The Arcive of Official vBulletin Modifications Site.

Gift Subscriptions · **Released**: 03-02-2010

This is a mod to let users buy a paid subscription for other members on the board. This addon is just updated from the user Jamoss. All credit goes to her, my team of people just updated it to work in 4.0.2.

Thanks zachd.

1. Modify 3 templates
2. modify 1 script (payments.php) -- PLEASE backup and save your old script for upgrade purposes.

ZERO <ibis> · #12 11-26-2010, 08:52 PM

What would I need to edit to support usernames with <> for example?

I think that htmlspecialchars() needs to be in here somewhere but I do not know where it needs to go.

Note that by adding in htmlspecialchars() it should also reduce the odds that this script can be exploited.

Fixed:

Replace:
$goo=$db->query_read_slave("SELECT userid from ". TABLE_PREFIX ."user where username='".$_POST['giftname']."'");

With:
$sqlname = htmlspecialchars($_POST['giftname']);
$goo=$db->query_read_slave("SELECT userid from ". TABLE_PREFIX ."user where username='".$sqlname."'");

Kyoshokid · #13 12-12-2010, 12:13 PM

Quote:

Originally Posted by ZERO <ibis>

What would I need to edit to support usernames with <> for example?

I think that htmlspecialchars() needs to be in here somewhere but I do not know where it needs to go.

Note that by adding in htmlspecialchars() it should also reduce the odds that this script can be exploited.

Fixed:

Replace:
$goo=$db->query_read_slave("SELECT userid from ". TABLE_PREFIX ."user where username='".$_POST['giftname']."'");

With:
$sqlname = htmlspecialchars($_POST['giftname']);
$goo=$db->query_read_slave("SELECT userid from ". TABLE_PREFIX ."user where username='".$sqlname."'");

@op I just wanted to say thanks for this, my users are very happy with this mod.

@Zero this helped as i have a lot of users with weird names.

Working on vb4.1.0

ZERO <ibis> · #14 02-19-2011, 08:44 PM

As I now actually use vb 4 (previously I was using vb3 despite posting how to fix the error) I wanted to post a fully patched version for people to use as a base install so they do not have problems. I use this exact file myself for instructions and if it stops working for me I will post back here with an update if I manage to fix it myself.

DM BoNeZ · #15 04-22-2012, 05:24 AM

this mod is great but i tested if there is a way to choose what usergroup cant get gifted becuase i dont want any staff to get gifted the subscribed usergroup so i will have to remove it.. till there is a better gifting mod

djfoxx · #16 05-26-2012, 12:54 AM

Dosen't seem to work on v4.2

Lilmikeishere · #17 11-22-2012, 08:21 PM

Any fixes for this?

Bluefin221 · #18 03-12-2014, 09:25 PM

payments.php does not exist or I cannot find it, where else should that segment of code go?

ZERO <ibis> · #19 08-14-2014, 04:45 PM

It does exist and is in the root directory for your vbb install. Also I am not sure if the one posted by the OP works or not but the one that I linked a few years back still works fine even on the latest version.

tanzeelniazi · #20 06-30-2015, 04:27 PM

its working in vb 4.2.0 or not ?
if use this mod then members paying subs like as gift ?

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.06098 seconds Memory Usage 2,320KB Queries Executed 25 (?)
More Information
Template Usage: (1)SHOWTHREAD (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (1)ad_showthread_beforeqr (1)bbcode_quote (1)footer (1)forumjump (1)forumrules (1)gobutton (1)header (1)headinclude (1)modsystem_post (1)navbar (4)navbar_link (120)option (1)pagenav (1)pagenav_curpage (1)pagenav_pagelink (10)post_thanks_box (2)post_thanks_box_bit (10)post_thanks_button (1)post_thanks_javascript (1)post_thanks_navbar_search (1)post_thanks_postbit (10)post_thanks_postbit_info (9)postbit (3)postbit_attachment (10)postbit_onlinestatus (10)postbit_wrapper (1)spacer_close (1)spacer_open (1)tagbit_wrapper Phrase Groups Available: global inlinemod postbit posting reputationlevel showthread	Included Files: ./showthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/functions_bigthree.php ./includes/class_postbit.php ./includes/class_bbcode.php ./includes/functions_reputation.php ./includes/functions_post_thanks.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete showthread_start showthread_getinfo forumjump showthread_post_start showthread_query_postids showthread_query bbcode_fetch_tags bbcode_create showthread_postbit_create postbit_factory postbit_display_start post_thanks_function_post_thanks_off_start post_thanks_function_post_thanks_off_end post_thanks_function_fetch_thanks_start fetch_musername post_thanks_function_fetch_thanks_end post_thanks_function_thanked_already_start post_thanks_function_thanked_already_end post_thanks_function_fetch_thanks_bit_start post_thanks_function_show_thanks_date_start post_thanks_function_show_thanks_date_end post_thanks_function_fetch_thanks_bit_end post_thanks_function_fetch_post_thanks_template_start post_thanks_function_fetch_post_thanks_template_end postbit_imicons bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete postbit_attachment postbit_display_complete post_thanks_function_can_thank_this_post_start pagenav_page pagenav_complete tag_fetchbit_complete forumrules navbits navbits_complete showthread_complete
Messages:

2 благодарности(ей) от:
Arkool, MichaelDance

The Arcive of Official vBulletin Modifications Site.

It is not a VB3 engine, just a parsed copy!