The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
#1
|
||||
|
||||
Flash Vulnerability (Flash Origin Policy Issue)
** exploitable flaw
After reading this or this I would like to talk about ways we can mitigate this. Looks like forums that allow uploads could be a huge target. Is this something that the VB team can fix on the VB side? Other then disabling uploads what are some options to protect ourselves? Looks like a fix might be a long way off (facepalm)… --------------- Added [DATE]1258084262[/DATE] at [TIME]1258084262[/TIME] --------------- Seems like a good fix for this would be to allow VB to accept a 2nd domain that can be used to host all the Avatars, Signatures, Pictures etc (even if it resolves to the same IP address)... For now I shut off all uploads. |
|
|
X vBulletin 3.8.12 by vBS Debug Information | |
---|---|
|
|
More Information | |
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|