كود PHP:
<?php
ob_start();
session_start();
require_once("inc/config.php");
require_once("inc/functions.php");
Switch($_GET["changelang"])
{
case "en":
$_SESSION['language'] = "en";
break;
case "tr":
$_SESSION['language'] = "tr";
break;
}
Switch($language)
{
default:
include("lang/en.php");
$_SESSION["language"] = "en";
break;
case "en":
include("lang/en.php");
break;
case "tr":
include("lang/tr.php");
break;
}
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<?php
Switch($_GET["action"])
{
default:
$title2 = " | " . $lang["home"];
break;
case "register":
$title2 = " | " . $lang["register"];
break;
case "download":
$title2 = " | " . $lang["download"];
break;
case "login":
$title2 = " | " . $lang["login"];
break;
case "profile":
$title2 = " | " . $lang["profile"];
break;
case "changepw":
$title2 = " | " . $lang["changepw"];
break;
case "serverstats":
$title2 = " | " . $lang["serverstats"];
break;
case "showguild":
$title2 = " | " . $lang["showguild"];
break;
case "islemgecmisim":
$title2 = " | " . $lang["history"];
break;
}
echo $sitecharset;
?>
<title><?php echo $sitetitle; ?><?php echo $title2; ?></title>
<?php include_once("templates/home_head.tpl"); ?>
</head>
<body>
<script type="text/javascript" language="javascript">
$(document).ready(function (e) {
try {
$("#topbar select").msDropDown();
} catch (e) {
alert(e.message);
}
});
function kayit_kontrol(){
if($('#kuralonay').is(':checked'))
{
$('#kayitbuton').removeAttr('disabled');
}
else
{
$('#kayitbuton').attr("disabled", true);
}
}
</script>
<div id="content">
<div id="topbar">
<div class="center">
<ul id="topbarleft">
<li style="background:none;">
<form id="language" action="#">
<?php
Switch($_GET["action"])
{
default:
$dilsecenek = "?changelang=";
break;
case "register":
$dilsecenek = "index.php?action=register&changelang=";
break;
case "download":
$dilsecenek = "index.php?action=download&changelang=";
break;
case "login":
$dilsecenek = "index.php?action=login&changelang=";
break;
case "profile":
$dilsecenek = "index.php?action=profile&changelang=";
break;
case "serverstats":
$dilsecenek = "index.php?action=serverstats&changelang=";
break;
case "usercp":
$dilsecenek = "index.php?action=usercp&changelang=";
break;
case "changepw":
$dilsecenek = "index.php?action=changepw&changelang=";
break;
case "showguild":
$dilsecenek = "index.php?action=showguild&id=".$_GET["id"]."&changelang=";
break;
}
?>
<select id="langchange" onChange="location.href='<?php echo $dilsecenek; ?>'+value" style="width:154px;height:25px;">
<?php
reset($languages);
while (list($key, $val) = each($languages))
{
?>
<option value="<?php echo $key; ?>" title="images/flags/<?php echo $key; ?>.png" <?php if($language == $key) echo "SELECTED"; ?>><?php echo $val; ?></option>
<?php
}
?>
</select>
</form>
</li>
</ul>
</div>
</div>
</div>
<div align="center">
<noscript><center><?php echo $lang["javascript_error"]; ?></center></noscript>
<div class="header">
<div class="logo" style="padding-top: 45px;"><img src="images/logo.png" /></div>
</div>
<div class="main_menu">
<ul>
<li>
<?php include("templates/tabmenu.tpl"); ?>
</li>
</ul>
</div>
<div class="body" align="left">
<div class="slider" align="left">
<div id="slider">
<ul>
<?php include("templates/slider.tpl"); ?>
</ul>
</div>
<div class="slider-b-bar"></div>
</div>
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td class="main_side">
<?php
$action = @$_GET["action"];
Switch($action)
{
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
default: // Default Case start on here
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
connect_db("1");
$habergit = @mssql_query("SELECT TOP 10 * FROM dbo._Notice ORDER by ID DESC");
while($habergel = @mssql_fetch_array($habergit)){
?>
<div style="padding-top: 2px;" class="news">
<div class="news_row_holder">
<div class="news_row">
<div class="news_row_head" id="newstitle150">
<p>
<?php echo $habergel["Subject"]; ?>
</p>
<span id="news_row_head_date" style="float:right; font-size: 12px; font-weight: normal;">
<?php echo $habergel["EditDate"]; ?>
</span>
</div>
<div class="news_row_content">
<p>
<?php echo $habergel["Article"]; ?>
</p>
</div>
</div>
</div>
</div>
<?php
}
close_db_connection();
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
break; // Default case finish on here
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
case "register": // Register case start on here
