Vulnerable Themes - Why WPMUDEV?


Why does the WPMU DEV Themes continue to disseminate vulnerable versions of timthumb.php?

The "Network" theme version 1.7.8 has a copy of /wp-content/themes/network/library/functions/timthumb.php version 1.19 which is extremely insecure. Is WPMU DEV team not aware of the number of WP sites that were compromised via older versions of timthumb? Just do a google search for timthumb.php vulnerabilities.

The latest version of timthumb.php is 2.8.11 (

I love what WPMU DEV team does but in this case, I must say this is not what I nor all of your paid members expect from your service. You are better then that!