kurbot

Hey Guys, I'm sure this was noted, but i found a very basic HTML error on the slider / configureproductdomain.tpl template page. There seems to be some floating </td><td> tags that break the layout, only when users have domains in cart without hosting already. if you look at line 12: <input type="radio" name="domainoption" value="incart" id="selincart" /></td><td><label for="selincart">{$LANG.cartproductdomainuseincart}</label> Replace with: <input type="radio" name="domainoption" value="incart" id="selincart" /><label for="selincart">{$LANG.cartproductdomainuseincart}</label> just figured i would post the bug, so that you guys could be aware for future. thanks.

Good Morning guys, quick question for ya. Is it possbile when creating custom pages, to have the page redirect to SSL? like the order page does? without using htaccess? Let me know thanks

Hey Guys, question about direcisync.php cron file, it seems to run very hard and long.. 18151447 Seconds on average which is incredibly long for a script to run.. I'm curious if this is intentional based on the amount of work that the script needs to perform, or if it can be optimized? Would it be a file i could get my hands on to try to optimize it myself? Just seems to make my servers run and use excessive resources. Let me know your guys thoughts, or if i could be Private messaged the file so i could make a more streamlined version.. i would post it back t the community. Thanks

Hey Guys, I've been building a custom integrated system using the WHMCS API system which by the way is VERY nice and easy to work with. However i ran into a problem and Im not sure what the error is. When working with the Get Client Products API function, i get the following error I know my posts are working cause when printing them out they show up, plus the 'getclientdetails' works fine, seem the 'getclientproducts' doesn't exist. I'm going to show you the basic variables im calling without the API file that executes the curl request.. $data["action"] = "getclientsproducts"; $data["clientid"] = $_POST['clientID']; // Posting via a ajax backend post. Array ( [result] => error [message] => Command Not Found [] => ) can anyone else verify this error? or is there a typo in the action name? Let me know thanks

Hey guys, I was running some Customer Statement Reports, and i ran into a problem.. It seems when you apply credits to a clients account, and then apply them to an invoice the customer statement report doesn't reflect the balance correctly. It still states that that invoice may be owed for even if 100% credit was applied, which throws the balance out of wack.. Even using transactions to reflect the clients account credit it still doesn't factor back into the balance sheet. I was able to make some minor adjustments to the Report, to ADD into the balance the credit that was applied to the invoice on top of Normal Received Payments and debits Let me know if maybe I'm just doing something wrong otherwise. thanks

I'm setting up a new Hosting Package, and im curious on if Email Lists can be customizable? What i mean is i can use configurable options to allow users to customize there hosting account, but what i cant find is the Label/Name i need to use to allow for customizable Mailing Lists. I use cPanel/WHM to manage our hosting accounts. Allowed for custom configurable options that i know of. Disk Space MySQL Databases FTP Accounts Addon Domains Parked Domains Bandwidth Email Accounts Subdomains Features in Question Email Lists If anyone has a complete list of custom configurable hosting options please me know of if you have the proper label for the configurable option for mailing lists in cPanel.. Thanks

To keep this Breif, Im trying to make a 3 page Quotation with over 30 line items of information, however, when i try to Download PDF, The pdf requires multiple Pages, and the PDF creates 3 Pages, however all the Data Line Items dont show on page 2. In short, if you have a quotation with more line items than 1 page worth, anything after the first page wont show. Im attaching some Screenies to show what i mean. Any ideas or fixes??

Hey guys, Im not sure if htis is a bug, or if its just me.. But.. i just upgraded to the V4 version, and all my clients are receiving BLANK pdf attachments. Also if i go into the admin panel and try to manually download the pdf, it comes up blank to me too.. Maybe i have a folder permissioned incorrectly? or some file is out of date? Any help would be appreciated.. or what files are related to printing and downloading PDF invoices, i would try re-uploading those.. Thanks

how do you know its sending the admin email to the client?

Or i just saw in another thread.. if your just templating, you could utalize.. ?systpl=xxxxx at the end of your site..

