Protect Your Timthumb
Ogah, 03-01-2012
Timthumb is php script for cropping, zooming and resizing web images (jpg, png, gif).
You can get timthumb from
code.google.com
But timthumb have a hole, someone can inject malicious script to your site with your timthumb.
Here I'll share an easy way to protect files timthumb from malicious script injection.
You can do it by your self.
First step, download
timthumb protection code (PHP)
Then edit your timthumb file, copy and paste protection code and place in before
timthumb::start();
That is all, and enjoy your secure timthumb :D