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
if(!$_POST) //if there is no post send here
{
?>
<div style="padding-top: 4px;" class="news_row_holder">
<div class="news_row">
<div class="news_row_head" id="newstitle150">
<p>
<a href="#"><?php echo $sitetitle; ?> | <?php echo $lang["register"]; ?></a>
</p>
</div>
<div class="news_row_content">
<div class="membership">
<form method="post" action="">
<table class="tdef" align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody><tr>
<td style="padding-top: 16px;" class="text_default" width="40%">
<b><?php echo $lang["reg_username"]; ?>:</b>
</td>
<td>
<input class="text-form" name="username" maxlength="30" type="text">
</td>
</tr>
<tr>
<td class="text_default">
<b><?php echo $lang["reg_password"]; ?>:</b>
</td>
<td>
<input class="text-form" name="password" value="" maxlength="30" type="password">
</td>
</tr>
<tr>
<td class="text_default">
<b><?php echo $lang["reg_repassword"]; ?>:</b>
</td>
<td>
<input class="text-form" name="repassword" value="" maxlength="30" type="password">
</td>
</tr>
<tr>
<td class="text_default">
<b><?php echo $lang["reg_email"]; ?>:</b>
</td>
<td>
<input class="text-form" name="email" size="20" maxlength="50" type="text">
</td>
</tr>
<tr>
<td>
<img src="CaptchaCode.php?width=150&height=40&characters=8" alt="" />
</td>
<td>
<input class="text-form" size="7" name="security_code" maxlength="8" type="text">
</td>
</tr>
<tr>
<td colspan="3" class="text_default" align="center">
<textarea name="Rules" style="padding: 5px; width: 98%;" rows="15" readonly="readonly"><?php echo $lang["rules"]; ?></textarea>
<br /><br />
<input onclick="kayit_kontrol()" id="kuralonay" name="rules_verify" value="yes" type="checkbox"> <?php echo $lang["i_accept_all_rules"]; ?>
</td>
</tr>
<tr>
<td colspan="3" align="center">
<input id="kayitbuton" class="submit-form" disabled="disabled" value="<?php echo $lang["register"]; ?>" type="submit">
</td>
</tr>
</tbody></table>
</form>
</div>
</div>
</div>
</div>
<?php
}
else // if there is post register
{
?>
<div style="padding-top: 4px;" class="news_row_holder">
<div class="news_row">
<div class="news_row_head" id="newstitle150">
<p>
<a href="#"><?php echo $sitetitle; ?> | <?php echo $lang["register_process"]; ?></a>
</p>
</div>
<div class="news_row_content">
<div class="membership">
<?php
$username = anti_injection($_POST["username"]);
$password = anti_injection($_POST["password"]);
$repassword = anti_injection($_POST["repassword"]);
$encrypt = md5($password);
$email = anti_injection($_POST["email"]);
$gender = anti_injection($_POST["gender"]);
if(($_SESSION['security_code'] == $_POST['security_code']) && (!empty($_SESSION['security_code'])) ) {
$captcha = "1";
unset($_SESSION['security_code']);
}
else
{
$captcha = "2";
}
if($gender != "1" || $gender != "2")
{
$gender = "1";
}
// DB'ye bağlanalım
connect_db("1");
if($username == "" || $password == "" || $repassword == "" || $email == "" || $gender == "")
{
echo $lang["reg_error_00"];
}
else if(strlen($username) <= "3" || strlen($username) >= "21")
{
echo $lang["reg_error_01"];
}
else if($password != $repassword)
{
echo $lang["reg_error_02"];
}
else if(strlen($password) <= "3" || strlen($password) >= "21")
{
echo $lang["reg_error_07"];
}
else if(!filter_var($email,FILTER_VALIDATE_EMAIL))
{
echo $lang["reg_error_03"];
}
else if(@mssql_num_rows(@mssql_query("SELECT * FROM dbo.TB_User WHERE StrUserID = '$username'")) > "0")
{
echo $lang["reg_error_04"];
}
else if(@mssql_num_rows(@mssql_query("SELECT * FROM dbo.TB_User WHERE Email = '$email'")) > "0")
{
echo $lang["reg_error_05"];
}
else if($captcha != "1")
{
echo $lang["reg_error_06"];
}
else
{
$regip = GetIP();
if(@mssql_query("INSERT INTO dbo.TB_User (StrUserID,password,Email,reg_ip,sec_primary,sec_content) VALUES ('$username','$encrypt','$email','$regip','3','3')"))
{
echo $lang["reg_successfully"];
}
else
{
echo $lang["reg_failed"];
}
}
close_db_connection();
// Bağlantıyı kapatalım
?>
</div>
</div>
</div>
</div>
<?php
}
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
break; // Default case finish on here
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
case "download": // Register case start on here
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
?>
<div style="padding-top: 4px;" class="news_row_holder">
<div class="news_row">
<div class="news_row_head" id="newstitle150">
<p>
<a href="#"><?php echo $sitetitle; ?> | <?php echo $lang["download"]; ?></a>
