diff --git a/app/Http/Controllers/User/PlanController.php b/app/Http/Controllers/User/PlanController.php
index cda05b16..45a725ee 100755
--- a/app/Http/Controllers/User/PlanController.php
+++ b/app/Http/Controllers/User/PlanController.php
@@ -3,6 +3,7 @@
 namespace App\Http\Controllers\User;
 
 use App\Http\Controllers\Controller;
+use App\Models\User;
 use Illuminate\Http\Request;
 use App\Models\Plan;
 
@@ -10,12 +11,15 @@ class PlanController extends Controller
 {
     public function fetch(Request $request)
     {
+        $user = User::find($request->session()->get('id'));
         if ($request->input('id')) {
-            $plan = Plan::where('id', $request->input('id'))
-                ->first();
+            $plan = Plan::where('id', $request->input('id'))->first();
             if (!$plan) {
                 abort(500, __('Subscription plan does not exist'));
             }
+            if ((!$plan->show && !$plan->renew) || (!$plan->show && $user->plan_id !== $plan->id)) {
+                abort(500, __('Subscription plan does not exist'));
+            }
             return response([
                 'data' => $plan
             ]);