The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
|
Asset Manager / Image Upload Fix to upload multiple files like the Flash uploader Details »» | ||||||||||||||||||||||||||||
Asset Manager / Image Upload Fix to upload multiple files like the Flash uploader
Developer Last Online: Aug 2023
2017 Update - Google Chrome and other browsers are starting to end support for Flash. As Flash gets deprecated and removed from browsers users trying to upload will see the Ajax Uploader instead. Without this add-on the Ajax Uploader will only allow uploading one image at a time. I've tested and this still works on VB 4.2.5 using PHP 5.6.x (I wasn't able to test PHP 7 but it should work on that as well.) Although it wasn't designed for this issue, it does work great to bring back multiple uploads in the post-Flash era.
--- (Old info from 2014...) If you weren't aware an exploit was found in the flash uploader (uploader.swf) file supplied with vBulletin 4.x. This file was part of the Yahoo YUI 2 package and Yahoo will not be fixing the exploit- Yahoo instructs anyone to remove the file since they no longer use Flash. Officially vBulletin says it is better to replace the file with an empty file of the same name. Official announcement here: http://www.vbulletin.com/forum/forum...n-uploader-swf The problem was however that if you remove the flash uploader the default Ajax uploader did not allow multiple files to be selected at one time (using CTRL+Click or Shift+Click to select multiple files) like the Flash uploader used to allow. However FranzBanz thankfully posted a template edit on vBulletin.com that uses the power of HTML 5 to restore the ability to select multiple files at once! The template edit is fairly easy, but I took it a step further and made this into a basic vBulletin modification. There are a few things you need to be aware of- 1) This does not work on IE9 or lower, these users must upload one at a time. IE10, Chrome, Firefox, Safari, Opera should all be OK. (See here: http://www.w3schools.com/tags/att_input_multiple.asp) Note: It has come to my attention this will not work in IE at all if IE10 or IE11 are running in IE9 Compatibility mode, which is required on vBulletin for the WYSIWYG editor to work in those versions. 2) There is no easy way to limit the number of files users can choose to upload. If they choose more files then your forum is set to allow they will get an error message when attempting to upload the extra files. Not a big deal but be aware of this limitation, maybe let your users know ahead of time. What I have done is added text that informs the user the max number of uploads allowed. See screenshots for details. 3) Requires vBulletin 4.1.10 or higher, one of the hooks needed doesn't exist in older versions. If you have 4.1.9 or older do the manual template edit linked above. 4) If you need to translate the one phrase used by this mod is a GLOBAL phrase: max_fileassets_bop5 There are no settings for this mod, just install and it is active. Note- You should go to Admin CP -> Settings -> Options -> Message Attachment Options and do the following:
------------------------------------------------------ Please "Mark as Installed" if you use this. Nominate MOTM if you LOVE it! Please direct any donations toward FranzBanz on vBulletin.com :up: Download Now
Screenshots
Show Your Support
|
Comments |
#22
|
||||
|
||||
GREAT NEWS!
http://www.vbulletin.com/forum/forum...57#post4015757 The vBulletin.com user alexm has managed to re-compile the uploader.swf file with this exploit (and another) fixed! He has uploaded a new .zip file with a new uploader.swf file to the post I linked to above. This file is a direct replacement for uploader.swf and you can upload it over your current uploader.swf file and go back to the flash uploader! Warning: alexm admits he is not a flash developer and there is no guarantee additional exploits don't exist- but it looks good to me. |
Благодарность от: | ||
Robru |
#23
|
||||
|
||||
For those of us that are lazy.. Here's the jist of it.
http://www.vbulletin.com/forum/forum...57#post4015757 Quote:
Code:
uploader.swf?allowedDomain=\%22}%29%29%29}catch%28e%29{alert%28document.domain%29;}// Quote:
|
#24
|
|||
|
|||
That's the problem: How many Flash exploits have there been over the past year alone? I applaud Alex for his efforts but he found another security vulnerability a day after he released his version. For some time, it appeared that Adobe was releasing a new version of Flash every month or so.
I think most people are going to be better off with a non-Flash solution. From alexm at http://www.vbulletin.com/forum/forum...81#post4015881 Quote:
|
Благодарность от: | ||
BirdOPrey5 |
#25
|
|||
|
|||
Thanks Joe.
|
Благодарность от: | ||
BirdOPrey5 |
#26
|
||||
|
||||
Alexm released it here on vBulletin.org as a mod now: https://vborg.vbsupport.ru/showthread.php?t=307008
Please be sure you nominate it MOTM if you like it, I did. :up: |
#27
|
|||
|
|||
Have been having issues with 4.2.2 PL1 and the patched SWF so I found this and gave it a go.
THANK YOU!!!! Flash just needs to be declared DEAD so we can all move on from it.* |
Благодарность от: | ||
BirdOPrey5 |
#28
|
|||
|
|||
Brilliant fix, I've been using it for many months now. We run an American and Classic car club, and we have many photos of events we have attended, could be up to 1000 photos to upload.
A few years ago, I remember just setting up there 1000 to upload and leaving it. However after about 50 the gap between uploads gets greater. Therefore slowing to almost a halt at 100. I dont think it is the change of this fix, but something else that has crept in. Has anyone else noticed this? I wonder if that is fixable. I've never tried SWF coding, my area is AVR assembler, ASP, VB or C++. |
#29
|
||||
|
||||
Quote:
|
#30
|
|||
|
|||
Quote:
I will carry on running tests, just wondered if anyone else noticed this. |
#31
|
|||
|
|||
Just to make sure, this solution is not based on flash? It is working like a charm, thank you so much!
|
Благодарность от: | ||
BirdOPrey5 |
|
|
X vBulletin 3.8.12 by vBS Debug Information | |
---|---|
|
|
More Information | |
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|