</p>
</div>
<div class="news_row_content">
<div class="membership">
<div class="content_box">
<?php include("templates/downloads.tpl"); ?>
</div>
</div>
</div>
</div>
</div>
<?php
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
break; // Register case finish on here
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
case "login": // Login case start on here
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
if($girisdurum)
{
header("Location: index.php");
die;
}
else if(!$_POST)
{
header("Location: index.php");
die;
}
else
{
?>
<div style="padding-top: 4px;" class="news_row_holder">
<div class="news_row">
<div class="news_row_head" id="newstitle150">
<p>
<a href="#"><?php echo $sitetitle; ?> | <?php echo $lang["login_process"]; ?></a>
</p>
</div>
<div class="news_row_content">
<div class="membership">
<?php
$username = anti_injection($_POST["user"]);
$password = anti_injection($_POST["pass"]);
if($username == "" || $password == "")
{
echo $lang["login_error_00"];
}
else
{
$enpass = md5($password);
$newpass = sha1($enpass);
connect_db("1");
if(@mssql_num_rows(@mssql_query("SELECT * FROM dbo.TB_User WHERE StrUserID = '$username' AND password = '$enpass'")) > 0)
{
$cabukgel = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo.TB_User WHERE StrUserID = '$username' AND password = '$enpass'"));
$_SESSION['girisdurum'] = true;
$_SESSION['username'] = $username;
$_SESSION["userid"] = $cabukgel["JID"];
$_SESSION["rutbe"] = $cabukgel["GMrank"];
header("Location: index.php");
}
else
{
echo $lang["login_error_01"];
}
close_db_connection();
?>
</div>
</div>
</div>
</div>
<?php
}
}
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
break; // Login case finish on here
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
case "showguild":
$guildid = anti_injection($_GET["id"]);
if($guildid == "" or !is_numeric($guildid) or $guildid == "0")
{
header("Location: index.php");
die;
}
else
{
connect_db("2");
$guildbilgiogren = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo._Guild WHERE ID = '$guildid'"));
$guildadi = $guildbilgiogren["Name"];
$fortresskontrol = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo._SiegeFortress WHERE GuildID = '$guildid'"));
$fortressid = $fortresskontrol["FortressID"];
if($fortressid == "1")
{
$fortress = '<img src="images/fort-jangan.png" title="'.$lang["jangan_fortress_owner"].'" border="0" />';
}
else if($fortressid == "3")
{
$fortress = '<img src="images/fort-bandit.png" title="'.$lang["bandit_fortress_owner"].'" border="0" />';
}
else if($fortressid == "6")
{
$fortress = '<img src="images/fort-hotan.png" title="'.$lang["hotan_fortress_owner"].'" border="0" />';
}
}
$guildmasterbul = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo._GuildMember WHERE GuildID = '$guildid' AND Permission = '-1'"));
?>
<div style="padding-top: 2px;">
<div class="news_row_holder">
<div class="news_row">
<div class="news_row_head" id="newstitle150">
<p>
<?php echo $lang["showguild"]; ?> | <?php echo $guildadi; ?>
</p>
</div>
<div class="news_row_content">
<table class="tdef" align="center" border="0" cellpadding="5" cellspacing="5" width="100%">
<tr>
<td width="100%" align="center" colspan="4">
<font size="4px">
<?php echo $guildadi; if($fortress != "") { echo " " . $fortress; } ?>
</font>
</td>
</tr>
<tr>
<td width="100%" align="center" colspan="4">
<font size="2px">
<b><?php echo $lang["showguild_master"]; ?>:</b> <?php echo $guildmasterbul["CharName"]; ?>
</font>
</td>
</tr>
<tr align="center">
<td width="25%"><b><?php echo $lang["showguild_charname"]; ?></b></td>
<td width="25%"><b><?php echo $lang["showguild_charlevel"]; ?></b></td>
<td width="25%"><b><?php echo $lang["showguild_donatedgp"]; ?></b></td>
<td width="25%"><b><?php echo $lang["showguild_joindate"]; ?></b></td>
</tr>
<?php
$guilduyequery = @mssql_query("SELECT * FROM dbo._GuildMember WHERE GuildID = '$guildid' ORDER BY CharLevel DESC");
while($guilduyegetir = @mssql_fetch_array($guilduyequery))
{
?>
<tr align="center">
<td width="25%"><?php echo $guilduyegetir["CharName"]; ?></td>
<td width="25%"><?php echo $guilduyegetir["CharLevel"]; ?></td>
<td width="25%"><?php echo $guilduyegetir["GP_Donation"]; ?></td>
<td width="25%"><?php echo $guilduyegetir["JoinDate"]; ?></td>
</tr>
<?php
}
?>
</table>
</div>
</div>
</div>
</div>
<?php
close_db_connection();
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
