vb.org Archive
Page 29 of 42 « First 192728 29 303139 Last »
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vBulletin 3.6 Add-ons (https://vborg.vbsupport.ru/forumdisplay.php?f=194)
-   -   Forum Home Enhancements - [AJAX] Websites who have referred today (in the last 24 hours) (https://vborg.vbsupport.ru/showthread.php?t=137792)

silverleaf 11-11-2007 08:19 PM
Found this today on my forum home...

WTF?

Is this a VB issue or is it specific to this template hack?

RedTyger 11-11-2007 08:31 PM
See https://vborg.vbsupport.ru/showpost....&postcount=263.

Sorry everyone if there are problems, I don't have time at the minute to go through them, I'll see if I can do something during the week.

rwilkins108 11-13-2007 12:15 PM
Quote:
Originally Posted by silverleaf (Post 1380552)
Found this today on my forum home...

WTF?

Is this a VB issue or is it specific to this template hack?
I just got the same thing, doesn't look like anything's really been hacked on my system, just the big blue letters... Anyway, I've uninstalled for now.

edit: I see in the history that 1.61 had a possible fix for the referrer issue, just to let you know, the first version I installed was 1.61, so that's a no go...

This is what the hacker wrote:
HACKED by BondTravolta - Turk Emper0r - HACKURITY TEAM! VBULLETIIN! LISTEN TO ME! CLOSE THIS SECURITY BUG! HACKED HACKED HACKED HACKED HACKED HACKED HACKED HACKED HACKED HACKED HACKED HACKED HACKED HACKED< (2)

rwilkins108 11-13-2007 12:18 PM
Quote:
Originally Posted by RedTyger (Post 1380558)
See https://vborg.vbsupport.ru/showpost....&postcount=263.

Sorry everyone if there are problems, I don't have time at the minute to go through them, I'll see if I can do something during the week.
I read through that and see that it's just the referrer, but how did they get the text to be so big, do they just put html in the referrer text?

class101 11-13-2007 12:35 PM
you can copy paste your footer source guys and apache logs of theses requests.

class101 11-13-2007 12:53 PM
I think I see what is wrong,

PHP Code:
                    // Get the title from the referrer
                    $referrer_title = @fopen("http://" $referred ""r);
                    if ($referrer_title)
                    {
                        $page '';
                        while(!feof($referrer_title))
                        {
                            $title fgets($referrer_title100);
                            $page .= $title;
                        } 
They have probably faked the referer with a simple

GET / HTTP/1.0
Referer: blabla hacked shits


no?

class101 11-13-2007 01:03 PM
it appear to be these glitch, I have tested with the firefox addon

https://addons.mozilla.org/en-US/firefox/addon/953

then add your custome referrer and that will display hacked stuffs .. nothing really critical but to patch :)

Btw I have tested to input <script>alert('');</script> as a referrer and I get strange bugs, you may check the issue quickly redtyger, looks much critical than expected, I will disable mine so.
useful to say:
DO NOT INSTALL v1.61 IT HAS A SECURITY ISSUE!

Artes_Marciales 11-19-2007 10:32 AM
Quote:
Installation Instructions:
1. Go to AdminCP > Plugins & Products > Manage Products > Add/Import Product.
2. Upload the websites_who_have_referred_today.xml file.
3. Upload the wwhrt.php file to the includes/cron folder of your forum directory.
4. Open AdminCP > Styles & Templates > (Your Theme) Edit Templates > Forumhome templates > FORUMHOME.
Sorry...
where I find that file wwhrt.php.

Thanks! :)

Fungsten 11-19-2007 05:20 PM
Installed. Question: I have another Admin account that I want to be ablr to remove the referrals. I've tried to change the code in:

Quote:
<if condition="$bbuserinfo['usergroupid'] == '6'"> (<a href="index.php?$session[sessionurl]do=kill_all_referrers">$vbphrase[referrers_kill_all]</a>)</if>
to include the usergroup for the other Admin account. However, when trying to delete the referrals using that account only the "Remove Referrals" appears but none of the referrals are removed. Do you have any reasons why this may happen? Thank you.

class101 11-19-2007 05:25 PM
cool 1.62 out nice job redtyger fixing the issue


All times are GMT. The time now is 02:15 PM.
Page 29 of 42 « First 192728 29 303139 Last »
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01476 seconds
  • Memory Usage 1,750KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)bbcode_php_printable
  • (4)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (4)pagenav_pagelink
  • (2)pagenav_pagelinkrel
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete