wpvidZ

Learn WordPress With Video Tutorials

  • Blog
  • Browse
    • Backup & Restore
    • WordPress Localhost
    • WordPress Hosting
    • WordPress themes
    • Version Updates
    • Plugin Tips
    • Security
    • Tutorials
    • WordPress SEO
    • WP Miscellaneous
    • Sitemap
  • WP 5+ Tutorial
  • Search
wpvidZ Blog Security Plugin to Check TimThumb vulnerability

Security

Plugin to Check TimThumb vulnerability

Last updated on February 18, 2017
Posted on September 7, 2011

Plugin to Check TimThumb vulnerability is available to download

It does feel like yesterday, I have posted the TimThumb wordpress vulnerability article, with the reference about the hack of this image modification php script.

Although I know that my current theme has Thumb.php, and some popular themes are recently using this php script too, and if you are not sure if your theme or plugins are having this php, you might want to check using a plugin to check TimThumb vulnerability.

In the beginning, I actually search if I have any of this script via cPanel, and searching for it. But I haven’t found one, except of the thumb.php.

However, I checked in diythesis forum, that this thumb.php should not be affected with the script, so after installing this plugin to check TimThumb vulnerability, I haven’t fixed my thumb.php.

Download Plugin to Check TimThumb vulnerability

As usual, I always recommend to download any plugins from wordpress plugins database, or from a website that is really realiable for the security.

You can download manually from this wordpress plugins database, or install it directly from your dashboard or admin page.

I have personally installed it inside my admin dashboard.

Some related posts which might help to install or use wordpress plugins:

How to install wordpress plugins

Best blog plugins

Adsense plugin safety

You don’t have plugins if you use wordpress.com

  • Is my site loading fast? I use this shared hosting
  • Try my theme >

Plugin to Check TimThumb vulnerability and then fix those vulnerabilities

Very important: Backup your database before doing this, none knows what will happen, I have tested it personally, and it worked well, but it doesn’t mean that it will fine with your blog.

Also save your current theme and wp-content folder in your computer is wise idea, if there is something happens, immediately ask your webhost to restore your blog. (related: backup and restore in wordpress)

Right after you install this wp plug in, in your dashboard, you will find the setting in Tools.

1. So navigate to Tools, and then you will see “TimThumb Scanner”. Click on that link

2. Once you clicked that link, you will see a small tiny button, which has a label, “scan” click that button, and it will automatically scan all your files, including theme files, plug ins files all of them in your webhost files directory.

plugin to check timthumb
TimThumb Scanner plugin

3. Once it is done scanning, you will see “Vulnerable Timthumb Files” with the red fonts, which means they need to be fixed.

Click the “fix” buttons to update or upgrade to the newest updated TimThumb php script.

I have personally used this plugin to check TimThumb vulnerability in my blog, and removed the plugin after the usage.

plugin timthumb

Latest Posts

  • Twenty Nineteen Theme Full Tutorial – Creating a Website
  • Uninstall W3 Total Cache Plugin – Incredibly Easy!
  • Create WordPress Website 2018 on SiteGround Genesis
  • WordPress Noopener Noreferrer Rel Attribute Quick Fix
  • WordPress CDN Setup with MaxCDN and W3 Total Cache Plugin
  • Twenty Seventeen One Page Parallax Scrolling Website Style
  • How To Add Google Map in WordPress Contact Page
  • WordPress 4.7 Justify Text and Underline
  • Twenty Seventeen Footer “Proudly Powered By WordPress” Text
  • How To Add YouTube Subscribe Button To WordPress Website
← TimThumb WordPress vulnerability – is your theme or plugin affected by TimThumb security?
→ WordPress Admin ID with a Custom Number

Comment form on this post is closed after 60 days.

Search

Worth Reading

  • WordPress Admin ID with a Custom Number
  • TimThumb WordPress vulnerability - is your theme or plugin affected by TimThumb security?
  • How To Secure Your Blog
  • Wordpress security with Plugins Part 1

Backup & Restore

Backup WordPress Without a Plugin or FTP

Export WordPress Database using phpMyAdmin

BigDump Alternative – When BigDump Failed Importing Large WP Database

At This Place The Current Query Includes More Than 300 Dump Lines

View All..

Live Online Website

View All..

Offline Installation

How to Upload WordPress localhost to live server manually

Steps to Install WordPress on Windows 8 and WAMP 2.4

Install WordPress on Mavericks OS X 2014

Maximum upload file size in WAMP WordPress

View All..


WPvidz Hosting Image

  • About Me
  • Contact
  • Affiliate Disclosure
  • Privacy Policy
  • Term of Use

Copyright© 2023 wpvidz.com SG2021 | sitemap.xml


WPvidz.com is independent from WordPress.org but is proudly powered by WordPress & its block-based editor (Gutenberg)

WpvidZ.com uses cookies" to give you the best browsing experience possible. If you click "I Accept" below then you are consenting to this. For more information about your privacy settings on this website, please visit the Privacy Policy page. I Accept