This is another tiny albeit important update that fixes a security issue with timthumb.php which can be found inside the “lib” folder within DukaPress.
We use timthumb.php to resize images. It turns out that there is a grave security risk with using an unmodified timthumb.php. The vulnerability is described here.
Timthumb 2.0 was recently made available. It represents a complete re-write of the old version with many enhanced features and security fixes. We believe that this necessitates a DukaPress update to keep our users safe. Therefore, say hello to DukaPress 2.3.3
The only thing that changes is the replacing of the old timthumb.php with timthumb.php version 2.5