http://mysitemyway.com/support/topic/security-risk-in-echelon-theme My Site My Way Support | Topic: Security risk in echelon theme en-US Tue, 21 May 2013 17:23:10 +0000 http://bbpress.org/?v=1.0.2 q http://mysitemyway.com/support/search.php http://mysitemyway.com/support/topic/security-risk-in-echelon-theme#post-57920 Thu, 15 Mar 2012 13:18:19 +0000 Elliott 57920@http://mysitemyway.com/support/ <p>Hello tannera0,</p> <p>You need to update your theme to the latest version. It's always best to keep Wordpress, plugins, and themes updated. </p> http://mysitemyway.com/support/topic/security-risk-in-echelon-theme#post-57898 Thu, 15 Mar 2012 12:33:58 +0000 tannera0 57898@http://mysitemyway.com/support/ <p>I got this email from my bluehost hoster.<br /> "Dear customer,</p> <p>This is a courtesy notice that we have found and corrected exploitable timthumb.php file(s) on your account, which are listed below. While we have corrected these files, we do recommend you ensure all potential exploits are corrected on your account. This is best done by updating all scripts, plugins, modules and themes on your account to the latest version.</p> <p>The timthumb.php file is a script commonly used in WordPress's (and other software's) themes and plugins to resize images. The exploit allows an attacker to arbitrarily upload and create files and/or folders on your account, which can then be used for a number of malicious tasks, including but not limited to defacement, browser high-jacking and infection, data harvesting and more. After a site has been exploited, it may lead to becoming labeled a "Malicious Website" by Google or other security authorities.</p> <p>Any timthumb.php file below version 1.35, but above version 1.09 is considered vulnerable, unless patched. To prevent being compromised, we advise you update all instances of timthumb.php to version 2.0, or patch the existing vulnerable files. Note that patching the files requires more in-depth knowledge of the PHP scripting language.</p> <p>The updated version of timthumb.php can be found here:</p> <p><a href="http://timthumb.googlecode.com/svn/trunk/timthumb.php" rel="nofollow">http://timthumb.googlecode.com/svn/trunk/timthumb.php</a></p> <p>We have automatically patched the following files for you:</p> <p> /home1/website/public_html/wp-content/themes/echelon/lib/scripts/thumb.php</p> <p>Additional information regarding the compromise can be found at the following two websites, as well as others; note that all external websites in this email are not affiliated with Bluehost.com in any capacity, and are for your reference only.</p> <p><a href="http://markmaunder.com/2011/08/01/zero-day-vulnerability-in-many-wordpress-themes/" rel="nofollow">http://markmaunder.com/2011/08/01/zero-day-vulnerability-in-many-wordpress-themes/</a><br /> <a href="http://redleg-redleg.blogspot.com/2011/08/malware-hosted-newportalsecom.html" rel="nofollow">http://redleg-redleg.blogspot.com/2011/08/malware-hosted-newportalsecom.html</a>"</p> <p>What should I do? </p>