Remote Code Execution in TimThumb (timthumb.php) before 2.0 via Unvalidated Domain Whitelist

Remote Code Execution in TimThumb (timthumb.php) before 2.0 via Unvalidated Domain Whitelist

CVE-2011-4106 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

TimThumb (timthumb.php) before 2.0 does not validate the entire source with the domain white list, which allows remote attackers to upload and execute arbitrary code via a URL containing a white-listed domain in the src parameter, then accessing it via a direct request to the file in the cache directory, as exploited in the wild in August 2011.

Learn more about our Web Application Penetration Testing UK.