http://www.kriesi.at/support/topic/timthumb-security-issue Support Forum - Topic: TimThumb security issue en-US Fri, 24 May 2013 07:34:50 +0000 http://bbpress.org/?v=1.0.2 q http://www.kriesi.at/support/search.php http://www.kriesi.at/support/topic/timthumb-security-issue#post-32357 Fri, 18 Nov 2011 18:46:11 +0000 Chris Beard 32357@http://www.kriesi.at/support/ <p>The current version of the theme doesn't bring up any issues regarding the timthumb integration. If it does for you, could you specify what the problem is exactly? </p> http://www.kriesi.at/support/topic/timthumb-security-issue#post-32315 Fri, 18 Nov 2011 14:28:29 +0000 robdobson 32315@http://www.kriesi.at/support/ <p>No it wasn't. And still isn't. I quote from above...</p> <p>"Yes - I checked my levitation copy and Kriesi forgot to update the script. I'll notify him to release an updated version asap." </p> http://www.kriesi.at/support/topic/timthumb-security-issue#post-31045 Thu, 03 Nov 2011 03:01:38 +0000 Kriesi 31045@http://www.kriesi.at/support/ <p>Hey! </p> <p> Hey! yes the theme was updated a while ago with the latest version of timthumb ;) </p> <p> Regards,<br /> Kriesi </p> http://www.kriesi.at/support/topic/timthumb-security-issue#post-31005 Wed, 02 Nov 2011 12:12:07 +0000 breakpoint 31005@http://www.kriesi.at/support/ <p>Is Kriesi on holiday? :) </p> http://www.kriesi.at/support/topic/timthumb-security-issue#post-30731 Sun, 30 Oct 2011 02:29:11 +0000 Chris Beard 30731@http://www.kriesi.at/support/ <p>You can edit the timthumb.php file to be like<a href="http://timthumb.googlecode.com/svn/trunk/timthumb.php">this</a>, this should solve the security issue though I'm uncertain if any other adjustments need to be made to function correctly with the Levitation theme.<br /> I'll check with Kriesi. </p> http://www.kriesi.at/support/topic/timthumb-security-issue#post-30681 Fri, 28 Oct 2011 11:41:46 +0000 breakpoint 30681@http://www.kriesi.at/support/ <p>Dude, has the Timthumb issue been corrected for the Levitation theme? I'd like to purchase it ASAP, but will wait until the fix is in place. </p> http://www.kriesi.at/support/topic/timthumb-security-issue#post-29337 Wed, 12 Oct 2011 16:25:43 +0000 Dude 29337@http://www.kriesi.at/support/ <p>Yes - I'll post a notification here :) </p> http://www.kriesi.at/support/topic/timthumb-security-issue#post-29309 Wed, 12 Oct 2011 09:09:12 +0000 robdobson 29309@http://www.kriesi.at/support/ <p>Thank you. Could you post here please when it is available at ThemeForest. </p> http://www.kriesi.at/support/topic/timthumb-security-issue#post-29294 Wed, 12 Oct 2011 07:24:30 +0000 Dude 29294@http://www.kriesi.at/support/ <p>Yes - I checked my levitation copy and Kriesi forgot to update the script. I'll notify him to release an updated version asap. </p> http://www.kriesi.at/support/topic/timthumb-security-issue#post-29241 Tue, 11 Oct 2011 19:15:31 +0000 robdobson 29241@http://www.kriesi.at/support/ <p>Hi, in the version.rtf file of 1.3.2 it says...<br /> "file: framework/includes/timthumb.php : updated file for security reasons to latest version"</p> <p>But I don't understand what this means. There is no files in levitation/includes when I extract the zip.<br /> 'includes' is just an empty folder that wasn't there in the previous version of the theme.<br /> And levitation/timthumb.php is exactly the same as before.</p> <p>I don't understand what's been updated. Can you explain it please.</p> <p>Thanks. </p> http://www.kriesi.at/support/topic/timthumb-security-issue#post-24618 Thu, 11 Aug 2011 16:32:01 +0000 Dude 24618@http://www.kriesi.at/support/ <p>Hey,<br /> Kriesi already works on updates. There's no need to panic though because hacker can find better targets than private or small business sites. </p> http://www.kriesi.at/support/topic/timthumb-security-issue#post-24615 Thu, 11 Aug 2011 16:26:11 +0000 robdobson 24615@http://www.kriesi.at/support/ <p>I see someone mentioned about this in the Avisio forum but I have two sites using the Levitation theme.</p> <p>Firstly, if Auto Scaling is off in the Theme Options is it safe to delete the script completely and save any further problems? Or maybe just empty the file as you suggested in the Avisio forum but keep the file in place.</p> <p>But if Auto Scaling is on how do I go about updating the script for the Levitation theme? I tried to replace the code in timthumb.php with the new version of this script but it didn't work.</p> <p>Thanks in advance. </p>