How Would I pull Information From vBulletin?

[EnIgMa1234]

[sql]$fields = $vbulletin->db->query_first("SELECT * FROM userfield
WHERE userid = '" . $userid . "');[/sql]

[Opserty]

Kirk/Enigma: Does fetch_userinfo() not fetch custom fields?

[Kirk Y]

I've never used it, you may be right.

[Pc 1203]

Quote:

Originally Posted by Kirk Y

Also, you should look into cleaning the variables you're using in queries - or you'll leave this page open to SQL injection.

What do you mean by "cleaning the variables"?

- Pc1203

[Kirk Y]

If Opserty is correct in you being able to simply use $userinfo['fieldX'] in place of the query I suggested, you don't need to worry about cleaning the $_GET superglobal.

[Pc 1203]

Yup, Opserty is correct. So I don't have to worrie about anything then, right?

- Pc1203

[Kirk Y]

No, as long as you're not querying anything more.

[Pc 1203]

Ok, and for future reference here is the source:

Code:

<?php
chdir('/path/to/your/forums');
require_once('/path/to/your/forums/global.php');

// Add the usual require stuff here
$wanted_userid = $_GET['u']; // The user id of the user you want the data from 
$userinfo = fetch_userinfo($wanted_userid);

$posts = $userinfo['posts'];
$username = $userinfo['username'];
$joindate = vbdate($vbulletin->options[dateformat], $userinfo['joindate']);
?>
<h1>
<?php print $username; ?>
</h1>
Posts: <?php print $posts; ?><br />
<?php print $username; ?> Joined On: <?php print $joindate; ?><p>
Custom Profile Field #1: <?php print $userinfo['field4']; ?><br />

**NOTE** Change "chdir('/path/to/your/forums');" to the full path to your forums directory and "require_once('/path/to/your/forums/global.php');" to the full path to the global.php file.

- Pc1203

[Dismounted]

PHP Code:

$wanted_userid = $_GET['u']; 


Should really be.

PHP Code:

$wanted_userid = intval($_GET['u']);