WordPress Vulnerability

 

I just wanted to let you know this in case you run WordPress:

–WordPress Vulnerability

(June 26, 2014)

A vulnerability in the WebShot feature of the TimThumb image resizing plug-in on WordPress could be exploited to execute code. The WebShot feature lets the tool take screenshots of websites. Users can protect their sites by disabling the WebShot feature of TimThumb. The plug-in is disabled by default, but can become automatically enabled by certain themes and plug-ins.

http://www.scmagazine.com/rce-vulnerability-in-timthumbs-webshot-feature-puts-wordpress-users-at-risk/article/358095/

http://arstechnica.com/security/2014/06/running-wordpress-got-webshot-enabled-turn-it-off-or-youre-toast/

xoxoxoxox

DebtGirl

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s