- This TimThumb plugin is prone to a Remote Code Execution vulnerability because script does not check remotely cached files properly.
- Update this plugin to the latest version or just delete the "timthumb" file.
Type Arbitrary Code Execution
- Name CVE-2011-4106
Fixed In 1.34
- Disclosure date