NZyan

Two of my forums were abused by this security hole.
Since Tuesday (March 17th) 
a spammer has sent out about 1.4 million spam mails (1,400,000) which results in a direct loss of about 800$ and counting (payment to Sendgrid) and a damaged sender reputation for my forum Now I realize that
you are aware of this problem for weeks you have a patch ready since Tuesday and you didn't tell your paying customers a word We need to talk. I am not amused.
Andreas

Two of my forums were abused by this security hole.
Since Tuesday (March 17th) 
a spammer has sent out about 1.4 million spam mails (1,400,000) which results in a direct loss of about 800$ and counting (payment to Sendgrid) and a damaged sender reputation for my forum Now I realize that
you are aware of this problem for weeks you have a patch ready since Tuesday and you didn't tell your paying customers a word We need to talk. I am not amused.
Andreas

Two of my forums were abused by this security hole.
Since Tuesday (March 17th) 
a spammer has sent out about 1.4 million spam mails (1,400,000) which results in a direct loss of about 800$ and counting (payment to Sendgrid) and a damaged sender reputation for my forum Now I realize that
you are aware of this problem for weeks you have a patch ready since Tuesday and you didn't tell your paying customers a word We need to talk. I am not amused.
Andreas

Two of my forums were abused by this security hole.
Since Tuesday (March 17th) 
a spammer has sent out about 1.4 million spam mails (1,400,000) which results in a direct loss of about 800$ and counting (payment to Sendgrid) and a damaged sender reputation for my forum Now I realize that
you are aware of this problem for weeks you have a patch ready since Tuesday and you didn't tell your paying customers a word We need to talk. I am not amused.
Andreas

I too had this problem, over 389,000 emails... I was only notified by my host who in turn wasn’t very happy.
However we disabled this function and it has obviously fixed this issue. But, now we have to find out if our server has been blacklisted.

No, it's not like a post!! A post gets distributed to all users who are subscribed to that category, who can unsubscribe from such messages as they like.
The "share by email" feature on the other hand allows submission of random content to random email addresses.
I did send two very nice messages to support. If the best they can come up with is suggesting to disable the feature, I don't see how asking nicely for a third time is getting me anywhere.
(And just a hint: disabling the feature was nothing I couldn't think of myself before getting in touch with support.)
A feature that allows spamming random email addresses without giving them the option to unsubscribe violates CAN-SPAM, GDPR and probably evey other anti spam regulation in any other legislation too. And this is a feature currently provided by InvisionCommunity.

I don't really care whether it was done by a guest, or a forum member, or a hacked forum member. The system should neither allow replacing the share message with a random message, nor tolerate sending of hundreds of identical messages per minute. This is very simple common sense.

Hi,
This morning I woke up to find that tens of thousands of spam emails were sent through the "share by email" feature.
The support's brilliant suggestion was to disabling that feature.
So instead of taking the responsibility to fix or remove a easily abusible feature, it's the customer's responsibility to disable it.
Bravo!
If the content that is to be shared can be removed and replaced by a spam message, then the feature is clearly broken. If this happens tens of thousands of times, and the system doesn't catch that, then the system is broken too.

Invision Community Team: 
Thousands of emails are sent without control, the site email address is recorded in spam databases and your answer is "sorry, fix in 4.5"? You 've already tired us a little bit with blue message box about the new version, why don't you warn users with a red message box about this security hole?
 
 

Well, you have options depending upon your comfort level.
The simplest solution for most of our clients is to create a PNG image twice the size of your logo (as @Joy Rex just alluded to) and upload that as your logo in the theme. You may or may not need to tinker with some size settings or CSS to ensure the logo displays at the height you want.
If you're comfortable with CSS and HTML (and our theme manager), you could upload separate regular and 2x sized images using the Manage Theme Resources tool, and then manually reference them in the template correctly (using srcset and sizes attributes).
Or if you understand SVGs well enough, you could upload those and reference those in the template as well, just the same.
Basically you have two routes:
The easy route is to just upload a logo image using the built in uploader The longer route that gives you more control is to manually upload your files to the manage resources page, and then adjust the logo template accordingly

I'll make a note of this for future mod ideas. I believe there shouldn't really be an issues on modifying the images. I'd just need to check if there was a way to properly hook into the javascript to have it load those images on view.

I have an issue with the advert count per category:
For my category #1 („Fuji X Kameras“) the category box says 18 adverts https://www.fuji-x-forum.de/classifieds/ right column The header of the category list says 7 adverts https://www.fuji-x-forum.de/classifieds/category/1-fuji-x-kameras/ And if I count them manually it's only 6 adverts Visible here: https://www.fuji-x-forum.de/classifieds/
Setting is not to display Expired or Completed adverts.
Any idea?
I checked the code (function contentCount in Advert.php) but wasn't able to find the reason...
Andreas

OK, works now with Spakrpost API!
Not sure what it was - sender is now the forum itself but not the inviting member.
Is that correct?
Andreas