UBB.Developers Forums UBB.classic V6.4 - 6.7 Modifications V6 Mod Ideas Looking for hack: "HTML in sig"

C'mon I know it exists, Plzz help me out here!

NO. THAT IS A SECURITY RISK and NOONE working for ubbdev should help you find it!!

why?? Why is this a security risk??

Isn't it up te me to decide if it's a risk or not???

Now plzz help me out here???

https://www.ubbdev.com/ubbcgi/ultimatebb.cgi?ubb=get_topic&f=8&t=001090

you have helped people for this question earlier!! Why won't you help again??

Or are you to lazy??

plzzz reply

I would also like this for my UBB but i have 6.04e and i know its a risk but i still want it

and if you wish to e-mail it to me so no one knows you did or whatever thats fine even if you lead me in the correct direction to do it myself i dont care and i dont care if its not a supported hack i STIL want to do it

ITS my UBB and why shouldnt i be able to choose what i do with it

if the knowledge is out there why will no one share it to those of use that want it

C'mon don't just ignore us plzzz

Do you even understand the dangers of having this? Someone could put a whole web page in their sig. Someone could put a redirect script in there and you would not even know it. Someone could even put a script in there that steals your cookies and your password to the board. That would be a really big security risk.

why cant they do that by using html in the main post body ,i hvae html in posts on at my ubb whats the difference

please explain it to me in more detail maybe i would change my mind if i had information
but hardly anyone wants to even go near one of these topics

and all i want it for is so that .swf flash movies can be used as sigs also if possible would there be a way to create a hack that only allows .swf format files in sigs,somewhat like the avatar hack that only alows .gif and .jpg??????

Same here

My Forum exist of people who i all know, abbuse of my forum with this option is something i don't have to fear.

Now cough out the hack plzzz




Tnx

Thajes

[ May 31, 2001 10:33 AM: Message edited by: Thajes ]

I agree. no one can tell you what to do with your board.


anyway

Here is my hack I just wrote.

much better hack.

I added a option in control panel to enable or disable HTML in sigs.

http://elym.tripod.com/ELYS_HTML_IN_SIGNATURE_WITH_CP_HACK.txt

like everyone said before.

it is SECURITY RISK !!!!

anyone can mess your ubb up with their tricks in their signatures. otherwise it is YOUR UBB and responsibilty.

Thanks Ely_m

just one question

does having html in sigs create a different security risk than having html in forums on?

if so why did no one sayanything about in being a different risk?

having HTML turned on in your forum have same risk as allowing html in user's signatures, but UBB 6.x have some coding that block some html tags like get cookies or iframe for HTML in the user's posts.

If you decides to remove those codes = BIG RISK and hacked board.

I think the owners of UBB should have control over what tags to allow instead of infopop corp.

Thanks another question if you will

does adding this hack of your delette thise things you are talking about?

and i love the hack but all i realy wanted it for was so that i COULD have small flash movies in my sigs because i am a small time flash maker

i tried have one but it would load correctly
what is that?

also i would be willing to work with you on making a SECURE flash in sigs hack alone not all html

the way in wich i was thinking would work the best is to add a feild box under the sig box that you can add the url of the flash to and have it only allow .swf files in it such as your uplaod hack but not actually having it uplaod it just only aloowing a url that ends with .swf

and also have a CP section where the admins can restrict the imbedinf of the size of the flash such as no bigger than 600x600 i know thas big but is jsut an example