If its of anyhelp.. We built a work around to mod_security.. While its unusual and not the best method to pass SQL information VIA url, being It would be an issue with most firewalls and its just bad practice in general.. My personal two cents on security and methods.. That all being said for those of you who use mod_security and want a solution.... add the following ruleset to your rules.. SecRule REMOTE_ADDR "^1\.2\.3\.4$" allow the 1 2 3 4 being the IP address you wish to bypass this.. Again.. use this type of setup at your discression.. its not a thouroughly tested method and my concern is that someone who could mask your ip will be able to URL f'up your database royally. Im hoping down the road, WHMCS will introduce a new way in mass emailing intead of passing SQL url variables.. Thanks guys, and good luck to those having this issue.

I thought the licenses only applied to the Admin Panel. I run dual front ends one for Development, one for Production with only 1 License. The way i configure the developmental site is by forcing links (http://yoursite/developmental or https://......) on the developmental site to go to the developmental site and utalize a template that is the same name.. This way you can navigate the new front end without having it auto redirect you to the SSL or Non SSL of your production instalation.. This has allowed me to make improvements to to a demo version prior to it going live. And when im ready to make it live, i do a massive Find/Replace of all full urls ( http://domain.com/dev ) and strip it out back to the relative.. and then i just move the template over.. Let me know if this was at all helpful..

yea i noticed that also..

Ok, The mod_secuirty ruleset thats causing mass email to fail after first batch is related to SQL injection. Here are some slightly modified examples of the rules that trigger the hault.. SecRule REQUEST_FILENAME|ARGS|ARGS_NAMES "(?:\b(??(?:elect\b(?:.{1,100}?\b(??:length|count|top)\b.{1,100}?\bfrom|from\b.{1,100}?\bwhere)|.*?\b(?(?:ump\b.*\bfrom|ata_type)|(?:to_(?:numbe|cha)|inst)r))|p_(??:addextendedpro|sqlexe)c|(?:oacreat|prepar)e|execute(?:sql)?|makewebtask)|ql_(?:longvarchar|variant))|xp_(?:reg(?:re(?:movemultistring|ad)|delete(?:value|key)|enum(?:value|key)s|addmultistring|write)|e(?:xecresultset|numdsn)|(?:terminat|dirtre)e|availablemedia|loginconfig|cmdshell|filelist|makecab|ntsec)|u(?:nion\b.{1,100}?\bselect|tl_(?:file|http))|group\b.*\bby\b.{1,100}?\bhaving|d(?:elete\b\W*?\bfrom|bms_java)|load\b\W*?\bdata\b.*\binfile|(?:n?varcha|tbcreato)r)\b|i(?:n(?:to\b\W*?\b(?:dump|out)file|sert\b\W*?\binto|ner\b\W*?\bjoin)\(?:f(?:\b\W*?\(\W*?\bbenchmark|null\b)|snull\b)\W*?\()|a(?:nd\b ?(?:\d{1,10}|[\'\"][^=]{1,10}[\'\"]) ?[=<>]+|utonomous_transaction\b)|o(?:r\b ?(?:\d{1,10}|[\'\"][^=]{1,10}[\'\"]) ?[=<>]+|pen(?:rowset|query)\b)|having\b ?(?:\d{1,10}|[\'\"][^=]{1,10}[\'\"]) ?[=<>]+|print\b\W*?\@\@|cast\b\W*?\()|(?:;\W*?\b(?:shutdown|drop)|\@\@version)\'(?(?:qloledb|a)|msdasql|dbo)')" \ "phase:2,capture,t:none,t:htmlEntityDecode,t:replaceComments,t:compressWhiteSpace,t:lowercase,ctl:auditLogParts=+E,log,auditlog,msg:'SQL Injection Attack',id:'950001',tag:'WEB_ATTACK/SQL_INJECTION',logdata:'%{TX.0}',severity:'2'" SecRule REQUEST_HEADERS|XML:/*|!REQUEST_HEADERS:Referer "(?:\b(??(?:elect\b(?:.{1,100}?\b(??:length|count|top)\b.{1,100}?\bfrom|from\b.{1,100}?\bwhere)|.*?\b(?(?:ump\b.*\bfrom|ata_type)|(?:to_(?:numbe|cha)|inst)r))|p_(??:addextendedpro|sqlexe)c|(?:oacreat|prepar)e|execute(?:sql)?|makewebtask)|ql_(?:longvarchar|variant))|xp_(?:reg(?:re(?:movemultistring|ad)|delete(?:value|key)|enum(?:value|key)s|addmultistring|write)|e(?:xecresultset|numdsn)|(?:terminat|dirtre)e|availablemedia|loginconfig|cmdshell|filelist|makecab|ntsec)|u(?:nion\b.{1,100}?\bselect|tl_(?:file|http))|group\b.*\bby\b.{1,100}?\bhaving|d(?:elete\b\W*?\bfrom|bms_java)|load\b\W*?\bdata\b.*\binfile|(?:n?varcha|tbcreato)r)\b|i(?:n(?:to\b\W*?\b(?:dump|out)file|sert\b\W*?\binto|ner\b\W*?\bjoin)\(?:f(?:\b\W*?\(\W*?\bbenchmark|null\b)|snull\b)\W*?\()|a(?:nd\b ?(?:\d{1,10}|[\'\"][^=]{1,10}[\'\"]) ?[=<>]+|utonomous_transaction\b)|o(?:r\b ?(?:\d{1,10}|[\'\"][^=]{1,10}[\'\"]) ?[=<>]+|pen(?:rowset|query)\b)|having\b ?(?:\d{1,10}|[\'\"][^=]{1,10}[\'\"]) ?[=<>]+|print\b\W*?\@\@|cast\b\W*?\()|(?:;\W*?\b(?:shutdown|drop)|\@\@version)\'(?(?:qloledb|a)|msdasql|dbo)')" \ "phase:2,capture,t:none,t:urlDecodeUni,t:htmlEntityDecode,t:replaceComments,t:compressWhiteSpace,t:lowercase,ctl:auditLogParts=+E,log,auditlog,msg:'SQL Injection Attack',id:'959001',tag:'WEB_ATTACK/SQL_INJECTION',logdata:'%{TX.0}',severity:'2'" Im working out a solution to not have to disable mod_security, but more so allowing an LOCAL IP range and server ip/name range match to bypass this block.. As soon as i have a new ruleset that allows for allowing specific users to bypass it in a safe manner i will post it. Thanks for the pointer sparky.. got me in the right direction to fix it.

