Results 1 to 3 of 3

Thread: Classipress Plugin: TimThumb Still Needs Security Fix on ExtremeCarousel

  1. #1
    Thread Starter
    ocaladesigns's Avatar
    Join Date
    Jan 2012
    Posts
    76
    Thanks
    1
    Thanked 5 Times in 3 Posts

    Classipress Plugin: TimThumb Still Needs Security Fix on ExtremeCarousel

    It looks to me that the ExtremeCarousel plugin I bought the other day and downloaded DOES NOT have the proper settings to fix that last big security hole:

    define( 'ALLOW_EXTERNAL', false ); NEEDS TO BE FALSE

    $allowedSites = array(); NEEDS TO BE EMPTY

  2. #2
    jomarkosabel's Avatar
    Join Date
    Mar 2009
    Location
    Philippines
    Posts
    41,006
    Thanks
    170
    Thanked 3,409 Times in 3,280 Posts
    You must be an AppThemes customer and logged in to view this response. Join today!
    Please help our moderating team work more efficiently by not sending us support questions via PM. You can read more about how AppThemes support works here. However, you can send a PM to follow up and remind me if I missed your support request/thread.

    Thank you and have a nice day.

  3. #3
    Thread Starter
    ocaladesigns's Avatar
    Join Date
    Jan 2012
    Posts
    76
    Thanks
    1
    Thanked 5 Times in 3 Posts
    You must be an AppThemes customer and logged in to view this response. Join today!

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. [SOLVED] TimThumb vulnerability?
    By rodeoramsey in forum Report ClassiPress Bugs
    Replies: 2
    Last Post: October 23rd, 2011, 05:44 PM
  2. Security Question for ClassiPress / AppThemes
    By cloudybright in forum ClassiPress General Discussion
    Replies: 1
    Last Post: October 3rd, 2011, 04:58 PM
  3. Timthumb (thumb.php) Security Flaw
    By sanook in forum WordPress General Discussion
    Replies: 1
    Last Post: August 14th, 2011, 11:16 AM