Go Back   vb.org Archive > Community Central > vBulletin.org Site Feedback
  #51  
Old 02-18-2007, 04:51 PM
AuroraStorm's Avatar
AuroraStorm AuroraStorm is offline
 
Join Date: Nov 2006
Location: ATHell
Posts: 332
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I don't hold anyone responsible. My entire site was destroyed but shite happens. It's an unfortunate thing and lessons are learned behind it. It could have been worse because I didn't delete anything and was able to rebuild my site quickly thanks to my buddy Willy so I'm thankful to have the foresight not to delete any of the images and skinz that I uploaded. I usually check this site often and I was surprised someone didn't alert to the problem sooner or maybe they did and I missed it. The hack was, next to the Arcade, the most popular thing on my board and it's missed and hopefully CMX will come back (and I'd be willing to break him off a donation) and get it back up and running...

Here's what I want to know and maybe Zeropage can answer. Can I still run the Ibproarcade without the vbux/vplaza?
Reply With Quote
  #52  
Old 02-18-2007, 05:22 PM
kall's Avatar
kall kall is offline
 
Join Date: Apr 2004
Location: New Zealand
Posts: 2,608
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Tommy12345 View Post
VBulliten.org needs to sent out an email to ALL members of this problem to prevent people from losing years of data accumulated due to no emergency data backup. :up:
This was done immediately upon learning of the issue.

All users who had clicked Install received the following email:

Quote:
Official Security Exploit Warning:

The staff has been notified of a potential XSS vulnerability in the vbBux / vbPlaza modification. We have confirmed the exploit along with additional exploits in varying degrees. This notification is to serve as an official warning - it is HIGHLY recommended that you disable/uninstall the modification until a fix is provided.

To review protocol for modifications with confirmed exploits found please visit:

https://vborg.vbsupport.ru/info.php?do=security

Best Regards,
vBulletin.org Staff
.. highlighting the importance of clicking Install, if you want to receive IMPORTANT updates.
Reply With Quote
  #53  
Old 02-18-2007, 07:16 PM
Tommy12345's Avatar
Tommy12345 Tommy12345 is offline
 
Join Date: Nov 2006
Posts: 36
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by kall View Post
This was done immediately upon learning of the issue.

All users who had clicked Install received the following email:



.. highlighting the importance of clicking Install, if you want to receive IMPORTANT updates.
Great job. I am going back to the arcade mod and click installed incase I have not done so.
Looks like this exploit is gaining momentum, I just saw a blank website that I was visiting, that site had the mod installed, I warn the webemaster to disable it but..
Reply With Quote
  #54  
Old 02-18-2007, 11:43 PM
Zachariah's Avatar
Zachariah Zachariah is offline
 
Join Date: Feb 2002
Location: Canoga Park, CA
Posts: 2,125
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by AuroraStorm View Post
Can I still run the Ibproarcade without the vbux/vplaza?
Yes.
It's an independent script with a vbux plugin.
Reply With Quote
  #55  
Old 03-10-2007, 01:48 AM
tuwebfacil tuwebfacil is offline
 
Join Date: Jan 2005
Posts: 56
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I think one of my sites was hacked, what I have to do?

I disabled the hack by now, but I am still hacked. I prefer to not say the type of hacking to avoid others users from being hacked.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 03:13 PM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.05369 seconds
  • Memory Usage 2,197KB
  • Queries Executed 11 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (4)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (2)pagenav_pagelink
  • (5)post_thanks_box
  • (5)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (5)post_thanks_postbit_info
  • (5)postbit
  • (5)postbit_onlinestatus
  • (5)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • pagenav_page
  • pagenav_complete
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete