Security
TimThumb Strikes Again 0-day WordPress
This is sadly not the first time this library has caused significant grief for WordPress CMS sites. The last was back in the fall of 2011 and this latest 0-day is much the same, allowing server based, file level access across sites; possibly even servers depending on configuration. The specific Read more…