This should be nominated for deletion or moderation hence the reason i think it should be here where it will remain until Subdreamer starts listening and stops this bullshit sales of a CMS that will never come.
here's the post:
Quote:
Atska 08-31-2009 08:33 PM
Dear Subdreamer Team [Atska]
Dear Subdreamer Team.
I do not try to create a flaming thread (I hate those), but I will use this method to let you know the recent feeling I got about Subdreamer. (Why not on PM? Because the answer [If any] shall be of the public knowledge).
When I meet Subdreamer, it was by a pirated version of it (a community who was using it), so yea, after it i downloaded (pirated) and loved it. So i decided to buy a license (Same license i renew last year). Since the begning i was amazed with the plugins and discover the develop of it.
(Back in that time, 2 years ago)
1.- There was some plugins which served my needs
2.- There was a SDK for develop plugins and skins
3.- There was 'critical updates'
But, today... after 2 years...
1.- The plugins are the same (and most of them are not updated)
2.- The SDK is the same (it could be expanded with more detailed stuff)
3.- I jumped from 2.1 to 2.4 which contains some bug fixes and a 'skin allowed to save the plugin location' which was done in subdreamer.org (not by the subdreamer team [Correct me if im wrong])
4.- Subdreamer is based on PHP4 (which is already not supported by PHP), so many bugs can popup in time to time. Subdreamer is not ready for PHP 5.3 or 6. It doesnt use classes and methods (which many MANY people suggest for create a secure site) instead of use global functions.
5.- It doesnt have a well commented code (So, if u are newbie at this u will get a hard time)
6.- It doesnt use any coding/commenting standards (For example, ZendFramework Coding Formating Standard, or phpDoc commenting standard)
As far I see, we got a promise of a new version (who cares about numers [I, and Subdreamer team say]) in July. Tomorrow is October 1st (2 months later) and we only got a screenshot of the Administration panel which can be done (honeslty) with any design software, even with just some HTML and CSS mods. It doesnt show any difference from the old one (in functionality), it just show a pretty look with new colors and icons.
If the sofware was announced for release (and even with some promotions and 'inviting' people renew because of the excitment), i would think it was because the software was already in beta or ready for release. A delay of 2 months means it wasnt even ready at that time. So i may think it was some bad business and/or some abuse to the customers. While it could get fixed by 'We are sorry for the inconvenient, we are going to extend your license the months we have delayed the version'. Well, thats some really difference. But sadly, i havent seen the Subdreamer team taking any responasibility for their delay with solutions (not just apologies).
At the end of october my license is going to expire. And sadly i think i wont be able to get the new sofware. 'Renew then' most fans would say. But, after renewed my license 1 time (and I think it was an expensive one, compared to others in options, productivity, etc), i got not reelevant updates from Subdreamer in 2 years. So yea, my money could be named 'wasted'.
Why wasted? Because I would think im supporting the proyect, but if i support the proyect (like many of us) then I (and we i guess) expect more results.
'We have troubles with the team, or development, etc'. Honestly, if the proyect would be a 'hobby' or 'open source', Thats really something the customers NEED to respect. But this is a payed sofware, and customers pays for what is done and what is coming (thats why the license have an expiration time).
So, if i could resume all this drama in one word is 'disappointed'. And im not disappointed since last months. I was disappointed since last year but i put some hope and faith in the team so i renewed.
Lock, Delete or respond to this thread. But if it get deleted i hope you save it for youself, a disappointed customer is important to hear.
PS:
1.- English is not my primary language so excuse me the hard time you are going to get trying to understand it.
2.- I speak by myself. (I do not intend to speak by 'we' or 'customers'). Its merely my point of view.
3.- I try to be objective. Excuse me if i got this a bit subjective
4.- Thanks Subdreamer team, because you improved my skills when i tried to develop for your CMS time ago.
original link (if it keeps working) LINK
maandag 31 augustus 2009
zaterdag 22 augustus 2009
check this out LINK security issue SD. Took a while to get this fixed .. :S
Quote:
Background information:
This report applies to Subdreamer newest stable release, 2.5.3.2 hotfix#5.
Subdreamer is a content management system, which is written in PHP and uses MySQL as its database backend. Subdreamer's home page is http://www.subdreamer.com
Subdreamer can be integrated with different forum software, so that login authentication & authorization information can be used in the CMS too.
