thanks for the hard work making this program as well as working on it. I'm sure i will use it again as i did like it. but at this time I'm going to wait a bit see the ones with more time and knowledge on fixing forums use this . as i have been trying to clean up now for next to 2 days .. and thats my fault for just learning this stuff.. LOL.

Valter is good and trusted coder and using many CYB_ mod hacks.

but this mod hack uninstalled from my site and maybe other mod hacks have uninstalled.

sorry nothing personal Valter but is too risk lost everything on my site/forum. (dont have much time to install and setup again)

These things happen and can strike any software at any time. This is why I keep 3 different backups of my forums.. one on disk, one on a different box at the host, and one that is rsync'd to my local machine at home (in a vm session which is then shut down after sync and also duplicated to a NAS). If you do not have a good backup system in place, then you're asking for it.

BACKUP (many places is safe) is the first word to know anyone have job to IT Department.

dont worry my friend already using backup any day / any time (SQL DB / FILES DB) for many places on server and on my computer.

i am not trust any backup after hack attack (reason is the hacker have modify .php or .html files or templates or sql db or....and never see the "bad code")

i am say anyone hacked my VB 3.x force to deleted everything on my server and install / setup new VB 4.x without any mod/hack.

you sound sure of your self that you have fixed the security hole.
like hundreds of forums hacked must hurt in some way yeah?

anyway, im going to put this to the test and re-install and go live.

one thing is the demo link still is not live which makes it iffy :rolleyes:

What kind of bull**** is this? What do you want to hear? Is he to confess and wear sackcloth and ashes? Would you prefer a pillory? He's offering free addons for vB, and security issues have known to be found in any kind of software. Nobody forces you to use it, but if you're unaware that installing addons carries a risk, since all humans are prone to errors, it's your own fault. He sure did not do it on purpose. But if this kind of sniping is good for your ego...

And yes, the security hole is fixed indeed.

ok update, everything seems ok now for those that are to scared to re-install. been a night and half a day, all seems good. @cellarius, hey moron, i felt sorry for the guy. you need to think before talking out your rear end.

thanks Valter ;)

Then you should make yourself clearer. Even after reading your wording again, I just can't understand it in any other way that I did - moron yourself.

After upgrading to 4.0.3 first and then 4.0.4 rules are not displayed, empty box at misc.php?do=cfrules

I wish i could download old versions, i was on 3.6, probably even not affected by the bug :/

Everybody was affected by the bug, there was some unescaped POST-Data, so SQL-Injection was possible independant of the vBulletin-version.

I have updated to 4.0.3 first and then 4.0.4, my rules are still intact. You know that you have to reactivate the plugin, right? Because as long as you haven't activated it, you can't look at your rules and will be forwarded to the smiley page.