The Arcive of Official vBulletin Modifications Site.

HTTP Upload Hack · **Released**: 05-02-2004

Hi @LL,

UPDATE:

This version is now obsolete. I have just posted the next version for this upload hack. You can find it here.

This version will no longer be supported !!!

many people requested this hack and many people wanted to have it independant of VBulletin. Due to this i created this simple hack which uploads files via HTTP.

Copy both files in the same directory where you want to upload files into it. This works only in the same directory. So you can not choose where to put the files. It just uploads the files.

I have added a little bit security to this because many people will try to use this as soon as they know about it. The config file has the login and the password to log into the script.

In addition to this i have made this session depending. You can not call specific subroutines of this script without having logged in properly. As soon as you close your browser and you try to call subroutines you will be blocked.

I have also implemented a small check for existing files. It will deny the upload if you want to upload a file which already exists. With this you will be on the secure side so no one overwrites any important file with rubbish.

This has nothing to do with VBulletin but many people requested this as part of their administrative work.

I take no responsibility for this hack !!! If someone finds a security hole or a bug and something happens i will not be responsible for any damage !!!

After reading the rules for VBulletin.org this hack could be removed due to not cooperating with VBulletin. So it is up to the staff of VBulletin.org to decide to remove this hack or to follow the demands of their members and leave it. I just want to help some members here and i hope i do not cause any trouble with this hack.

Enjoy it.

Cheers,

gmarik · #12 05-04-2004, 02:51 PM

any demos?

Pseudomizer · #13 05-04-2004, 05:12 PM

Quote:

Originally Posted by gmarik

any demos?

I guess no one will give you the link to upload any files to their webserver. Bad request.

But i will attach the screenshots, so you can see how simple this is.

Cheers,

Oldfart · #14 05-15-2004, 08:59 PM

I have a question.

Would it be possable to make this hack to be able to download as well as upload from the same directory?

I guess I should explain. What i'm looking for is a non PHP MySql upload/download program for my website. I have pafiledb but I can't upload anything larger than 2mbs because of my hosts php upload settings. I have over 7 gig's worth of web space that I pay for but never use anywheres close to it and I would like to allow my members to be able to use some of this unsed space.

Thanks for your reply.

Pseudomizer · #15 05-16-2004, 01:19 AM

Quote:

Originally Posted by Oldfart

I have a question.

Would it be possable to make this hack to be able to download as well as upload from the same directory?

I guess I should explain. What i'm looking for is a non PHP MySql upload/download program for my website. I have pafiledb but I can't upload anything larger than 2mbs because of my hosts php upload settings. I have over 7 gig's worth of web space that I pay for but never use anywheres close to it and I would like to allow my members to be able to use some of this unsed space.

Thanks for your reply.

Hi Oldfart,

the PHP setting for the upload is per default 2MB. You have to change this setting to upload more then 2MB. If you want to upload into a MySQL database then you have to edit your .cnf file to allow bigger uploads into the DB.

This is an HTTP upload with PHP files and this will always rely on the php.ini setting. If you are not able to edit the 2MB limit, then this hack will not help you at all. Sorry, but no way to get around this.

Cheers,

d3nnis · #16 05-18-2004, 01:17 PM

hi how is it possible to modify to integrate into vbulletin(requires registration before they can use)? I would like to have some image hosting for my community members.

Pseudomizer · #17 05-18-2004, 01:31 PM

Quote:

Originally Posted by d3nnis

hi how is it possible to modify to integrate into vbulletin(requires registration before they can use)? I would like to have some image hosting for my community members.

Take this at the beginning:

PHP Code:


			
if($bbuserinfo[userid]!=0)

{

and at the end put this:

PHP Code:


			
}

else

{

    echo "You are not logged in";

}

But please keep in mind that this upload hack allows the upload of any file. It is not limited to just graphics. So they could upload any php file and run it.

This is DANGEROUS !!!!!!!!!

Cheers,

d3nnis · #18 05-19-2004, 01:56 AM

Quote:

Originally Posted by Pseudomizer

Take this at the beginning:

PHP Code:


			
if($bbuserinfo[userid]!=0)

{

and at the end put this:

PHP Code:


			
}

else

{

    echo "You are not logged in";

}

But please keep in mind that this upload hack allows the upload of any file. It is not limited to just graphics. So they could upload any php file and run it.

This is DANGEROUS !!!!!!!!!

Cheers,

so how do i restrict to certain file types only?

Pseudomizer · #19 05-19-2004, 07:03 AM

Quote:

Originally Posted by d3nnis

so how do i restrict to certain file types only?

This needs some recoding work. Will be added in the next version.

Cheers,

subu1 · #20 05-19-2004, 11:05 AM

klasse super und eingebaut, es sei noch zu erw?hnen dem Ordner die 777 zu geben

Pseudomizer · #21 05-20-2004, 02:47 PM

Hi @LL,

this version is now obsolete. I have just posted the next version for this upload hack. You can find it here.

This version will no longer be supported !!!

Cheers,

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.06719 seconds Memory Usage 2,311KB Queries Executed 25 (?)
More Information
Template Usage: (1)SHOWTHREAD (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (1)ad_showthread_beforeqr (4)bbcode_php (5)bbcode_quote (1)footer (1)forumjump (1)forumrules (1)gobutton (1)header (1)headinclude (1)modsystem_post (1)navbar (6)navbar_link (120)option (1)pagenav (1)pagenav_curpage (1)pagenav_pagelink (11)post_thanks_box (11)post_thanks_button (1)post_thanks_javascript (1)post_thanks_navbar_search (11)post_thanks_postbit_info (10)postbit (11)postbit_onlinestatus (11)postbit_wrapper (1)spacer_close (1)spacer_open (1)tagbit_wrapper Phrase Groups Available: global inlinemod postbit posting reputationlevel showthread	Included Files: ./showthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/functions_bigthree.php ./includes/class_postbit.php ./includes/class_bbcode.php ./includes/functions_reputation.php ./includes/functions_post_thanks.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete showthread_start showthread_getinfo forumjump showthread_post_start showthread_query_postids showthread_query bbcode_fetch_tags bbcode_create showthread_postbit_create postbit_factory postbit_display_start post_thanks_function_post_thanks_off_start post_thanks_function_post_thanks_off_end post_thanks_function_fetch_thanks_start post_thanks_function_fetch_thanks_end post_thanks_function_thanked_already_start post_thanks_function_thanked_already_end fetch_musername postbit_imicons bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete postbit_display_complete post_thanks_function_can_thank_this_post_start pagenav_page pagenav_complete tag_fetchbit_complete forumrules navbits navbits_complete showthread_complete
Messages:

The Arcive of Official vBulletin Modifications Site.

It is not a VB3 engine, just a parsed copy!