[theme-reviewers] Functions.php Worm

Edward Caissie edward.caissie at gmail.com
Tue Oct 12 19:04:01 UTC 2010


That version is fine ... it was a much lower version where the issue was.

I'll see about finding you another ticket in a moment ...


Cais.

On Tue, Oct 12, 2010 at 3:00 PM, Gene Robinson <emhr at submersible.me> wrote:

> I don't use tim-thumb but two themes I just reviewed were using it. I'll
> have to go back and look into them regarding this. The tickets were:
> Sriwijaya <http://themes.trac.wordpress.org/ticket/1333>  and Syailendra<http://themes.trac.wordpress.org/ticket/1428>. Also
> could someone look at my final comment on Syailendra<http://themes.trac.wordpress.org/query?keywords=%7Etheme-syailendra> as
> I am unsure if Chris is cc'd on this ticket by simply commenting.
>
> You are welcome to assign me another theme if you like. When is training
> complete or is there a milestone to reach?
>
> -Gene(emhr)
>
> On Oct 12, 2010, at 2:25 PM, Edward Caissie wrote:
>
> @Gene -
>
> Around the end of August several themes were noted to be using an older
> version of timthumb that had a potentiall security issue associated with the
> code as it was written. The timbthumb script itself was corrected before
> then but there were still older versions in use on some repository themes.
>
> If you are using timthumb you can get the current version here if need be:
>  http://code.google.com/p/timthumb/
>
>
>
> _______________________________________________
> theme-reviewers mailing list
> theme-reviewers at lists.wordpress.org
> http://lists.wordpress.org/mailman/listinfo/theme-reviewers
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.wordpress.org/pipermail/theme-reviewers/attachments/20101012/d76e77fb/attachment.htm>


More information about the theme-reviewers mailing list