Blog Documentation Book a Demo
Please upgrade here. These earlier versions are no longer being updated and have security issues.
HackerOne users: Testing against this community violates our program's Terms of Service and will result in your bounty being denied.

Forum Settings -> KPoll Yields Blank Page

toolsmythetoolsmythe
in Vanilla 2.0 - 2.8

I'm getting a blank page when I go to Forum Settings -> KPoll.

I'm running v2.1.6 of Vanilla.

Is this module still a risk for XSS?

Thanks in advance for any help.

Tagged:

Comments

  • peregrineperegrine MVP
    edited January 2015

    Is this module still a risk for XSS?

    Yes,

    A clue is this. version of plugin has not been upgraded since 2011.
    comments about insecurity have been made in , 2013, 2014 and 2015.

    I thought @linc was going to delete this plugin because it was insecure.

    I may not provide the completed solution you might desire, but I do try to provide honest suggestions to help you solve your issue.

  • LincLinc Admin

    baleeted.

  • toolsmythetoolsmythe

    Yeah, I did the math after the post and came to the same conclusion.

    Too bad; looked like it had promise. The only other poll module does polls at the discussion level. Guess that'll have to do (sigh) ...

    Thanks.

  • peregrineperegrine MVP
    edited January 2015

    here is what you could do maybe....

    add the discussion poll plugin

    use the simple pages plugin put the poll on that page.

    add a message or pocket that directs people to that link.

    you could also retrieve info from the discussion poll and put it in a side panel for viewing results. and have users click a link to take the poll

    I may not provide the completed solution you might desire, but I do try to provide honest suggestions to help you solve your issue.

  • hgtonighthgtonight MVP

    @toolsmythe said:
    Yeah, I did the math after the post and came to the same conclusion.

    Too bad; looked like it had promise. The only other poll module does polls at the discussion level. Guess that'll have to do (sigh) ...

    Thanks.

    I have been meaning to rework the Discussion Polls plugin into not requiring a discussion. Then have a module for the panel that will display the poll. Maybe rework it as a Polls application and convert Discussion Polls into a bridge plugin.

    I'm not sure, but all I know is I look at the code and think "what was I thinking when I wrote this?"

    Since I don't have to support 2.0.x anymore, this would be a prime time to massively change functionality. Perhaps you could spur development with a PR or filing an issue on GitHub? https://github.com/hgtonight/Plugin-DiscussionPolls/issues.

    Search first

    Check out the Documentation! We are always looking for new content and pull requests.

    Click on insightful, awesome, and funny reactions to thank community volunteers for their valuable posts.

  • LincLinc Admin

    @hgtonight said:
    I look at the code and think "what was I thinking when I wrote this?"

    That just means the code is more than a year old. :)

  • AnonymooseAnonymoose ✭✭

    It would be nice to add a filter to hide those 2.1 plugins, they clutter up the addons directory list.

  • hgtonighthgtonight MVP

    @Anonymoose said:
    It would be nice to add a filter to hide those 2.1 plugins, they clutter up the addons directory list.

    2.0 maybe?

    The addons repo is PR ready here: https://github.com/vanilla/community

    Once my day job slows down, I hope to get something more interesting submitted.

    Search first

    Check out the Documentation! We are always looking for new content and pull requests.

    Click on insightful, awesome, and funny reactions to thank community volunteers for their valuable posts.

  • AnonymooseAnonymoose ✭✭
    edited January 2015

    @hgtonight said:
    2.0 maybe?

    Yes, I meant 2.0, or pre-2.1.

Sign In or Register to comment.