If your WordPress site has been hacked during the last year, chances are the TimThumb hack was at cause. TimThumb is a script for resizing pictures, which is/was used in many many themes and plugins. Unfortunately a flaw was discovered that enabled hackers to gain access to your blog and pretty much do anything they like on your server.
So if you have fallen victim of hacking lately, and still have your blog compromised, download the Timthumb Vulnerability Scanner which will indicate any Timthumb scripts in your theme or plugins which still have the security hole permitting hackers to access the site. If you do find any instances, it’s time to start cleaning. The good thing is that you now know how and why your site got compromised.
Got hacked by the TimThumb exploit and need help? We can clean TimThumb hacked sites, just get in touch.
If you enjoyed this post, make sure to subscribe to WPMayor’s RSS feed.