TimThumb contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input passed via the PATH_INFO and 'src' parameter upon submission to the timthumb.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

Upgrade to version r88 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

• Secunia Advisory ID: 44126 44275
• Related OSVDB ID: 71877 71878 71879 71880
• Vendor Specific Advisory URL: http://code.google.com/p/timthumb/issues/detail?id=49
• Vendor Specific News/Changelog Entry: http://code.google.com/p/timthumb/source/detail?r=88
• Other Advisory URL: http://websecurity.com.ua/4985/
• Vendor URL: http://www.binarymoon.co.uk/projects/timthumb/

• Not Available

NVD does not currently have a CVSSv2 score assigned.