:00
parent a41cb51411
commit 33fc9e0c63
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
WordPress-Security-Tips.md

@@ -28,9 +28,9 @@ Add this line in the 'php.ini' file.
error_reporting = off
```
**7. Ensure any TimThumb files are up to date.**
**7. Remove any TimThumb files.**
TimThumb is a small php script for cropping, zooming and resizing web images which many WordPress themes use. In 2011 a Remote Code Execution vulnerability was found to affect it and was actively exploited. This vulnerability has been fixed in recent versions of TimThumb. If your WordPress theme uses the TimThumb script ensure that it is the latest version.
TimThumb is a small php script for cropping, zooming and resizing web images which many WordPress themes use. In 2011 a Remote Code Execution vulnerability was found to affect it and was actively exploited. The lead developer has since dropped the project.
**8. Use a login lockdown plugin.**