Reputation Given Page

[MrAnonymous]

Hey guys, this is my first release

Mod Name: Rep Given Page
Mod Author: Boxxy
Mod Website: http://gamingsenses.com
Mod Version: 1.1.2
Mod Mybb Compatibility: 1.4.X
Mod File Edits: None
Mod File Uploads: 1
Mod Description: View reputations a user has given out

Installation

1. Upload File

/repgiven.php

2. Edit the profile template

Member Templates -> member_profile_reputation

Before the

Code:

{$vote_link}

Put

Code:

[<a href="repgiven.php?uid={$memprofile['uid']}">Given</a>]

DEMO:
http://gamingsenses.com

Enjoy :]

Fixed the mysql vuln labrocca pointed out.

[The Elite]

Thank you for this, appreciated.

[labrocca]

Your script is easily exploitable with mysql injection. I suggest you remove it from your site.

[MrAnonymous]

Your script is easily exploitable with mysql injection. I suggest you remove it from your site.

Thanks for the heads up, ill fix it :]

Edit: Updated, i think i fixed it, mind checking for me though?

[labrocca]

I guess that's better but not the best method.

[MrAnonymous]

I guess that's better but not the best method.

I know, i could have done mysql_real_escape_string(stripslashes())

But then id have to connect to the db outside of mybb, and if you suggest a better method i'll gladly update :]

[labrocca]

http://us2.php.net/manual/en/function.intval.php

That's the function you'd be best using.

[MrAnonymous]

Alright, I'll use that in the 1.1.3 update :] Thanks labrocca.

[Eugene]

God damn it so this is exploitable? I was about to put this on my forum

[MrAnonymous]

God damn it so this is exploitable? I was about to put this on my forum

No, it isn't exploitable anymore, i fixed what he pointed out