[REQ][hide] hack incl post thank you "addon"

mal920 · Aug 13, 2008

HI did a search but cant find this
can you see if one of you can get this for me
thx.

Code:

 http://www.vbulletin.org/forum/showthread.php?t=130887

hamr8 · Aug 13, 2008

If you encounter any problems not seeing thanked posts hidden content after reload, try this code change

replace your fetch hide tag plugin by this code:

Code:

if ($this->registry->options['sid_hide_active'] == '1' AND stristr($post['message'],'[hide]')){
            global $vbulletin, $vboptions, $bbuserinfo, $db, $threadid, $hide_call, $postid;
            $bbuserinfo = $this->registry->userinfo;
            $post = $this->post;
            $hide_read = false;
            $hide_img_set = 0;
            $hide_replied = '';
            $hide_thanked = '';
            $hide_stop = 0;
            if (!empty($this->registry->options['sid_hide_notforum'])){
                $sid_hide_forum_stop = explode(",",$this->registry->options['sid_hide_notforum']);
                if(in_array($thread['forumid'],$sid_hide_forum_stop)){
                    $post['message'] = preg_replace('/\\[hide\\](.*)\\[\/hide\\]/siU', '\\1', $post['message']);
                    $hide_stop = 1;
                }
            }
            if($post['userid'] == $bbuserinfo['userid'] AND $hide_stop == 0){
                $post['message'] = preg_replace('/\\[hide\\](.*)\\[\/hide\\]/siU', '<fieldset><legend><span class="highlight">'.$vbphrase[sid_hide_post_own].'</span></legend>\\1</fieldset>', $post['message']);
                $hide_stop = 1;
            }
            if ($hide_stop != 1){
                if ($this->registry->options['sid_hide_showadmin'] AND $bbuserinfo[usergroupid]==6){
                    $hide_read = true;
                }elseif ($this->registry->options['sid_hide_showmod'] AND can_moderate($thread['forumid'])){
                    $hide_read = true;
                }elseif (!empty($this->registry->options['sid_hide_showusergroup'])){
                    $hide_groups_see = explode(",",$this->registry->options['sid_hide_showusergroup']);
                    if (in_array($bbuserinfo['usergroupid'], $hide_groups_see)){
                        $hide_read = true;
                    }
                }
                if ($vbulletin->options['sid_hide_showthanked'] AND $hide_read==false){
                    $hide_img_set = $hide_img_set + 1;
                    if($vbulletin->options['post_thanks_forum_first_all'] == 1){
                        $hide_thanked = $db->query_first("SELECT userid FROM ". TABLE_PREFIX ."post_thanks WHERE postid='$threadinfo[firstpostid]' AND userid='$bbuserinfo[userid]'");
                        if($hide_thanked !=''){
                            $hide_read = true;
                        }
                    } elseif (!empty($vbulletin->options['post_thanks_forum_first'])){
                        $post_thanks_only_first = explode("|",$vbulletin->options['post_thanks_forum_first']);
                        if (in_array($threadinfo['forumid'], $post_thanks_only_first)){
                            $hide_thanked = $db->query_first("SELECT userid FROM ". TABLE_PREFIX ."post_thanks WHERE postid='$threadinfo[firstpostid]' AND userid='$bbuserinfo[userid]'");
                            if($hide_thanked !=''){
                                $hide_read = true;
                            }
                        }else{
                            $hide_thanked = $db->query_first("SELECT userid FROM ". TABLE_PREFIX ."post_thanks WHERE postid='$post[postid]' AND userid='$bbuserinfo[userid]'");
                            if($hide_thanked !=''){
                                $hide_read = true;
                            }
                        }
                    } else{
                        $hide_thanked = $db->query_first("SELECT userid FROM ". TABLE_PREFIX ."post_thanks WHERE postid='$post[postid]' AND userid='$bbuserinfo[userid]'");
                        if($hide_thanked !=''){
                            $hide_read = true;
                        }
                    }
                }
                if ($this->registry->options['sid_hide_showposted'] AND $hide_read==false){
                    $hide_img_set = $hide_img_set + 2 ;
                    $hide_replied = $db->query("SELECT COUNT(postid) AS count FROM ". TABLE_PREFIX . "post WHERE userid='$bbuserinfo[userid]' AND visible = 1 AND threadid='$post[threadid]'");
                    $myreplies = 0;
                    if($db->num_rows($hide_replied)){
                        while ($h_post = $db->fetch_array($hide_replied)){
                            $myreplies += $h_post['count'];
                        }
                        $myreplies = vb_number_format($myreplies);
                    }
                    if($myreplies > 0){
                        $hide_read['userid'] = true;
                    }
                }
                if (!$hide_call){
                    $hide_call =$post['postid'];
                } else {
                    $hide_call .=",".$post['postid'];
                }
                if($hide_img_set == 3){
                    $hide_img = $vbphrase[sid_hide_img_pot];
                } elseif ($hide_img_set == 2){
                    $hide_img = $vbphrase[sid_hide_img_post];
                } elseif ($hide_img_set == 1){
                    $hide_img = $vbphrase[sid_hide_img_thank];
                } else {
                    $hide_img = $vbphrase[sid_hide_img_sorry];
                }
                if(!$bbuserinfo[userid]){
                    $hide_read = false;
                }
                if ($hide_read == true){
                    $post['message'] = preg_replace('/\\[hide\\](.*)\\[\/hide\\]/siU', '<fieldset><legend><span class="highlight">'.$vbphrase[sid_hide_post_show].'</span></legend>\\1</fieldset>', $post['message']);
                } else {
                    eval('$hide_fetch = "' . fetch_template('sid_hide_noaccess') . '";');
                    $post['message'] = preg_replace('/\\[hide\\](.*)\\[\/hide\\]/siU', $hide_fetch, $post['message']);
                }
            }
        }

mal920 · Aug 13, 2008

thx for this is there a bit more info on how to put on to site thx.

romie_24 · Aug 21, 2008

i have installed this hack and working fine but the problem is after saying thanks,i need to refresh that page then hidden contents showing.any possibility to solved this problem like after pressing thanks hidden contents will show?please help me and thanks for this nice hack.

arcken · Aug 22, 2008

Do anyone have this kind of hack,, without THANKS included!!???

pentest · Aug 24, 2008

WARNING:
this hack I found how to expoit this with SQL-injection

Is better you don't use this version 0.3.5 sids hide hack

So i didn't try if the others version is also vulnerable to sql-injection

for now is priv8 and you can't find in security forums this exploit

__mansonklan__ · Oct 7, 2008

I need the bb code to make it work , anyone have this i searched and cant find!

[REQ][hide] hack incl post thank you "addon"

mal920

New Member

hamr8

New Member

mal920

New Member

romie_24

New Member

arcken

New Member

pentest

New Member

mansonklan

New Member

[REQ][hide] hack incl post thank you "addon"

mal920

New Member

hamr8

New Member

mal920

New Member

romie_24

New Member

arcken

New Member

pentest

New Member

__mansonklan__

New Member

mansonklan