Is it safe to use TimThumb?

Question

Is it safe to use TimThumb?

Navigation

#1 by (2 votes)

5

I'm making a website and I started using the TimThumb.php library to resize the images to the exact size I want. However I came to two doubts

Is it safe to use? hear that past versions presented vulnerability;

Doing the usage will imply something in the performance of my site? ex: more work for the server.

php biblioteca wordpress

asked by anonymous 20.12.2015 / 22:41

1 answer

Get File Size in Bytes in Java Script I can not display the value of SQL

score 2 · Answer 1

Timthumb has only security vulnerabilities, the developers themselves mentioned it once (I think it was on their own blog) and linked it to the reason why they stopped continuing their development. I did a brief research to see if I found this article but I did not find it. In the meantime I have never followed their status and development updates, so I do not know how the situation is at the moment and whether they have already addressed these vulnerabilities or not, but there may be other developers who might have picked up the project and fixed this problem .

However there are other methods and alternatives for this plugin.
Searching Google we can find some of them:

SOen Question - What's a good PHP alternative to Timthumb
Plugin bfi_thumb for WordPress that has now changed and is being continued as - OTF Regenerate Thumbnails or in GitHub - link

In English speaking of both, the TimThumb and the BFIThumb

Among others ...