Gabriel Harper’s Blog

I just announced an update for the phpLinkBid Advanced Link Statistics Add-on over in the phpLinkBid Forums. This is just a minor update to fix a bug with MSN indexed pages statistics. Crawling has it’s disadvantages compared to oh, say, and API!

ALS is also due for some more updates in the somewhat near future and a few small improvements will be ready for public beta soon as well. Feedback, feature requests and complaints should be directed to the ALS forums.

I already posted this announcement on the Scriptalicious Blog but I thought it was worth sharing here as well. For a few months now IPN errors have caused orders to sit in PENDING status until they can be manually processed (which can be, well, a process). The IPN handler has been updated and tested and is now processing PayPal Instant Payment Notifications (IPN’s) so orders will be activated instantly upon payment. Yay!

(more…)

Jelsoft just announced a new patch level release for vBulletin 3.7.1 and 3.6.10. vBulletin 3.7.1 PL2 and 3.6.10 PL2 are intended to address the deeper issues behind the XSS flaw first noted in vBulletin 3.7.1 PL1 and 3.6.10 PL1. According to the Jelsoft release annoucement 3.7.1 PL2 and 3.6.10 PL2 fixes an XSS flaw affecting the URL redirection system in vBulletin.

(more…)

Jelsoft has just announced a security update for vBulletin forum software that resolves a cross-site scripting (XSS) error. These are patch level fixes for the existing vBulletin 3.7.1 and 3.6.10 versions that focus on the XSS flaw.

According to the Jelsoft announcement:

…it is difficult to exploit the XSS flaw, and the potential for exposure and damage is limited…

However, the implications of the flaw are not entirely clear in the announcement. Has anybody out there had problems with this cross-site scripting error?