Version: 2.1.6, by calorie
Developer Last Online: Nov 2023
Category: Major Additions -
Version: 4.2.1
Rating:
Released: 06-09-2013
Last Update: 06-13-2013
Installs: 73
DB Changes Uses Plugins Auto-Templates
Additional Files Translations
No support by the author.
PhotoPlog: The Pro Gallery - Version 2.1.6 for vBulletin 4.2.1
This is a full-fledged and completely integrated image gallery add-on for vBulletin. No template edits are necessary. This is the same version that was licensed for sale back in the vBulletin 3 days, but it has been upgraded to vBulletin 4.2.1 and is being offered without charge and is not feature-limited. You get the full pro version.
It comes with various thumb, image, and display settings, has the ability to determine and display EXIF information, is integrated with several packages including Highslide, and you can set a number of usergroup and category permissions, moderate comments and files, add custom fields, FTP import, mass move, and more.
Integrated packages (all are the most recent packages available as of 09 June 2013):
Highslide JS 4.1.13
JHead 2.97
CKEditor 4.1.1
jQuery 1.10.1
PhotoPlog Pro 2.1.6 has been developed for the following version of vBulletin:
vBulletin 4.2.1 (fresh install)
PhotoPlog Pro 2.1.6 has been tested on the following browsers:
Firefox 21.0
Internet Explorer 10.0.5
Check out the screenshots.
How to upgrade from PhotoPlog Pro v.2.1.5 to PhotoPlog Pro v.2.1.6?
You can follow the readme file, but this is a small change to fix a bug I inadvertently introduced
(sorry!!) when I moved the code around. All you need to do is one minute of work as follows:
How to upgrade from any other version of PhotoPlog to PhotoPlog Pro v.2.1.6?
Backup first and then follow the upgrade instructions in the readme file.
Additional questions... Will there be a PhotoPlog version for vBulletin 5? Probably not. My understanding is that vBulletin 5 already includes a gallery. So what happened to you anyway? Personal issues. My sincerest apologies to anyone negatively affected by my absence. What about GARS, GAB, GAZ, GAL, and GeekMart? I'm not sure if I'll update these, and probably not anytime soon.
After a SiteLock scan and then contacting my host about any issues they sent the info below. Does anyone know how I go about fixing the issue? Is it an issue based upon being an "experimental script?" I searched here but can't find anything. (And is SiteLock a "reputable" scanner?)
Quote:
An attacker may be able to exploit this issue to bypass authentication, read confidential data, modify the remote database, or even take control of the remote operating system.
Note that this script is experimental and may be prone to false positives.
Solution: Modify the affected CGI scripts so that they properly escape arguments.
Technical Details: Using the GET HTTP method, SiteLock App Scan found that :+ The following resources may be vulnerable to blind SQL injection (time
based) :+ The 'do' parameter of the /forum/photoplog/search.php CGI
:/forum/photoplog/search.php?query=&submit=&securitytoken=guest&do=p rocess'));SELECT%20pg_sleep(3);-
Please check your affected CGI script and modify them so that the issue can be resolved.
I looked at the VBulletin 3.7 version of this and the screen shots clearly show a collapse icon on the film strip. The screenshots for this version do not show it. There must be a way to do it. I tried registered at the PhotoPlog forum to see if there was any info there but apparently they are having some issues because I get a server error when I try to register.