break; // Showguild case finish on here
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
case "serverstats":
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
connect_db("1");
$oyuncusayisi = @mssql_num_rows(@mssql_query("SELECT * FROM dbo.TB_User"));
$onlinesayisi = @mssql_fetch_array(@mssql_query("SELECT TOP 1 * FROM dbo._ShardCurrentUser ORDER by nID DESC"));
if($onlinesayisi["nUserCount"] == "")
{
$onlinesayisi2 = "0";
}
else
{
$onlinesayisi2 = $onlinesayisi["nUserCount"];
}
close_db_connection();
connect_db("2");
$karaktersayisi = @mssql_num_rows(@mssql_query("SELECT * FROM dbo._Char WHERE CharID > '0'"));
$jangankalesi = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo._SiegeFortress WHERE FortressID = '1'"));
$jangansahipguildid = $jangankalesi["GuildID"];
if($jangansahipguildid == "" || $jangansahipguildid == "0")
{
$jangansahip = $lang["serverstats_nobody"];
}
else
{
$janganguildcek = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo._Guild WHERE ID = '$jangansahipguildid'"));
$jangansahip = $janganguildcek["Name"];
$janganorj = $janganguildcek["Name"];
if($jangansahip == "dummy")
{
$jangansahip = $lang["serverstats_nobody"];
}
}
$banditkalesi = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo._SiegeFortress WHERE FortressID = '6'"));
$banditsahipguildid = $banditkalesi["GuildID"];
if($banditsahipguildid == "" || $banditsahipguildid == "0")
{
$banditsahip = $lang["serverstats_nobody"];
}
else
{
$banditguildcek = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo._Guild WHERE ID = '$banditsahipguildid'"));
$banditsahip = $banditguildcek["Name"];
$banditorj = $banditguildcek["Name"];
if($banditsahip == "dummy")
{
$banditsahip = $lang["serverstats_nobody"];
}
}
$hotankalesi = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo._SiegeFortress WHERE FortressID = '3'"));
$hotansahipguildid = $hotankalesi["GuildID"];
if($hotansahipguildid == "" || $hotansahipguildid == "0")
{
$hotansahip = $lang["serverstats_nobody"];
}
else
{
$hotanguildcek = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo._Guild WHERE ID = '$hotansahipguildid'"));
$hotansahip = $hotanguildcek["Name"];
$hotanorj = $hotanguildcek["Name"];
if($hotansahip == "dummy")
{
$hotansahip = $lang["serverstats_nobody"];
}
}
close_db_connection();
?>
<div style="padding-top: 2px;">
<div class="news_row_holder">
<div class="news_row">
<div class="news_row_head" id="newstitle150">
<p>
<?php echo $lang["serverstats"]; ?>
</p>
</div>
<div class="news_row_content">
<table class="tdef" align="center" border="0" cellpadding="5" cellspacing="5" width="100%">
<tr>
<td colspan="2" width="50%"><?php echo $lang["serverstats_usercount"]; ?></td>
<td width="50%"><?php echo $oyuncusayisi; ?></td>
</tr>
<tr>
<td colspan="2" width="50%"><?php echo $lang["serverstats_onlinecount"]; ?></td>
<td width="50%"><?php echo $onlinesayisi2; ?></td>
</tr>
<tr>
<td colspan="2" width="50%"><?php echo $lang["serverstats_charcount"]; ?></td>
<td width="50%"><?php echo $karaktersayisi; ?></td>
</tr>
<tr>
<td width="5%"><img src="images/fort-jangan.png" alt="" /></td>
<td width="45%"><?php echo $lang["serverstats_jangancastle"]; ?></td>
<td width="45%">
<?php
if($janganorj == "dummy" or $janganorj == "")
{
echo $jangansahip;
}
else
{
?>
<a href="index.php?action=showguild&id=<?php echo $jangansahipguildid; ?>"><?php echo $jangansahip; ?></a>
<?php
}
?>
</td>
</tr>
<tr>
<td width="5%"><img src="images/fort-bandit.png" alt="" /></td>
<td width="45%"><?php echo $lang["serverstats_banditcastle"]; ?></td>
<td width="45%">
<?php
if($banditorj == "dummy" or $banditorj == "")
{
echo $banditsahip;
}
else
{
?>
<a href="index.php?action=showguild&id=<?php echo $banditsahipguildid; ?>"><?php echo $banditsahip; ?></a>
<?php
}
?>
</td>
</tr>
<tr>
<td width="5%"><img src="images/fort-hotan.png" alt="" border="0" /></td>
<td width="45%"><?php echo $lang["serverstats_hotancastle"]; ?></td>
<td width="45%">
<?php
if($hotanorj == "dummy" or $hotanorj == "")
{
echo $hotansahip;
}
else
{
?>
<a href="index.php?action=showguild&id=<?php echo $hotansahipguildid; ?>"><?php echo $hotansahip; ?></a>
<?php
}
?>
</td>
</tr>
</table>
</div>
</div>
</div>
</div>
<?php
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
break; // Server Stats case finish on here
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
case "logout": // Logout case start on here
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
