Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- require_once('./data_classes/server-data.php_data_classes-core.php.php');
- require_once('./data_classes/server-data.php_data_classes-session.php.php');
- if($$user_sql)
- {
- echo "Angriff abgeblockt";
- }
- if(isset($_GET['web-home-tag']) || isset($_GET['web-home-name']) || isset($_POST['web-home-name'])){
- if(isset($_GET['web-home-tag'])){
- $searchname = FilterText($_GET['web-home-tag']);
- } else if(isset($_GET['web-home-name'])){
- $searchname = FilterText($_GET['web-home-name']);
- } else if(isset($_POST['web-home-name'])){
- $searchname = FilterText($_POST['web-home-sname']);
- } else {
- $error = true;
- }
- $user_sql = mysql_query("SELECT * FROM users WHERE username = '".$searchname."' LIMIT 1") or die(mysql_error());
- $user_exists = mysql_num_rows($user_sql);
- if($user_exists == "1"){
- $error = false;
- $user_row = mysql_fetch_assoc($user_sql);
- $pagename = "$shortname Home: ".$user_row['username']."";
- } else { $error = true; }
- } else if(isset($_GET['tagid']) || isset($_GET['id']) || isset($_POST['id'])){
- if(isset($_GET['tagid'])){
- $searchid = FilterText($_GET['tagid']);
- } else if(isset($_GET['id'])){
- $searchid = FilterText($_GET['id']);
- } else if(isset($_POST['id'])){
- $searchid = FilterText($_POST['id']);
- } else {
- $error = true;
- }
- $user_sql = mysql_query("SELECT * FROM users WHERE id = '".$searchid."' LIMIT 1") or die(mysql_error());
- $user_exists = mysql_num_rows($user_sql);
- if($user_exists == "1"){
- $error = false;
- $user_row = mysql_fetch_assoc($user_sql);
- $pagename = "Home - ".$user_row['username']."";
- } else {
- $error = true;
- }
- } else { $error = true; }
- if(isset($_GET['do']) && FilterText($_GET['do']) == "edit" && $logged_in){
- if($user_row['username'] == $name){
- $edit_mode = true;
- }else{
- header("location:home?do=bounce&name=".$user_row['username'].""); exit;
- $edit_mode = false;
- }
- } else { $edit_mode = false; }
- if(!$error && !IsUserBanned($user_row['username'])){
- $body_id = "viewmode";
- if($edit_mode){
- $body_id = "editmode";
- }
- } else { $body_id = "home"; }
- if($searchname == $rawname && $logged_in){
- $pageid = "myprofile";
- } else {
- $pageid = "profile";
- }
- $bg_fetch = mysql_query("SELECT data FROM homes_stickers WHERE type = '4' AND userid = '".$user_row['id']."' AND groupid = '-1' LIMIT 1");
- $bg_exists = mysql_num_rows($bg_fetch);
- if($bg_exists < 1){ // if there's no background override for this user set it to the standard
- $bg = "b_bg_pattern_abstract2";
- } else {
- $bg = mysql_fetch_array($bg_fetch);
- $bg = "b_" . $bg[0];
- }
- if($searchname !== $name){
- mysql_query("INSERT INTO logs_visitedhomes (id_user,id_target,timestamp) VALUES ('".$my_id."','".$user_row['id']."','".time()."')");
- }
- $defaultskin_check = mysql_query("SELECT * FROM homes_stickers WHERE userid = '".$user_row['id']."' AND type = '2' AND subtype = '1'");
- if(mysql_num_rows($defaultskin_check) < 1){
- mysql_query("INSERT INTO homes_stickers (userid,type,data,subtype,x,y,z,skin) VALUES ('".$user_row['id']."','2','0','1','w','25','5','defaultskin')") or die(mysql_error());
- }
- mysql_fetch_assoc($get_friends = mysql_query("SELECT * FROM messenger_friendships WHERE user_two_id = '".$my_id."' and user_one_id = '".$user_row['id']."' or user_one_id = '".$my_id."' and user_two_id = '".$user_row['id']."'"));
- $friend = mysql_fetch_assoc($get_friends);
- if(!$error){
- if($user_row['visibility'] == "NOBODY" && $user_row['username'] == $name or $user_row['visibility'] == "FRIENDS" && $friend['user_two_id'] == $my_id or $user_row['visibility'] == "FRIENDS" && $friend['user_one_id'] == $my_id or $user_row['visibility'] == "EVERYONE" or $myrow['rank'] > 6){;
- }
- ?>
- <!DOCTYPE html>
- <html>
- <body>
- <?php include 'inc/head.php' ?>
- <?php
- $idd = mysql_real_escape_string($_GET['idd']);
- $get = mysql_query("SELECT * FROM users WHERE username = '".$searchname."' LIMIT 1") or die(mysql_error());
- if(mysql_num_rows($get) == 1)
- {
- $usr = mysql_fetch_object($get);
- }else
- {
- $exits = '0';
- }
- ?>
- <title><?php echo $sitename; ?> : <?php echo mysql_real_escape_string($usr->username); ?></title>
