Viewing 12 posts - 1 through 12 (of 12 total)
  • Author
    Posts
  • #5401

    I see someone mentioned about this in the Avisio forum but I have two sites using the Levitation theme.

    Firstly, if Auto Scaling is off in the Theme Options is it safe to delete the script completely and save any further problems? Or maybe just empty the file as you suggested in the Avisio forum but keep the file in place.

    But if Auto Scaling is on how do I go about updating the script for the Levitation theme? I tried to replace the code in timthumb.php with the new version of this script but it didn’t work.

    Thanks in advance.

    #50041

    Hey,

    Kriesi already works on updates. There’s no need to panic though because hacker can find better targets than private or small business sites.

    #50042

    Hi, in the version.rtf file of 1.3.2 it says…

    “file: framework/includes/timthumb.php : updated file for security reasons to latest version”

    But I don’t understand what this means. There is no files in levitation/includes when I extract the zip.

    ‘includes’ is just an empty folder that wasn’t there in the previous version of the theme.

    And levitation/timthumb.php is exactly the same as before.

    I don’t understand what’s been updated. Can you explain it please.

    Thanks.

    #50043

    Yes – I checked my levitation copy and Kriesi forgot to update the script. I’ll notify him to release an updated version asap.

    #50044

    Thank you. Could you post here please when it is available at ThemeForest.

    #50045

    Yes – I’ll post a notification here :)

    #50046

    Dude, has the Timthumb issue been corrected for the Levitation theme? I’d like to purchase it ASAP, but will wait until the fix is in place.

    #50047

    You can edit the timthumb.php file to be likethis, this should solve the security issue though I’m uncertain if any other adjustments need to be made to function correctly with the Levitation theme.

    I’ll check with Kriesi.

    #50048

    Is Kriesi on holiday? :)

    #50049

    Hey!

    Hey! yes the theme was updated a while ago with the latest version of timthumb ;)

    Regards,

    Kriesi

    #50050

    No it wasn’t. And still isn’t. I quote from above…

    “Yes – I checked my levitation copy and Kriesi forgot to update the script. I’ll notify him to release an updated version asap.”

    #50051

    The current version of the theme doesn’t bring up any issues regarding the timthumb integration. If it does for you, could you specify what the problem is exactly?

Viewing 12 posts - 1 through 12 (of 12 total)

The topic ‘TimThumb security issue’ is closed to new replies.