if(!$girisdurum)
{
header("Location: index.php");
}
else
{
session_destroy();
header("Location: index.php");
}
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
break; // Logout case finish on here
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
case "profile":
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
?>
<?php
$id = anti_injection($_GET["id"]);
if($id == "" && !$girisdurum)
{
header("Location: index.php");
}
else if($id == "" && $girisdurum)
{
connect_db("1");
$profildbgel = @mssql_fetch_array(@mssql_query("SELECT * FROM TB_User WHERE JID = '$kullaniciid'"));
?>
<!-- -->
<div style="padding-top: 2px;" class="news">
<div class="news_row_holder">
<div class="news_row">
<div class="news_row_head" id="newstitle150">
<p>
<?php echo $lang["profile"]; ?>
</p>
</div>
<div class="news_row_content">
<table style="padding: 5px;" class="tdef" align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tr class="charoffline2">
<td width="50%"><?php echo $lang["profile_username"]; ?></td>
<td width="50%"><?php echo $profildbgel["StrUserID"]; ?></td>
</tr>
<tr class="charoffline1">
<td width="50%"><?php echo $lang["profile_password"]; ?></td>
<td width="50%"><a href="./index.php?action=changepw"><?php echo $lang["profile_changepassword"]; ?></a></td>
</tr>
<tr class="charoffline2">
<td width="50%"><?php echo $lang["profile_email"]; ?></td>
<td width="50%"><?php echo $profildbgel["Email"]; ?></td>
</tr>
<tr class="charoffline1">
<td width="50%"><?php echo $lang["profile_gender"]; ?></td>
<td width="50%">
<?php
if($profildbgel["sex"] == 1)
{
echo $lang["profile_gender_male"];
}
else if($profildbgel["sex"] == 2)
{
echo $lang["profile_gender_female"];
}
else
{
echo $lang["profile_gender_unknown"];
}
?>
</td>
</tr>
<tr class="top_text_default">
<td colspan="2"><center><?php echo $lang["profile_characters"]; ?></center></td>
</tr>
<?php
close_db_connection();
connect_db("2");
$charidquery = @mssql_query("SELECT * FROM dbo._User WHERE UserJID = '$kullaniciid'");
$charidnumrows = @mssql_num_rows($charidquery);
?>
<?php
while($charidgit = @mssql_fetch_array($charidquery))
{
$charid = $charidgit["CharID"];
$charbilgi = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo._Char WHERE CharID = '$charid'"));
$guildid = $charbilgi["GuildID"];
$guildbilgi = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo._Guild WHERE ID = '$guildid'"));
$guildismi = $guildbilgi["Name"];
if($guildismi == "dummy")
{
$guildismi = $lang["profile_no_guild"];
}
$academybilgi = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo._TrainingCampMember WHERE CharID = '$charid'"));
if(@mssql_num_rows(@mssql_query("SELECT * FROM dbo._TrainingCampMember WHERE CharID = '$charid'") == "0"))
{
$academy = false;
}
else
{
$academy = true;
}
$academyid = $academybilgi["CampID"];
$academycek = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo._TrainingCamp WHERE ID = '$academyid'"));
$academycomment = $academycek["CommentTitle"];
?>
<tr class="top_text_default">
<td colspan="2"><center><?php echo $charbilgi["CharName16"]; ?><br /><!-- <br /><img src="images/characters/<?php echo $charbilgi["RefObjID"]; ?>.GIF"> --></center></td>
</tr>
<tr class="charoffline1">
<td><center><?php echo $lang["profile_level"]; ?></center></td>
<td><center><?php echo $charbilgi["CurLevel"]; ?></center></td>
</tr>
<tr class="charoffline2">
<td><center><?php echo $lang["profile_str"]; ?></center></td>
<td><center><?php echo $charbilgi["Strength"]; ?></center></td>
</tr>
<tr class="charoffline1">
<td><center><?php echo $lang["profile_int"]; ?></center></td>
<td><center><?php echo $charbilgi["Intellect"]; ?></center></td>
</tr>
<tr class="charoffline2">
<td><center><?php echo $lang["profile_guild"]; ?></center></td>
<td><center><a href="index.php?action=showguild&id=<?php echo $guildid; ?>" title=""><?php echo $guildismi; ?></a></center></td>
</tr>
<tr class="charoffline1">
<td><center><?php echo $lang["profile_academy"]; ?></center></td>
<td><center>
<?php
if(!$academy)
{
echo $lang["profile_no_academy"];
}
else
{
echo $academyid . " - " . $academycomment;
}
?>
</center></td>
</tr>
<?php
}
?>
<tr class="top_text_default">
<td colspan="2"><center><?php echo $lang["profile_character_count"]; ?>: <?php echo $charidnumrows; ?></center></td>
</tr>
</table>
</div>
</div>
</div>
</div>
<!-- -->
<?php
close_db_connection();
}
else if(is_numeric($id))
{
connect_db("1");
