Category Archives: Security
VaultPress protects against the PHP CGI Flaw
Recently, a security vulnerability called the CGI Flaw was identified in PHP. We scanned all of our customers’ sites and discovered the vulnerability in a handful of them. We closed this vulnerability yesterday, by pushing an update to the .htaccess … Continue reading
VaultPress v. 1.3.2 includes hotfix for WooThemes vulnerability
Today, we released an update to the VaultPress plugin (1.3.2) to protect against a recently identified security vulnerability in the WooThemes framework. We’ve already pushed version 1.3.2 of the VaultPress plugin to all sites with a WooThemes file for which … Continue reading
VaultPress v.1.3 includes hotfix for WordPress vulnerabilities
Today, we released an update to the VaultPress plugin (1.3) to protect against recently identified security vulnerabilities in WordPress. You can read more about those vulnerabilities and the release of WordPress 3.3.2 here. To be proactive, we pushed version 1.3 … Continue reading
712 Fewer Vulnerable TimThumb Scripts in Existence
We recently contacted VaultPress customers who were affected by the TimThumb image library vulnerability with instructions on how to secure their sites. As previously noted, the vulnerability allows third parties to upload and execute arbitrary PHP code in the TimThumb … Continue reading
Vulnerability Found in timthumb.php
Yesterday we learned of a vulnerability in a popular image resizing library called TimThumb, which is used in many WordPress themes and plugins. The vulnerability was first reported by Mark Maunder in a post on his blog, and has been … Continue reading
VaultPress Blog 