Same problem here. I disabled the hack in two places (vBulletinOptions and Manage Products) before I edited the FORUMHOME template. After the edit I enabled the hack in both places and have two boxes still, one where I want it (At the bottom of the 'what's going on' box) and one where it was to begin with (above the 'what's going on' box).

I followed the instructions to a 't' in this thread. Can someone tell me how to delete the stat box above the 'what's going on' box??

there is a big vulnerability in this modification....my site was just hacked....THREE times.

this allows someone to place a code of script in the title of a post and it redirected my page...

even though there is this line of the fix:
v2.8 - Jul 08. 2006.
-Security bug fixed where some codes can be executed on site if entered as thread title. Upgrade

still didn't work. I ran the upgraded version since saturday, and today (tuesday), my site was hacked again. I disabled the hack, and the redirect went away, so I know it was related to this one.

Any fixes for this?

Same thing just happened to me. I removed the hack and the problem was gone. I was however (stupidly) not running the latest version of the hack. After reading the above post I think I'll wait before installing the latest version though.

TorGa3iGhT,

By info you have sent me via PMs you have no latest version of this hack installed.

Please be sure to check ALLOW OVERWRITE option when upgrading hacks on your forums.

If you are unsure how to do this you can create temp admin account for me and I'll do it for you.

So for all those who are not sure is it safe to use this hack, just check twice you have the latest version installed and no worry.

Cybernetec

I haven't had anymore problems since I upgraded, and I've had multiple attempts each day since.

I do know for a fact that they are varying the original meta refresh script that they intially used.

Like I said the updated version works fine, but if it will help here is an extra little step I added.

There is no need for the above listed words and or characters to be used in a discussion on a vB board, unless it's a computer related board discussing code.

Also, something to think about is that a lot of people have "test" forums on their servers to try out new hacks and upgrades before installing them on their "live" board. Please remember that if you installed Cyb-Advanced Stats, TopXStats or FlashChat on your test board and they are still on there and/or unpatched then you are still at risk, especially with FlashChat as they are gaining directory access through holes before version 4.6.2.

If you have been hit with these exploits (and you are able to log into your AdminCP)...go to vBulletin Options ---> Plugin/Hook System--->Enable Plugin/Hook System=NO and either upgrade or try the suggestion I have listed above.

Hope this helps. :)

I just got hit today with this same type of attack. I was running 3.0 still, updated the hack to 3.5..made all of the other changes noted on vB.org for this sort of attack.

Of course, now I have to figure out why my forumhome template block for this mod is out of alignment after the upgrade....

Believe it or not, that kid from Turkey today tried to play his childish games on my forums too. Of course, he had no luck. I have installed 3.5 version of this product. I'm sure he can't do such tricks with current script so don't worry about it. All you need to do next time is to ban him with big smile on your face.

Just FYI for folks upgrading (a great idea to do that BTW)...but there are template changes in the 3.5 update...maybe before that as well. So if your block looks wacky after updating, check your templates...revert them to the default and start over with your custom mods if need be.

Fixed my problems right up.

Indeed, and great as always! Thanks!!!

The stats box creates a half inch space right above it, where ever I place it. How can I get rid of it?