$profildbquery = @mssql_query("SELECT * FROM TB_User WHERE JID = '$id'");
$profildbgel = @mssql_fetch_array($profildbquery);
if (@mssql_num_rows($profildbquery) == "0")
{
header("Location: index.php");
}
?>
<!-- -->
<div style="padding-top: 2px;" class="news">
<div class="news_row_holder">
<div class="news_row">
<div class="news_row_head" id="newstitle150">
<p>
<?php echo $lang["profile"]; ?>
</p>
</div>
<div class="news_row_content">
<table style="padding: 5px;" class="tdef" align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tr class="charoffline1">
<td width="50%"><?php echo $lang["profile_username"]; ?></td>
<td width="50%"><?php if($showusername) { echo $profildbgel["StrUserID"]; } else { echo $lang["profile_username_dontshow"]; } ?></td>
</tr>
<tr class="charoffline2">
<td width="50%"><?php echo $lang["profile_email"]; ?></td>
<td width="50%"><?php echo $profildbgel["Email"]; ?></td>
</tr>
<tr class="charoffline1">
<td width="50%"><?php echo $lang["profile_gender"]; ?></td>
<td width="50%">
<?php
if($profildbgel["sex"] == 1)
{
echo $lang["profile_gender_male"];
}
else if($profildbgel["sex"] == 2)
{
echo $lang["profile_gender_female"];
}
else
{
echo $lang["profile_gender_unknown"];
}
?>
</td>
</tr>
<tr class="top_text_default">
<td colspan="2"><center><?php echo $lang["profile_characters"]; ?></center></td>
</tr>
<?php
close_db_connection();
connect_db("2");
$charidquery = @mssql_query("SELECT * FROM dbo._User WHERE UserJID = '$id'");
$charidnumrows = @mssql_num_rows($charidquery);
?>
<?php
while($charidgit = @mssql_fetch_array($charidquery))
{
$charid = $charidgit["CharID"];
$charbilgi = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo._Char WHERE CharID = '$charid'"));
$guildid = $charbilgi["GuildID"];
$guildbilgi = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo._Guild WHERE ID = '$guildid'"));
$guildismi = $guildbilgi["Name"];
if($guildismi == "dummy")
{
$guildismi = $lang["profile_no_guild"];
}
$academybilgi = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo._TrainingCampMember WHERE CharID = '$charid'"));
if(@mssql_num_rows(@mssql_query("SELECT * FROM dbo._TrainingCampMember WHERE CharID = '$charid'") == "0"))
{
$academy = false;
}
else
{
$academy = true;
}
$academyid = $academybilgi["CampID"];
$academycek = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo._TrainingCamp WHERE ID = '$academyid'"));
$academycomment = $academycek["CommentTitle"];
?>
<tr class="top_text_default">
<td colspan="2"><center><?php echo $charbilgi["CharName16"]; ?><br /><!-- <br /><img src="images/characters/<?php echo $charbilgi["RefObjID"]; ?>.GIF"> --></center></td>
</tr>
<tr class="charoffline1">
<td><center><?php echo $lang["profile_level"]; ?></center></td>
<td><center><?php echo $charbilgi["CurLevel"]; ?></center></td>
</tr>
<tr class="charoffline2">
<td><center><?php echo $lang["profile_str"]; ?></center></td>
<td><center><?php echo $charbilgi["Strength"]; ?></center></td>
</tr>
<tr class="charoffline1">
<td><center><?php echo $lang["profile_int"]; ?></center></td>
<td><center><?php echo $charbilgi["Intellect"]; ?></center></td>
</tr>
<tr class="charoffline2">
<td><center><?php echo $lang["profile_guild"]; ?></center></td>
<td><center><?php echo $guildismi; ?></center></td>
</tr>
<tr class="charoffline1">
<td><center><?php echo $lang["profile_academy"]; ?></center></td>
<td><center>
<?php
if(!$academy)
{
echo $lang["profile_no_academy"];
}
else
{
echo $academyid . $academycomment;
}
?>
</center></td>
</tr>
<?php
}
?>
<tr class="top_text_default">
<td colspan="2"><center><?php echo $lang["profile_character_count"]; ?>: <?php echo $charidnumrows; ?></center></td>
</tr>
</table>
</div>
</div>
</div>
</div>
<!-- -->
<?php
close_db_connection();
}
else
{
header("Location: index.php");
}
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
break;
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
case "usercp":
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
if(!$girisdurum)
{
header("Location: index.php");
}
?>
<div style="padding-top: 2px;">
<div class="news_row_holder">
<div class="news_row">
<div class="news_row_head" id="newstitle150">
<p>
<?php echo $lang["usercp"]; ?>
</p>
</div>
<div class="news_row_content">
<?php
Switch($_GET["action2"])
{
default:
?>
<table width="100%" cellpadding="5" cellspacing="5" border="0">
<tr>
<td width="33%"><a href="index.php?action=changepw"><?php echo $lang["changepw"]; ?></a></td>
