Hello readers,

Java is in trouble as national level alerts have been issued by DHS (Department of Homeland Security) to turn Java off because it now presents dangerous hacking vulnerabilities to its users.

Additionally, Firefox has been automatically turning off Java plugins and marking them unsafe in the event the user tries to turn them back on. It is more than just a release or update issue, Java seems to have trouble staying on top of their threat matrix and is steadily losing ground in the race.

When testing the public upload feature of extGallery 1.11, the "plugin disabled" notice appeared, which turned out to be directly related to the dangerous Java plugin having been turned off. I am wondering why public gallery uploads for this module depend on Java when other upload features such as user uploaded Avatars in XOOPS uses PHP successfully.

I respect the Java warning as valid, and have disabled public upload capability as it cannot be used safely. There may be other modules with such a dependency, but I am not aware of them. Just wanted to get this out there.

Extgallery has also a public upload feature without Java. In admin you can choose for standard (without java) or extended (java).

Well shucks...
I located and changed the config, which looks like it changes the php file that is called.

Appears that Java is not the only one with an issue, but we will not mention any names here to avoid embarrassing the original submitter....


at least the Java alert still needed to be raised

Must have been in the last windows update as my jupload script has also stopped working.

I know about the "batch upload" feature but it isn't always useful or efficient.

Is there any way to set up multiple file uploads in "standard" type page?

Regards,
Marty.

Just wait for the coming Java update Cifug. Oracle is a big company and Java an important product, I'll bet with you they are sweating to fix current problems

Quote:
Oh ok cool

Will we have to update the applet or is the vulnerability in windows?