Facebook  Twitter 

SMFHacks.com

+-

SMFHacks.com

+- User Information

Welcome, Guest.
Please login or register.
 
 
 
Forgot your password?

+- Forum Stats

Members
Total Members: 4252
Latest: Jwatson_785
New This Month: 0
New This Week: 0
New Today: 0
Stats
Total Posts: 43228
Total Topics: 7514
Most Online Today: 113
Most Online Ever: 2482
(April 09, 2011, 07:02:45 pm)
Users Online
Members: 0
Guests: 73
Total: 73

Author Topic: Open Embed 0.4  (Read 3611 times)

0 Members and 1 Guest are viewing this topic.

Offline nend

  • Member
  • *
  • Posts: 14
    • View Profile
    • SIComm.us
Open Embed 0.4
« on: February 01, 2016, 11:44:48 pm »
Hi,

Still waiting @ SM for my mod to get approved, however I have been working on 0.4. Fixing some bugs in the oEmbed standard that Facebook and many others used.

In 0.4 I added a standard that has been established by Twitter and also fixing the oEmbed implementation I hope.

I figured out the issues that where going on that where causing some problems with 0.3. However while doing this I introduced a security vulnerability I need help getting rid of in the unreleased 0.4.

Only way I could figure out is hosting it on a different server, however that isn't viable for most forum operators.

In 0.3 JavaScript was used to add the code to the iframe so it wouldn't affect the page, however I had problems escaping the data for the JavaScript which was the main bug in the 0.3 version.

0.3 Supports Open Graph and Meta information standards as well as a buggy oEmbed implementation.

Offline SMFHacks

  • Administrator
  • Hero Member
  • *****
  • Posts: 16422
    • View Profile
Re: Open Embed 0.4
« Reply #1 on: February 01, 2016, 11:47:20 pm »
Thanks for the post here. Awesome mod. Also feel free to post it on the downloads section at http://www.smfhacks.com/hacks.html which will put it out to all the users too.
Get your Forum Ranked! at https://www.forumrankings.net - find out how your forum compares with others!

Like What I do? Support me at https://www.patreon.com/vbgamer45/

Offline nend

  • Member
  • *
  • Posts: 14
    • View Profile
    • SIComm.us
Re: Open Embed 0.4
« Reply #2 on: February 02, 2016, 12:10:06 am »
I will go ahead and do that with 0.4.

I am thinking the JavaScript may be vulnerable in 0.3 also with oEmbed. That standard is so flawed but Facebook and so many others use it.

I am thinking it would be easier either doing a allowed list than try to do some half baked protection.

Offline nend

  • Member
  • *
  • Posts: 14
    • View Profile
    • SIComm.us
Re: Open Embed 0.4
« Reply #3 on: February 04, 2016, 09:50:05 pm »
I submitted the mod however when I edited it in the downloads it became unapproved.

 

Related Topics

  Subject / Started by Replies Last post
9 Replies
7368 Views
Last post September 13, 2007, 08:44:23 pm
by ApplianceJunk
2 Replies
6222 Views
Last post November 04, 2008, 06:21:09 pm
by pioneer
0 Replies
2176 Views
Last post February 03, 2016, 07:50:45 pm
by nend
0 Replies
2236 Views
Last post February 08, 2016, 07:40:25 am
by nend
0 Replies
2366 Views
Last post February 28, 2016, 10:26:44 pm
by nend

+- Recent Topics

an idea for new mod (( content type with different display )) by SMFHacks
February 27, 2024, 01:36:27 pm

[Mod] RSS Feed Poster by SMFHacks
February 27, 2024, 11:57:18 am

find duplicate pictures by fvlog19
February 14, 2024, 02:22:40 pm

Error uploading video. by SMFHacks
February 08, 2024, 02:04:16 pm

Request for admin notification by davejo
February 06, 2024, 09:02:12 am

Gallery icon as last added image by fvlog19
February 01, 2024, 01:04:56 pm

User Gallery Feature: move / bulk move images by SMFHacks
January 30, 2024, 05:48:25 pm

In the future it may be for smf 2.1.x? by smithloo
January 30, 2024, 12:55:34 am

Clipboard image support for the editor by SMFHacks
January 29, 2024, 11:22:17 am

Release date? by SMFHacks
January 26, 2024, 02:00:45 pm

Powered by EzPortal