<td width="33%"><a href="index.php?action=usercp&action2=silkcode"><?php echo $lang["silkcode"]; ?></a></td>
<td width="33%"><a href="index.php?action=usercp&action2=islemgecmisim"><?php echo $lang["history"]; ?></a></td>
</tr>
</table>
<?php
break;
case "islemgecmisim":
connect_db("1");
?>
<table width="100%" cellpadding="5" cellspacing="5" border="0">
<tr>
<td width="70%"><b><?php echo $lang["history_action"]; ?></b></td>
<td width="30%"><b><?php echo $lang["history_date"]; ?></b></td>
</tr>
<?php
$ogren = @mssql_query("SELECT * FROM dbo.TB_IslemGecmisi WHERE yapanid = '$kullaniciid' AND tip = '1' ORDER BY id DESC");
while($bulduk = @mssql_fetch_array($ogren))
{
?>
<tr>
<td width="70%"><?php echo $bulduk["olay"]; ?></td>
<td width="30%"><?php echo $bulduk["tarih"]; ?></td>
</tr>
<?php
}
?>
</table>
<?php
close_db_connection();
break;
case "silkcode":
if($_POST)
{
$key = anti_injection($_POST["silkcode"]);
connect_db("1");
$keysorgulama = @mssql_num_rows(@mssql_query("SELECT * FROM dbo.TB_Keys WHERE kod = '$key'"));
$keybilgiogren = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo.TB_Keys WHERE kod = '$key'"));
$tarih = date("d.m.Y H:i:s");
$silkmiktar = $keybilgiogren["miktar"];
if($key == "" || strlen($key) != "32")
{
echo $lang["silkcode_empty"];
}
else if($keysorgulama == "0")
{
echo $lang["silkcode_wrong"];
}
else
{
if($keybilgiogren["durum"] == "1")
{
$silkontrol = @mssql_num_rows(@mssql_query("SELECT * FROM dbo.SK_Silk WHERE JID = '$kullaniciid'"));
if($silkontrol > 0)
{
$keybilgiguncelle = @mssql_query("UPDATE dbo.TB_Keys SET durum = '0', kullanan = '$kullanici' WHERE kod = '$key'");
$silkguncelle = @mssql_query("UPDATE dbo.SK_Silk SET silk_own = silk_own+$silkmiktar WHERE JID = '$kullaniciid'");
if($silkguncelle)
{
$olay = $lang["action_silkcode_1"] . $silkmiktar . $lang["action_silkcode_2"];
$islemekle = @mssql_query("INSERT INTO dbo.TB_IslemGecmisi (yapan, yapanid, tip, olay, tarih) VALUES ('$kullanici', '$kullaniciid', '1', '$olay', '$tarih')");
echo $lang["silkcode_success"];
}
else
{
echo $lang["silkcode_error"];
}
}
else
{
$keybilgiguncelle = @mssql_query("UPDATE dbo.TB_Keys SET durum = '0', kullanan = '$kullanici' WHERE kod = '$key'");
$silkekle = @mssql_query("INSERT INTO dbo.SK_Silk (JID, silk_own, silk_gift, silk_point) VALUES ('$kullaniciid', '$silkmiktar', '0', '0')");
if($silkekle)
{
$olay = $lang["action_silkcode_1"] . $silkmiktar . $lang["action_silkcode_2"];
$islemekle = @mssql_query("INSERT INTO dbo.TB_IslemGecmisi (yapan, yapanid, tip, olay, tarih) VALUES ('$kullanici', '$kullaniciid', '1', '$olay', '$tarih')");
echo $lang["silkcode_success"];
}
else
{
echo $lang["silkcode_error"];
}
}
}
else
{
echo $lang["silkcode_wrong"];
}
}
close_db_connection();
}
else
{
?>
<form action="" method="POST">
<table width="100%" cellpadding="5" cellspacing="5" border="0">
<tr>
<td width="50%"><?php echo $lang["silkcode_code"]; ?></td>
<td width="50%"><input type="text" name="silkcode" /></td>
</tr>
<tr>
<td colspan="2" align="right"><input type="submit" value="<?php echo $lang["silkcode_submit"]; ?>"></td>
</tr>
</table>
</form>
<?php
}
break;
}
?>
</div>
</div>
</div>
</div>
<?php
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
break;
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
case "changepw": // Change Passsword - Şifre değiştirme kısmı
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
if(!$girisdurum)
{
header("Location: index.php");
}
else
{
if($_POST) // if there is a post show here
{
?>
<div style="padding-top: 2px;" class="news">
<div class="news_row_holder">
<div class="news_row">
<div class="news_row_head" id="newstitle150">
<p>
<?php echo $lang["changepw"] . " | " . $kullanici; ?>
</p>
</div>
<div class="news_row_content">
<?php
connect_db("1");
$oldpw = anti_injection($_POST["oldpw"]);
$newpw = anti_injection($_POST["newpw"]);
$repeatpw = anti_injection($_POST["repeatpw"]);
$oldpwmd5 = md5($oldpw);
$newpwmd5 = md5($newpw);
$passwordcheck = @mssql_num_rows(@mssql_query("SELECT * FROM dbo.TB_User WHERE StrUserID = '$kullanici' AND password = '$oldpwmd5'"));
if($oldpw == "" || $newpw == "" || $repeatpw == "")
{
echo $lang["changepw_error_01"];
}
else if($newpw != $repeatpw)
{
echo $lang["changepw_error_02"];
}
else if(strlen($newpw) <= "5" || strlen($newpw) >= "21")
{
echo $lang["changepw_error_03"];
}
else if($passwordcheck == "0")
{
echo $lang["changepw_error_04"];