Vulnerability description:
There are vulnerabilities in two integration modules in Subdreamer. Both Invision Power Board 2 and phpBB3 integration modules have this vulnerability.
Both bulletin board systems store browser user-agent string in the sessions table used to track currently logged in users.
The user-agent string is passed as-is from HTTP headers without any validation / escaping. This opens up a possibility for SQL Injection attacks.
Possible exploits:
I haven't found a way to directly exploit this vulnerability to access the database.
However, an indirect DoS attack is possible.
The default setting for "Send Database Errors by Email" is "On" in Subdreamer. This means that every time an error occurs in SQL processing, an E-Mail is sent to the website administrator.
Now, inserting ' in the User-agent string causes an SQL error, and therefore causes an error message to be sent to the administrator. This means that the administrator E-Mail can be flooded with error messages via this vulnerability.
How to fix:
PHPBB3:
On line 701 of includes/usersystems/phpbb3.php, the original code looks like this:
$session['session_ip'], $session['session_browser'], $session['session_page'], $session['session_viewonline'],
The code should be replaced with:
$session['session_ip'], $DB->escape_string($session['session_browser']), $session['session_page'], $session['session_viewonline'],
IPB2:
On line 215 in includes/usersystems/ipb2.php, the original line looks like this:
$DB->escape_string($session['ip_address']), $session['browser'],
This has to be replaced by:
$DB->escape_string($session['ip_address']), $DB->escape_string($session['browser']),
Vendor reaction:
A notification about IPB2 vulnerability was sent to vendor on 2008-12-15, and they confirmed that they had received the report on 2008-12-16. The bug hasn't been fixed in the current version.
A notification about phpBB3 vulnerability was sent to vendor a few months ago. There was no reaction to the report. The bug still exists in the current released version.
Tero Kilkanen
End Quote
Quote:
Background information:
This report applies to Subdreamer newest stable release, 2.5.3.2 hotfix#5.
Subdreamer is a content management system, which is written in PHP and uses MySQL as its database backend. Subdreamer's home page is http://www.subdreamer.com
Subdreamer can be integrated with different forum software, so that login authentication & authorization information can be used in the CMS too.
Vulnerability description:
There are vulnerabilities in two integration modules in Subdreamer. Both Invision Power Board 2 and phpBB3 integration modules have this vulnerability.
Both bulletin board systems store browser user-agent string in the sessions table used to track currently logged in users.
The user-agent string is passed as-is from HTTP headers without any validation / escaping. This opens up a possibility for SQL Injection attacks.
Possible exploits:
I haven't found a way to directly exploit this vulnerability to access the database.
However, an indirect DoS attack is possible.
The default setting for "Send Database Errors by Email" is "On" in Subdreamer. This means that every time an error occurs in SQL processing, an E-Mail is sent to the website administrator.
Now, inserting ' in the User-agent string causes an SQL error, and therefore causes an error message to be sent to the administrator. This means that the administrator E-Mail can be flooded with error messages via this vulnerability.
How to fix:
PHPBB3:
On line 701 of includes/usersystems/phpbb3.php, the original code looks like this:
$session['session_ip'], $session['session_browser'], $session['session_page'], $session['session_viewonline'],
The code should be replaced with:
$session['session_ip'], $DB->escape_string($session['session_browser']), $session['session_page'], $session['session_viewonline'],
IPB2:
On line 215 in includes/usersystems/ipb2.php, the original line looks like this:
$DB->escape_string($session['ip_address']), $session['browser'],
This has to be replaced by:
$DB->escape_string($session['ip_address']), $DB->escape_string($session['browser']),
Vendor reaction:
A notification about IPB2 vulnerability was sent to vendor on 2008-12-15, and they confirmed that they had received the report on 2008-12-16. The bug hasn't been fixed in the current version.
A notification about phpBB3 vulnerability was sent to vendor a few months ago. There was no reaction to the report. The bug still exists in the current released version.