- <div class="container" >
- <div class="row">
- <?php if($exits == '0')
- {
- echo ' <div class="col-xs-12">
- <div class="alert alert-danger" role="alert">Oh, Gott! Dieser Account existiert nicht!</div>
- </div>';
- }else{
- ?>
- <div class="row">
- <div class="col-xs-4">
- <div class="panel panel-default">
- <div class="panel-heading"><h5>Dies ist das Profil von <?php echo mysql_real_escape_string($usr->username); ?>!</h5></div>
- <div class="panel-body">
- <img title="<?php echo mysql_real_escape_string($usr->username); ?>" src="http://www.habbo.nl/habbo-imaging/avatarimage?hb=img&figure=<?php echo mysql_real_escape_string($usr->look); ?>&direction=3&head_direction=3&size=m">
- <div style="margin-top:-98px;margin-left:80px;">
- <b>Motto:</b> <?php echo mysql_real_escape_string($usr->motto); ?><br />
- <b>Taler:</b> <?php echo number_format($usr->credits, 0, ',', '.'); ?><br />
- <b>Diamanten:</b> <?php echo number_format($usr->vip_points, 0, ',', '.'); ?><br />
- <b>Pixels:</b> <?php echo number_format($usr->activity_points, 0, ',', '.'); ?><br />
- <b>Erstellt am:</b> <?php echo date("d-m-Y",mysql_real_escape_string($usr->account_created)); ?><br />
- <b>Zuletzt online:</b> <?php echo date("d-m-Y",mysql_real_escape_string($usr->last_online)); ?><br />
- </div>
- </div>
- </div>
- </div>
- <div class="col-xs-8">
- <div class="panel panel-default">
- <div class="panel-heading"><h5>Räume, Freunde, Badges von <?php echo mysql_real_escape_string($usr->username); ?></h5></div>
- <script>
- $('#myTabs a').click(function (e) {
- e.preventDefault()
- $(this).tab('show')
- $('#myTabs a[href="#credits"]').tab('show') // Select tab by name
- })
- </script>
- <div class="panel-body">
- <ul class="nav nav-tabs" role="tablist">
- <li role="presentation" class="active"><a href="#rooms" aria-controls="rooms" role="tab" data-toggle="tab">Räume</a></li>
- <li role="presentation"><a href="#friends" aria-controls="friends" role="tab" data-toggle="tab">Freunde</a></li>
- <li role="presentation"><a href="#badges" aria-controls="badges" role="tab" data-toggle="tab">Badges</a></li>
- </ul>
- <!-- Tab panes -->
- <div class="tab-content">
- <div role="tabpanel" class="tab-pane fade in active" id="rooms">
- <table class="table table-striped">
- <tbody>
- <?php
- $rooms = mysql_query("SELECT * FROM rooms WHERE owner = '".mysql_real_escape_string($usr->username)."' ORDER BY users_now");
- while($room = mysql_fetch_assoc($rooms)){
- ?>
- <tr>
- <td><i class="fa fa-comment"></i> <?php echo $room['caption'] ?></td>
- <td><i class="fa fa-users"></i> <?php echo $room['users_now']; ?></td>
- </tr>
- <?php } ?>
- </tbody>
- </table>
- </div>
- <div role="tabpanel" class="tab-pane fade" id="friends">
- <table class="table table-striped">
- <tbody>
- <?php
- $query = mysql_query("SELECT * FROM messenger_friendships WHERE user_one_id = '".mysql_real_escape_string($usr->id)."'");
- $i = 0;
- while($friends = mysql_fetch_array($query))
- {
- $getfriend = mysql_query("SELECT * FROM users WHERE id ='".$friends['user_two_id']."' ");
- $i++;
- $friend = mysql_fetch_array($getfriend);
- $onlinef .= '
- <a href="/home/'.$friend['username'].'"><img src="http://www.habbo.nl/habbo-imaging/avatarimage?hb=img&figure='.$friend['look'].'&direction=3&head_direction=3&size=m" title="'.$friend['username'].'"></a>
- ';
- }
- echo $onlinef;
- ?>
- </tbody>
- </table>
- </div>
- <div role="tabpanel" class="tab-pane fade" id="groups">
- <table class="table table-striped">
- <tbody>
- <br />
- <div class="alert alert-danger" role="alert">Sorry, dit komt pas als je groepen kan kopen !</div>
- </tbody>
- </table>
- </div>
- <div role="tabpanel" class="tab-pane fade" id="badges">
- <table class="table table-striped">
- <tbody>
- <?php
- $get = mysql_query("SELECT * FROM user_badges WHERE user_id = '".mysql_real_escape_string($usr->id)."' LIMIT 50");
- while($badges = mysql_fetch_array($get))
- {
- $badgess .= '<img title="'.$badges['badge_id'].'" src="/c_images/album1584/'.$badges['badge_id'].'.gif" >';
- }
- echo $badgess;
- ?>
- </tbody>
- </table>
- </div>
- </div>
- </div>
- </div>
- </div>
- <?php } } ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement