Archive for August, 2011

WordPress TimThumb Exploitation


One of the biggest blogging platforms, which can easily be extended with vulnerable addons, to support a variety of functions – From CMS’s to pretty much anything. Within some web applications, themes may contain variables that refer to dynamic elements, while in others like WordPress – Insecure PHP files used for caching and resizing images, are surprisingly quite common.

Read More