}
else
{
$changepassword = @mssql_query("UPDATE dbo.TB_User SET password = '$newpwmd5' WHERE StrUserID = '$kullanici'");
if($changepassword)
{
$tarih = date("d.m.Y H:i:s");
$olay = $lang["action_pwchange"];
$islemekle = @mssql_query("INSERT INTO dbo.TB_IslemGecmisi (yapan, yapanid, tip, olay, tarih) VALUES ('$kullanici', '$kullaniciid', '1', '$olay', '$tarih')");
echo $lang["changepw_error_05"];
header("Refresh: 2, index.php");
}
else
{
echo $lang["changepw_error_06"];
}
}
close_db_connection();
?>
</div>
</div>
</div>
</div>
<?php
}
else // if there is no post show here
{
?>
<div style="padding-top: 2px;" class="news">
<div class="news_row_holder">
<div class="news_row">
<div class="news_row_head" id="newstitle150">
<p>
<?php echo $lang["changepw"]; ?>
</p>
</div>
<div class="news_row_content">
<form action="" method="POST">
<table style="padding: 5px;" class="tdef" align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tr class="charoffline1">
<td width="50%"><?php echo $lang["changepw_oldpw"]; ?></td>
<td width="50%"><input name="oldpw" type="password" class="" /></td>
</tr>
<tr class="charoffline2">
<td width="50%"><?php echo $lang["changepw_newpw"]; ?></td>
<td width="50%"><input name="newpw" type="password" class="" /></td>
</tr>
<tr class="charoffline1">
<td width="50%"><?php echo $lang["changepw_repeatpw"]; ?></td>
<td width="50%"><input name="repeatpw" type="password" class="" /></td>
</tr>
<tr class="charoffline2">
<td colspan="2" align="right"><input type="submit" value="<?php echo $lang["changepw_submit"]; ?>" /></td>
</tr>
</table>
</form>
</div>
</div>
</div>
</div>
<?php
}
}
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
break; // Change Password case finish on here - Şifre değiştirme kısmı burada bitiyor
////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
} // Switch finish on here
?>
</td>
<td class="sidebar" align="right">
<div class="sidebar_box_holder">
<div class="sidebar_box">
<div class="sidebar_box_head">
<p><?php echo $lang["sidebar_usercp"]; ?></p>
</div>
<div class="sidebar_box_content">
<div class="membership">
<?php
if(!$girisdurum)
{
?>
<form action="index.php?action=login" method="post">
<input type="text" name="user" maxlength="30" value="<?php echo $lang["sidebar_username"]; ?>" onFocus="if(this.value=='<?php echo $lang["sidebar_username"]; ?>') this.value=''" onBlur="if(this.value=='') this.value='<?php echo $lang["sidebar_username"]; ?>'" />
<br />
<input type="password" name="pass" maxlength="30" value="" />
<br />
<input type="submit" value="<?php echo $lang["sidebar_login"]; ?>" />
<ul id="membership_links">
<li><a href="#"><?php echo $lang["sidebar_lostpw"]; ?></a></li>
</ul>
<div class="register_b"><a href="index.php?action=register"></a></div>
</form>
<?php
}
else
{
?>
<br />
<?php echo $lang["member_username"]; ?>: <?php echo $kullanici; ?>
<br />
<?php echo $lang["member_golden"]; ?>:
<?php
connect_db("1");
$goldenbul = @mssql_fetch_array(@mssql_query("SELECT * FROM dbo.SK_Silk WHERE JID = '$kullaniciid'"));
$golden1 = $goldenbul["silk_own"];
$golden2 = $goldenbul["silk_gif"];
$golden3 = $goldenbul["silk_point"];
$goldentoplam = $golden1 + $golden2 + $golden3;
echo $goldentoplam . " " . $lang["member_golden2"];
close_db_connection();
?>
</div>
<br />
<ul id="membership_loggedin">
<li><a href="index.php?action=profile" style="line-height: 40px;"><?php echo $lang["member_profile"]; ?></a></li>
<li><a href="index.php?action=usercp" style="line-height: 40px;"><?php echo $lang["member_usercp"]; ?></a></li>
</ul>
<ul id="membership_links">
<li><a href="index.php?action=logout"><?php echo $lang["member_logout"]; ?></a></li>
</ul>
<br />
<br />
<?php
}
?>
</div>
</div>
</div>
</div>
<div class="section">
<div class="feature">
<h4><?php echo $lang["sidebar_serverinfo"]; ?></h4>
<ul>
<li class="serverstatus"><a href="index.php?action=serverstats"><?php echo $lang["sidebar_serverstatus"]; ?></a></li>
<li class="ranking"><a href="#"><?php echo $lang["sidebar_ranking"]; ?></a></li>
<li class="fb"><a target="_blank" href="<?php echo $facebooklink; ?>"><?php echo $lang["sidebar_facebook"]; ?></a></li>
</ul>
</div>
</div>
</td>
</tr>
</table>
</div>
<div style="color: #cccccc;" id="footer">
<br />
<?php include("./templates/footer.tpl"); ?>
<br />
<br />
</div>
</div>
</body>
</html>
31-07-2013, 03:16 PM
المواضيع المتشابهه
.gif){kind=icon}
.gif){kind=icon}
العرض المتطور