Tero Kilkanen
End Quote
woensdag 19 augustus 2009
Another great "why you should not buy subdreamer" thread
Posted here before it gets deleted (again)
quote:
Prostr 08-18-2009 09:33 AM
Payback Warranty
Hey Subdreamers,
Ive renewed my license to Subdreamer for another 12 months for some weeks ago, because I thought I would be soon for the next update to Subdreamer - but I was wrong..
Now ive decided to move my website into another platform, witch is blog based and so on.
Therefore I would like to hear, if there is any possibillity to have my money or some of it, payed back?
Because I really dont feel that I get anything out of my money as Ive spend on this, this time.
Thanks
blueracer66 08-18-2009 11:13 AM
Quote:
Originally Posted by Prostr (Post 87737)
Hey Subdreamers,
Ive renewed my license to Subdreamer for another 12 months for some weeks ago, because I thought I would be soon for the next update to Subdreamer - but I was wrong..
Now ive decided to move my website into another platform, witch is blog based and so on.
Therefore I would like to hear, if there is any possibillity to have my money or some of it, payed back?
Because I really dont feel that I get anything out of my money as Ive spend on this, this time.
Thanks
I'm sorry to tell you but they won't give it back... :(
Prostr 08-18-2009 12:16 PM
Hmm..................... I really think that suck, if that is what really is the reality for me.. Seriously!
Brent 08-18-2009 01:47 PM
The purchases are non refundable but the license warranty status would transfer if you ever sold your license.
Regards
amasilviama 08-18-2009 02:12 PM
Who would buy something that doesn't exist ?
Hello Brent,
You said that he can sell his license, at least that's what i understood. What i want to ask is this : who in the world would buy something that never comes to you ? This is the reason why i don't renew my license, because you are not serious enough. No plugins, no skins, no nothing... You basically give the platform and everybody for him/her/self... You launched a short series of plugins and skins and that's all... I find it normal that few people wants your products... I want to say that i own a web directory, on a CMS. It works like a charm, no problems, with all that you need. So, it must be another CMS that i, or other people, might consider. You said in July subdreamer 3 would be released...i was thinking that if the members's opinions were positive, i would renew my license and have subdreamer 3... it's august, almost to the end, and things are going slower than a snail.... You say that the purchases are not refundable, but not keeping your word to your customers is ok ? Is this your opinion ? What is the respect for your members and, finally, your customers ? .................................................. .................................................. .
blueracer66 08-18-2009 02:47 PM
Quote:
Originally Posted by amasilviama (Post 87741)
Hello Brent,
You said that he can sell his license, at least that's what i understood. What i want to ask is this : who in the world would buy something that never comes to you ? This is the reason why i don't renew my license, because you are not serious enough. No plugins, no skins, no nothing... You basically give the platform and everybody for him/her/self... You launched a short series of plugins and skins and that's all... I find it normal that few people wants your products... I want to say that i own a web directory, on a CMS. It works like a charm, no problems, with all that you need. So, it must be another CMS that i, or other people, might consider. You said in July subdreamer 3 would be released...i was thinking that if the members's opinions were positive, i would renew my license and have subdreamer 3... it's august, almost to the end, and things are going slower than a snail.... You say that the purchases are not refundable, but not keeping your word to your customers is ok ? Is this your opinion ? What is the respect for your members and, finally, your customers ? .................................................. .................................................. .
I loved it.-_-
Loneweb 08-18-2009 04:00 PM
Quote:
Originally Posted by blueracer66 (Post 87742)
I loved it.-_-
Me too... to bad the powers that be wont leave it.
edekk 08-18-2009 06:01 PM
Unfortunately have to agree. Many people like me bought / renew theire license when it was 50% price cut off, but we all did it because you told us that Subdreamer 3 is almost ready to release.... That was like 1,5 month ago.
CleanDesigndk 08-19-2009 01:16 AM
Please remember that cheating customers to buy a "non existing product" is against the law in the U.S and/or other countries.
And because of this, the law says that if you ( the customer ) buys a product and are unhappy with it, then you can ask for the money back in 14 days (this is the law in EU and i think its the same in the U.S)
Elvis 08-19-2009 01:49 AM
As I allready said before: I can't stand the feeling that I was a victim of a "drive-by-robbery". At least that's what the "50% off"-thing makes me feel ...
