The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
Rules and User Agreement Hack Details »» | |||||||||||||||||||||||||
This modification currently contains a vulnerability. You are hereby advised to disable this modification until such time that the author provides a fix.
- vBulletin.org Staff Rules and User Agreement Hack------------------------------------- Hack Version: 1.1.5 vB-version: 3.5 Developer: WwW.UAEWEB.CoM Install-difficulty: Easy Port of: https://vborg.vbsupport.ru/showt...threadid=77666 Introduction: Rules and User Agreement Hack Is an agreement rules systems, that requires user to agree to each individual forum or/and pages rules within the whole board community ?if applicable? prior to permission them to different action (Viewing a Forum, Posting New Thread for the first time, Posting New Thread, Posting Reply). This will limit the forum breaches that occur often due to unawareness of the rules and agreement. This shall automate the manual procedures that are followed by users to read the ?rules and agreement? and will enforce to some extent the users to be aware of rules in place. Moreover this will eliminate the options of any denial by certain users of not being aware of ?rules and agreements? being in place for the desired forum. This can also be used as alerts, broadcasts, messages and tutorials? etc to certain individual, multi users or groups. Features:
- User's Additional Usergroups is Y. - User's User Id is X. - User's User Name is XXX. - User's first time posting a new thread in this forum. - User's has posts greater than x posts. - User's has posts less than x posts. - User's Join Date is After (yyyy-mm-dd). - User's Join Date is Befor (yyyy-mm-dd). - User's Last Activiy is After (yyyy-mm-dd). - User's Last Activiy is Befor (yyyy-mm-dd). - User's Last Post is After (yyyy-mm-dd). - User's Last Post is Befor (yyyy-mm-dd). * Can Use Conditionals.
See attachments. Hack Installation Details: 1 Product XML with 3 Plugins, and 45 Phrases New files for this Hack: 3 /admincp/rulesagreement.php /includes/cron/cron_ruleshack.php /includes/xml/cpnav_rulesagreement.xml New templates for this Hack: 2 ruleshack_rules ruleshack_rulesbit File-edits: 0 Template-edits: 1 MEMBERINFO New DB tables for this Hack: 1 ruleshack DB Tables modified for this Hack: 1 user How to Install: To install this hack, simply download the zip file, Unzip it to a directory on your computer and follow the steps from README.txt History: 1.0.0 Initial Version for vBulletin 3.5 1.1.0 Added Rule(s) from URL Fixed typo in Phrase 1.1.1 Fixed bug with new registration -> to upgrade, import product-rulesagreement.xml and set Allow Overwrite to yes 1.1.2 Fixed bug with Reseting Rules every 12 hours -> to upgrade, import product-rulesagreement.xml and set Allow Overwrite to yes 1.1.3 Fixed bug with with TABLE_PREFIX missing -> to upgrade, import product-rulesagreement.xml and set Allow Overwrite to yes 1.1.4 Fixed bug with with Template / memberinfo Agreed Rules List -> to upgrade, import product-rulesagreement.xml and set Allow Overwrite to yes 1.1.5 Fixed bug with this & this -> to upgrade, import product-rulesagreement.xml and set Allow Overwrite to yes PLEASE REMEMBER TO BACKUP BEFORE YOU BEGIN! If you like this hack, please be kind and click on Show Your Support
|
Comments |
#142
|
|||
|
|||
Quote:
|
#143
|
|||
|
|||
Hi peeps
I appear to have an uncached template for "forumrules" The only thing that i can think of thats caused this would be this hack perhaps? Can anyone advise please? |
#144
|
|||
|
|||
UAE if you ever manage to see this I've got a slight problem. I've noticed that some of the other guys have this issue too.
I wanted the Rules hack to only work for the Registered Users and not Guests. I wanted the Guests to freely surf the forums, but once registered, required to accept the Rules. Right now even a guest is required to accept the hack which is pretty bad for Crawlers and Bots. I might be missing something but until then I'll have to uninstall. Thanks. Update: Although I didnt find a way to solve the problem above, I did find a way around it. Instead of having it show up when "viewing" a thread I switched it to "new thread" and "new reply". Guests cant post replies or new threads on my forums anyways. Sometimes you just gotta beat the system |
#145
|
|||
|
|||
How should we fix this?
Instead of becoming part of the Forums and Moderators section, it started its own Forum and Moderators section so now we have two of them showing How/where do we rename it? |
#146
|
|||
|
|||
What are the two new templates called, and where (what section) can we find them?
|
#147
|
|||
|
|||
I've discovered one can force a SQL error by adding a single quote to an URL for a registration confirmation (e.g. http://gfxcontests.com/register.html?a=act&u=312&i=19120597'). Apparently there isn't an error checking to clean URLs of stray single quotes before passing them into the SQL string to look for rules that belong to said URL.
A full version of the error result is: Code:
Database error in vBulletin 3.5.3: Invalid SQL: SELECT * FROM tblruleshack WHERE (fileurl LIKE 'http://gfxcontests.com/register.html?a=act&u=312&i=19120597'' AND exactmatch = 1 ) OR (fileurl LIKE 'http://gfxcontests.com/register.html%' AND exactmatch = 0 ) AND active = 1 ORDER BY ruleid; MySQL Error : You have an error in your SQL syntax. Check the manual that corresponds to your MySQL server version for the right syntax to use near 'http://gfxcontests.com/register.html%' AND exactmatch = 0 ) AND Error Number : 1064 Date : Thursday, May 4th 2006 @ 08:30:57 PM Script : http://gfxcontests.com/register.html?a=act&u=312&i=19120597' The solution to this error is to find the following statements in the product-rulesagreement.xml file; Code:
$ruleneed = $vbulletin->db->query_first("SELECT * FROM " . TABLE_PREFIX . "ruleshack WHERE (fileurl LIKE '" . $urluri . "' AND exactmatch = 1 ) OR (fileurl LIKE '" . $scripturl1 . "%' AND exactmatch = 0 ) AND active = 1 ORDER BY ruleid"); Code:
$sql = "SELECT * from " . TABLE_PREFIX . "ruleshack WHERE ( (forumid = $fid) OR (fileurl LIKE '" . $urluri . "' AND exactmatch = 1 ) OR (fileurl LIKE '" . $scripturl1 . "%' AND exactmatch = 0 ) OR (forumid IN ($parents)) ) AND (ruleid not in (" . $vbulletin->userinfo['agreedrule'] . ")) AND active = 1 ORDER BY ruleid"; Code:
$urluri = addslashes($urluri); $scripturl1 = addslashes($scripturl1); |
#148
|
|||
|
|||
Hi
Whoopsy, wrong hack |
#149
|
|||
|
|||
Is there any way to use this with paid subscriptions, so the user has to agree to my rules regarding cancellations, refunds, etc?
Thanks, Andrew |
#150
|
|||
|
|||
Quote:
|
#151
|
|||
|
|||
Quote:
|
Thread Tools | |
|
|
X vBulletin 3.8.12 by vBS Debug Information | |
---|---|
|
|
More Information | |
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|