ok i found the ruleset blocking it.. will post it in a way thats not a securiyt risk to all of us using Sec Mod

Ok that makes sense, and yes we run mod_security.. if you can finger print the ruleset or a rule i can whitelist let me know.. Ill look into this further my self also. its a pain not being able to mass mail clients especially when you have 800+ and you need to inform them of emergency services ;-) Thank You.

Is anyone else having trouble when trying to send out emails to all hosted clients? When i submit the message to be sent, it runs the first batch, however if i try to force the next batch, or wait the 30 seconds for the second batch to run, i get a 404 error... Only the first 30 clients get there emails and no one else .. I did notice thought that i get a URL Return that looks like this. ieframe.dll/http_406.htm#http://yourdomain.com/admin/sendmessage.php?action=send&massmailquery=SELECT+tblhosting.id%2Ctblhosting.userid%2Ctblhosting.domain%2Ctblclients.firstname%2Ctblclients.lastname%2Ctblclients.email+FROM+tblhosting+INNER+JOIN+tblclients+ON+tblclients.id%3Dtblhosting.userid+INNER+JOIN+tblproducts+ON+tblproducts.id%3Dtblhosting.packageid+WHERE+tblhosting.id%21%3D%27%27+AND+tblhosting.domainstatus%3D%27Active%27&step=1 I've tried re-uploading all the original files from whmcs.com to no avail. Is this known? or just me?

