The Arcive of Official vBulletin Modifications Site.

GoTTi · #1 11-15-2007, 02:06 PM

MicroHellas just released today a mod called mysocialspace. some of us were working on the mod on our sites and about 5 minutes ago it got removed to the graveyard.

so i checkedout the coders other mods and all of her mods except the journal have been dumped into the graveyard for having security vulns' in each mod.

what is all this about? what are the vulns we should know about if we installed her mod or any coders mod and its labeled a risk? why does MicroHellas mods keep getting trashed??

just courious. thanks.

deezelpope · #2 11-15-2007, 02:13 PM

<i>I believe she had asked them to be put there.</i>

yoyoyoyo · #3 11-15-2007, 02:26 PM

Quote:

Originally Posted by GoTTi

MicroHellas just released today a mod called mysocialspace. some of us were working on the mod on our sites and about 5 minutes ago it got removed to the graveyard.

so i checkedout the coders other mods and all of her mods except the journal have been dumped into the graveyard for having security vulns' in each mod.

what is all this about? what are the vulns we should know about if we installed her mod or any coders mod and its labeled a risk? why does MicroHellas mods keep getting trashed??

just courious. thanks.

mods are usually moved there due to security flaws, until the developer chooses to fix them, and then they are removed from the graveyard. If you are using mods that are currently in the graveyard then proceed with caution.

#4 11-15-2007, 02:33 PM

you did not ask her first?!

she have her own official commercial website, so you can go there for support!...

Paul M · #5 11-15-2007, 02:51 PM

I believe that mysocialspace has been quarantined due to security issues in the code.

yoyoyoyo · #6 11-15-2007, 02:54 PM

Quote:

Originally Posted by GoTTi

what are the vulns we should know about if we installed her mod or any coders mod and its labeled a risk?

vb.org does not release the details of the flaws, in order to protect the people who have installed the mods from hackers.

Lionel · #7 11-15-2007, 03:07 PM

Quote:

Originally Posted by yoyoyoyo

mods are usually moved there due to security flaws, until the developer chooses to fix them, and then they are removed from the graveyard. If you are using mods that are currently in the graveyard then proceed with caution.

not all the time. I recently requested that they delete/send one my mod in the graveyard. Nothing was wrong with it, except that I am puting out one which is 100 times better and query free.

yoyoyoyo · #8 11-15-2007, 03:20 PM

Quote:

Originally Posted by Lionel

not all the time. I recently requested that they delete/send one my mod in the graveyard. Nothing was wrong with it, except that I am puting out one which is 100 times better and query free.

Yep, I know, I said "usually"

Obviously, this is not the case 100% of the time, but according to paul, the mod in question was moved to the graveyard due to security holes. I wonder if the same is true with vBJournal?

Paul M · #9 11-15-2007, 04:23 PM

Quote:

Originally Posted by yoyoyoyo

I wonder if the same is true with vBJournal?

Yes it is.

Marco van Herwaarden · #10 11-16-2007, 04:46 AM

Those that had the modification marked as installed will have received an email with the reason it was placed in the graveyard. For others this should be of no concern.

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.04112 seconds Memory Usage 2,239KB Queries Executed 13 (?)
More Information
Template Usage: (1)SHOWTHREAD (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (1)ad_showthread_beforeqr (1)ad_showthread_firstpost (1)ad_showthread_firstpost_sig (1)ad_showthread_firstpost_start (5)bbcode_quote (1)footer (1)forumjump (1)forumrules (1)gobutton (1)header (1)headinclude (1)navbar (3)navbar_link (120)option (1)pagenav (1)pagenav_curpage (2)pagenav_pagelink (10)post_thanks_box (10)post_thanks_button (1)post_thanks_javascript (1)post_thanks_navbar_search (10)post_thanks_postbit_info (10)postbit (9)postbit_onlinestatus (10)postbit_wrapper (1)spacer_close (1)spacer_open (1)tagbit_wrapper Phrase Groups Available: global inlinemod postbit posting reputationlevel showthread	Included Files: ./showthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/functions_bigthree.php ./includes/class_postbit.php ./includes/class_bbcode.php ./includes/functions_reputation.php ./includes/functions_post_thanks.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_postinfo_query fetch_postinfo fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete showthread_start showthread_getinfo forumjump showthread_post_start showthread_query_postids showthread_query bbcode_fetch_tags bbcode_create showthread_postbit_create postbit_factory postbit_display_start post_thanks_function_post_thanks_off_start post_thanks_function_post_thanks_off_end post_thanks_function_fetch_thanks_start post_thanks_function_fetch_thanks_end post_thanks_function_thanked_already_start post_thanks_function_thanked_already_end fetch_musername postbit_imicons bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete postbit_display_complete post_thanks_function_can_thank_this_post_start pagenav_page pagenav_complete tag_fetchbit_complete forumrules navbits navbits_complete showthread_complete
Messages:

The Arcive of Official vBulletin Modifications Site.

It is not a VB3 engine, just a parsed copy!