Category Archives: Security

VaultPress v. 1.3.2 includes hotfix for WooThemes vulnerability

Today, we released an update to the VaultPress plugin (1.3.2) to protect against a recently identified security vulnerability in the WooThemes framework. We’ve already pushed version 1.3.2 of the VaultPress plugin to all sites with a WooThemes file for which … Continue reading

Posted in Announcements, Features, Security | Leave a comment

VaultPress v.1.3 includes hotfix for WordPress vulnerabilities

Today, we released an update to the VaultPress plugin (1.3) to protect against recently identified security vulnerabilities in WordPress. You can read more about those vulnerabilities and the release of WordPress 3.3.2 here. To be proactive, we pushed version 1.3 … Continue reading

Posted in Announcements, Features, Security | 2 Comments

712 Fewer Vulnerable TimThumb Scripts in Existence

We recently contacted VaultPress customers who were affected by the TimThumb image library vulnerability with instructions on how to secure their sites. As previously noted, the vulnerability allows third parties to upload and execute arbitrary PHP code in the TimThumb … Continue reading

Posted in Announcements, Security | Tagged | 7 Comments

Vulnerability Found in timthumb.php

Yesterday we learned of a vulnerability in a popular image resizing library called TimThumb, which is used in many WordPress themes and plugins. The vulnerability was first reported by Mark Maunder in a post on his blog, and has been … Continue reading

Posted in Announcements, Security | Tagged | 43 Comments

Plugin Security Scan and Fixes

Yesterday we learned of a potential security issue related to a few popular WordPress plugins. As a precautionary measure, we have scanned all VaultPress customer sites to check for the affected plugins. We were able to remotely edit and secure … Continue reading

Posted in Security | Tagged , | 4 Comments