If a few coders were informed of this exploit then there is a high chance (99%) that it would have been fixed by now. It's a pitty a great mod has seized to exist because of a few exploits.

How do you know it is just a "few" exploits?

Sorry but if the original coder can not handle it himself, he is always free to contact others coders for assistence. This is not our task.

PS Now that it is about a "big" modification this suddenly is proposed. When (with all respect) a minor modification goes this way, then nobody is offering this. For us each modification is the same, big or small, and we will not act differently.

Since this is a popular mod. I do not see the big deal of vBulliten taking over and fixing the darn bug, how long does it take? at most a few hrs reverse engineer. If the exact bug is known , only a few minute to fix. If I had this mod installed on my forum I would fix it and release it for others to enjoy.

How do you know its A bug and not MANY bugs? How long do you think it took to code something of this size? Also, this is not vBulletin's mod to fix, they didn't create it. Would you like to fix something you didn't create that was this size? Things take time. Be patient, it will get fixed.

Unbelievable....I lost alot of database, I'm wondering if this plays a factor.:confused:

Cause it's not vBulletins work. If they did it, then essentially i can take over any mod and use it all as my own :)

It's the same anywhere.

EX:
Microsoft Corporation will not take over a 3rd party installed program and fix it because of security breach it causes in their parent program. It's not only time, energy and cost, but the responsibility taken when something is re-coded and redistributed. Oh ya there is also intellectual property rights and copyright.

~ from clients that need support afer a patch:
" You made a patch and my system does not work "
" I need support for something your company released "



I am sure a patch can be released to fix the problems, but that is up to the original creator.

VBulliten.org needs to sent out an email to ALL members of this problem to prevent people from losing years of data accumulated due to no emergency data backup. :up:

All members?
What if they don't use vBplaza :|

I am a little bewildered as to the members assuming the staff have
the responsibility to fix issues such as this. Ok so they helped with
the vbshout but that was probably an easy fix or the member of staff
needed the said hack and looked into..

Dont get me wrong, i too have/had this hack on my board, therefore i
would love to see it in action again, as would my members, but ya cant
expect the staff to jump, i spose it was the tone more than anything
that gripped my pooh, bugging the staff like this would most certainly
dissuade them in the future should they think about fixing a hack......

Is it gonna get fixed? we will just have to wait and see, I hope so....

btw an email did go out to the members that had the hack installed
(clicked installed) I got one myself and i appreciated the fast response!!

I don't hold anyone responsible. My entire site was destroyed but shite happens. It's an unfortunate thing and lessons are learned behind it. It could have been worse because I didn't delete anything and was able to rebuild my site quickly thanks to my buddy Willy so I'm thankful to have the foresight not to delete any of the images and skinz that I uploaded. I usually check this site often and I was surprised someone didn't alert to the problem sooner or maybe they did and I missed it. The hack was, next to the Arcade, the most popular thing on my board and it's missed and hopefully CMX will come back (and I'd be willing to break him off a donation) and get it back up and running...

Here's what I want to know and maybe Zeropage can answer. Can I still run the Ibproarcade without the vbux/vplaza?

This was done immediately upon learning of the issue.

All users who had clicked Install received the following email:

.. highlighting the importance of clicking Install, if you want to receive IMPORTANT updates. :)

Great job. I am going back to the arcade mod and click installed incase I have not done so.
Looks like this exploit is gaining momentum, I just saw a blank website that I was visiting, that site had the mod installed, I warn the webemaster to disable it but..

Yes.
It's an independent script with a vbux plugin.

I think one of my sites was hacked, what I have to do?

I disabled the hack by now, but I am still hacked. I prefer to not say the type of hacking to avoid others users from being hacked.