Yes, A customer can upgrade/downgrade there account and it simply modifies the features they change. However this is the problem im running into. im thinking ive configured the config option names incorrectly, becasue when a client upgrades it sets there account to unlimited features.. instead of the number they chose.. again its supposed to work the way you discribed.. and im still awaiting for help myself to find out what ive done wrong.

I am a user of the Configurable Hosting Package Addon which allows for the end user to update Diskspace, Bandwidth, Email accounts, etc. However im running into a bit of a problem and im not sure if its the way i configured the Configurable Item Names. What happens is, when i view the product/server for hosting, and i adjust the diskspace from lets say 1000MB to 2000MB and when i press Change Package on the action bar below it all executes and says "Module Command Success, Service Upgraded/Downgraded Successfully", however when i log into WHM to verify, it has set the users diskspace to unlimted. and features to unlimited. If someone could verify the "Available" configurable labels/names i should be using for Disk Space Bandwidth etc that will communicate with cPanel Correctly, that would be great.. If im barking up a tree that doesnt exist, also let me know, or if its known to NOT work with cpanel/WHM, also let me know. thanks

I had the same problem, and if remember correctly all you need o do is pass along the username and password in the postfields.. for example $whmcsurl= "http://www.yourdomain.com/whmcs/includes/api.php"; # URL to WHMCS API file $whmcsadminusername= "Admin"; # Admin username goes here $whmcsadminpassword= "demo"; # Admin password goes here $postfields["username"] = $whmcsadminusername; $postfields["password"] = md5($whmcsadminpassword); $postfields["action"] = "addclient"; $postfields["firstname"] = "Test"; $postfields["lastname"] = "User"; $postfields["companyname"] = "WHMCS"; $postfields["email"] = "demo@whmcs.com"; $postfields["address1"] = "123 Demo Street"; $postfields["city"] = "Demo"; $postfields["state"] = "Florida"; $postfields["postcode"] = "AB123"; $postfields["country"] = "US"; $postfields["phonenumber"] = "123456789"; $postfields["password2"] = "demo"; $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $whmcsurl); curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $postfields); curl_setopt($ch, CURLOPT_TIMEOUT, 30); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); $data = curl_exec($ch); curl_close($ch); $data = explode(";",$data); foreach ($data AS $temp) { $temp = explode("=",$temp); $results[$temp[0]] = $temp[1]; } if ($results["result"]=="success") { echo "User Generated Successfully<br /> <br /> "; } else { # An error occured echo "The following error occured: ".$results["message"]; }

Follow up question to this message though.. Im trying to get a database query on one of my custom pages which i have successfully performed, however im having a heck of a time getting the ojbects over to smarty for looping. if i print_r the array i get this. Array ( [0] => stdClass Object ( [id] => 28 [type] => hostingaccount [gid] => 21 [name] => Custom Hosting [description] => .......................... [1] => stdClass Object ( [id] => 29 [type] => hostingaccount [gid] => 21 [name] => Custom Hosting [description] => .......................... [2] => stdClass Object ( [id] => 30 [type] => hostingaccount [gid] => 21 [name] => Custom Hosting [description] => .......................... ETC My question is how do i get the Object class into a smarty section or foreach array/loop Any insight would be awsome..

Thanks for the reply, yes i wasnt aware of the wiki article.. and i found it literally 5 minutes after i posted.

N/m I found the Wiki on how to add pages.. Thanks

Im trying to add some new pages, and i would like to add them into the current system so that i can include the already built header and footer.. The problem im running into is im not sure, how to call the language file for labels or im not sure how to include the header and footer files so that they will display corrected with whmcs variables being passed in PHP.. Any insight would be very helpful, all im trying to do is keep the page structure consistant, and make it so that its easy to update in the future instead of having to redo multiple pages when the do the same thing.. Pages im trying to add are about us, employement opportunities, and some quick pages for whm cpanel and webmail login access.. I have all my pages already built in smarty, simply just trying to add the header and footer from the current WHMCS.. Let me know

I'm sorry.. im not sure where error_reporting is in WHMCS.. rather maybe i do... but never used it.. Ill turn it on if you could inform me of where its located.