All times are GMT -5. The time now is 02:23 AM.
end quote
quote:
Prostr 08-18-2009 09:33 AM
Payback Warranty
Hey Subdreamers,
Ive renewed my license to Subdreamer for another 12 months for some weeks ago, because I thought I would be soon for the next update to Subdreamer - but I was wrong..
Now ive decided to move my website into another platform, witch is blog based and so on.
Therefore I would like to hear, if there is any possibillity to have my money or some of it, payed back?
Because I really dont feel that I get anything out of my money as Ive spend on this, this time.
Thanks
blueracer66 08-18-2009 11:13 AM
Quote:
Originally Posted by Prostr (Post 87737)
Hey Subdreamers,
Ive renewed my license to Subdreamer for another 12 months for some weeks ago, because I thought I would be soon for the next update to Subdreamer - but I was wrong..
Now ive decided to move my website into another platform, witch is blog based and so on.
Therefore I would like to hear, if there is any possibillity to have my money or some of it, payed back?
Because I really dont feel that I get anything out of my money as Ive spend on this, this time.
Thanks
I'm sorry to tell you but they won't give it back... :(
Prostr 08-18-2009 12:16 PM
Hmm..................... I really think that suck, if that is what really is the reality for me.. Seriously!
Brent 08-18-2009 01:47 PM
The purchases are non refundable but the license warranty status would transfer if you ever sold your license.
Regards
amasilviama 08-18-2009 02:12 PM
Who would buy something that doesn't exist ?
Hello Brent,
You said that he can sell his license, at least that's what i understood. What i want to ask is this : who in the world would buy something that never comes to you ? This is the reason why i don't renew my license, because you are not serious enough. No plugins, no skins, no nothing... You basically give the platform and everybody for him/her/self... You launched a short series of plugins and skins and that's all... I find it normal that few people wants your products... I want to say that i own a web directory, on a CMS. It works like a charm, no problems, with all that you need. So, it must be another CMS that i, or other people, might consider. You said in July subdreamer 3 would be released...i was thinking that if the members's opinions were positive, i would renew my license and have subdreamer 3... it's august, almost to the end, and things are going slower than a snail.... You say that the purchases are not refundable, but not keeping your word to your customers is ok ? Is this your opinion ? What is the respect for your members and, finally, your customers ? .................................................. .................................................. .
blueracer66 08-18-2009 02:47 PM
Quote:
Originally Posted by amasilviama (Post 87741)
Hello Brent,
You said that he can sell his license, at least that's what i understood. What i want to ask is this : who in the world would buy something that never comes to you ? This is the reason why i don't renew my license, because you are not serious enough. No plugins, no skins, no nothing... You basically give the platform and everybody for him/her/self... You launched a short series of plugins and skins and that's all... I find it normal that few people wants your products... I want to say that i own a web directory, on a CMS. It works like a charm, no problems, with all that you need. So, it must be another CMS that i, or other people, might consider. You said in July subdreamer 3 would be released...i was thinking that if the members's opinions were positive, i would renew my license and have subdreamer 3... it's august, almost to the end, and things are going slower than a snail.... You say that the purchases are not refundable, but not keeping your word to your customers is ok ? Is this your opinion ? What is the respect for your members and, finally, your customers ? .................................................. .................................................. .
I loved it.-_-
Loneweb 08-18-2009 04:00 PM
Quote:
Originally Posted by blueracer66 (Post 87742)
I loved it.-_-
Me too... to bad the powers that be wont leave it.
edekk 08-18-2009 06:01 PM
Unfortunately have to agree. Many people like me bought / renew theire license when it was 50% price cut off, but we all did it because you told us that Subdreamer 3 is almost ready to release.... That was like 1,5 month ago.
CleanDesigndk 08-19-2009 01:16 AM
Please remember that cheating customers to buy a "non existing product" is against the law in the U.S and/or other countries.
And because of this, the law says that if you ( the customer ) buys a product and are unhappy with it, then you can ask for the money back in 14 days (this is the law in EU and i think its the same in the U.S)
Elvis 08-19-2009 01:49 AM
As I allready said before: I can't stand the feeling that I was a victim of a "drive-by-robbery". At least that's what the "50% off"-thing makes me feel ...
All times are GMT -5. The time now is 02:23 AM.
end quote
Abonneren op:
Posts (Atom)
Posts
