vb.org Archive
Page 666 of 758 « First 166566616656664665 666 667668676716 Last »
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vBulletin 4.x Add-ons (https://vborg.vbsupport.ru/forumdisplay.php?f=245)
-   -   Major Additions - ibProArcade - professional Arcade System (https://vborg.vbsupport.ru/showthread.php?t=101554)

TopShelfGamer 03-22-2012 03:11 PM
Anyone got a big rar file full of games?

Hippy 03-22-2012 09:50 PM
Quote:
Originally Posted by TopShelfGamer (Post 2312131)
Anyone got a big rar file full of games?
** Please do not post any information, request or offer of Games here in this Thread ! And remember that Support is given in the ibProArcade-Support-Forum **

read the mod post also vb.org rules

boggseric 03-23-2012 04:52 PM
I posted this in the premium thread, but I am not a premium user. :o


Quote:
Originally Posted by boggseric (Post 2312326)
I made these changes but now there error moved down one line.

Fatal error: Call to undefined function: str_ireplace() in /home/ls2com/public_html/forums/arcade.php on line 5601


2.7.2 does it now required PHP5?

my code in arcade.php
Code:
// remove any SQL-commands
        $sqlcomm = array();
        $sqlcomm[] = 'create';
        $sqlcomm[] = 'database';
        $sqlcomm[] = 'table';
        $sqlcomm[] = 'insert';
        $sqlcomm[] = 'update';
        $sqlcomm[] = 'rename';
        $sqlcomm[] = 'replace';
        $sqlcomm[] = 'select';
        $sqlcomm[] = 'handler';
        $sqlcomm[] = 'delete';
        $sqlcomm[] = 'truncate';
        $sqlcomm[] = 'drop';
        $sqlcomm[] = 'where';
        $sqlcomm[] = 'or';
        $sqlcomm[] = 'and';
        $sqlcomm[] = 'values';
        $sqlcomm[] = 'set';
        $sqlcomm[] = 'password';
        $sqlcomm[] = 'salt';
        $sqlcomm[] = 'concat';
        $sqlcomm[] = 'schema';
        // $value = recursive_str_ireplace($sqlcomm, '', $value);
        foreach ($sqlcomm AS $key => $needle)
    {
        $value = str_ireplace($needle, '', $value);
    }

Hippy 03-23-2012 04:57 PM
you posted it before in the correct thread,, that's the support forums.. this is not..
unless you do what stangger5 did just removing that part of the code will move the error

cowcowcow 03-25-2012 02:22 AM
my fourm just got compromised hardcore through the arcade.

Im not sure if this applies to everyone (since i downloaded the last arcade version 6 months ago and this might have been addressed) but if u dont have a recent version would suggest every1 to delete ibpro ASAP or update it.

they replaced some templates, tried to delete .php files

hippy i have pmed you how they did it please fix it so the other sites dont experience what i did. might be related to this.

http://www.securityfocus.com/bid/22575/discuss


ibProArcade Arcade.PHP SQL Injection Vulnerability

ibProArcade is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query.

A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.

This issue affects version 2.5.9+; other versions may also be vulnerable.

BirdOPrey5 03-25-2012 10:31 AM
Quote:
Originally Posted by cowcowcow (Post 2313022)
my fourm just got compromised hardcore through the arcade.

Im not sure if this applies to everyone (since i downloaded the last arcade version 6 months ago and this might have been addressed) but if u dont have a recent version would suggest every1 to delete ibpro ASAP or update it.

they replaced some templates, tried to delete .php files

hippy i have pmed you how they did it please fix it so the other sites dont experience what i did. might be related to this.

http://www.securityfocus.com/bid/22575/discuss


ibProArcade Arcade.PHP SQL Injection Vulnerability

ibProArcade is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query.

A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.

This issue affects version 2.5.9+; other versions may also be vulnerable.
The arcade was fixed months ago too. Emails went out to everyone who has ever downloaded it to disable or delete the mod until the fix was provided.

If you didn't get the email you should make sure the one you use here is up to date and white list @vbulletin.org from your spam list if you have one.

ywwz 03-25-2012 12:38 PM
great job!!!

silpher 03-27-2012 05:26 PM
Arcade style is broken for me, I've already reinstalled but it's still the same, I'm using VB 4.1.11,

https://vborg.vbsupport.ru/

help me please.

Hippy 03-27-2012 06:55 PM
Quote:
Originally Posted by silpher (Post 2313934)
Arcade style is broken for me, I've already reinstalled but it's still the same, I'm using VB 4.1.11,

http://img534.imageshack.us/img534/8067/brokenh.jpg

help me please.
In my Sig you'll find the link to the arcade fixes the first post I believe will fix your issue

ptshooter619 03-28-2012 09:07 PM
how do you change the text color of the arcade?


All times are GMT. The time now is 02:03 AM.
Page 666 of 758 « First 166566616656664665 666 667668676716 Last »
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.06598 seconds
  • Memory Usage 1,747KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)bbcode_code_printable
  • (4)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (4)pagenav_pagelink
  • (6)pagenav_pagelinkrel
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete