[theme-reviewers] Functions.php Worm
Chip Bennett
chip at chipbennett.net
Tue Oct 12 19:19:14 UTC 2010
I'm completely unfamiliar with TimThumb. What is it, and what does it do?
It looks to me like it's just an image thumbnailer/resizer - which is
exactly what core Post Thumbnails does.
So, should we even be allowing new Themes to be using TimThumb? Does it do
something that can't be accomplished with the core functionality?
Chip
On Tue, Oct 12, 2010 at 2:00 PM, Gene Robinson <emhr at submersible.me> wrote:
> I don't use tim-thumb but two themes I just reviewed were using it. I'll
> have to go back and look into them regarding this. The tickets were:
> Sriwijaya <http://themes.trac.wordpress.org/ticket/1333> and Syailendra<http://themes.trac.wordpress.org/ticket/1428>. Also
> could someone look at my final comment on Syailendra<http://themes.trac.wordpress.org/query?keywords=~theme-syailendra> as
> I am unsure if Chris is cc'd on this ticket by simply commenting.
>
> You are welcome to assign me another theme if you like. When is training
> complete or is there a milestone to reach?
>
> -Gene(emhr)
>
> On Oct 12, 2010, at 2:25 PM, Edward Caissie wrote:
>
> @Gene -
>
> Around the end of August several themes were noted to be using an older
> version of timthumb that had a potentiall security issue associated with the
> code as it was written. The timbthumb script itself was corrected before
> then but there were still older versions in use on some repository themes.
>
> If you are using timthumb you can get the current version here if need be:
> http://code.google.com/p/timthumb/
>
>
>
> _______________________________________________
> theme-reviewers mailing list
> theme-reviewers at lists.wordpress.org
> http://lists.wordpress.org/mailman/listinfo/theme-reviewers
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.wordpress.org/pipermail/theme-reviewers/attachments/20101012/3b489010/attachment.htm>
More information about the theme-reviewers
mailing list