I decided to add the youtube tag for posts so that you can now post various videos, including (but not limited to) ROM hack demonstrations, emulation tutorials, and more!
The tag works as follows:
{youtube}video id{/youtube} (replace curly brackets with square ones, of course)
ack, well that's a pretty interesting exploit you found, but not exactly useful. Sadly, I can't think of anything that would counteract that though. ;/
ack, well that's a pretty interesting exploit you found, but not exactly useful. Sadly, I can't think of anything that would counteract that though. ;/
Yeah, it's apparently not dangerous, so long as there aren't any SWFs hosted on the youtube.com domain that do something like redirect to another site. (Fortunately, in html-off mode, vBulletin already converts quotation marks to """. Otherwise, some nasty js exploits might perhaps be possible by inserting a closing quotation mark and then an event handler.) I guess it should be possible to program the PHP to do a PCRE search for the string
=\"http:\/\/www\.youtube\.com\/v\/*/\.*.\"
and replace it with somthing like =\"\"
but it's probably not necessary-- YouTube doesn't host any problematic SWFs as far as I can tell -- so you probably needn't worry about it, since the harmless stuff that I did is about all that a forum user could do, as far as I can tell.