Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- $acc_ount = addslashes($_SESSION['accno']);
- $pass_word = addslashes($_SESSION['password']);
- if(!isset($_GET['site']))
- {
- if(!isset($_SESSION['login']))
- {
- echo"<center><h2>Aby doładować konto musisz być zalogowany!</h2><br />Aby się zalogować <a href='account'>kliknij Tutaj</a></center>";
- } else {
- $offer = array(array());
- $login_pos = "307;254;9";
- $offer[0]['offer_type'] = "item";
- $offer[0]['item_name'] = "100cc";
- $offer[0]['desc'] = 'Trochę kasy na początek się przyda.';
- $offer[0]['image'] = "<img src='/images/smsimages/coins.gif'>";
- $offer[0]['action_id'] = 6055;
- $offer[0]['points'] = 215;
- $offer[1]['offer_type'] = "item";
- $offer[1]['item_name'] = "Warlord Sword";
- $offer[1]['desc'] = '(Atk:60 Def:40) Sword it is Hero Players';
- $offer[1]['image'] = "<img src='./images/smsimages/warlord.gif'>";
- $offer[1]['action_id'] = 10002;
- $offer[1]['points'] = 685;
- $offer[2]['offer_type'] = "item";
- $offer[2]['item_name'] = "Arbalest + Crystal Arrow";
- $offer[2]['desc'] = ', najlepsza kusza & strzała na D.B. World.';
- $offer[2]['image'] = "<img src='./images/smsimages/crystal_arrow.gif'>";
- $offer[2]['action_id'] = 10001;
- $offer[2]['points'] = 685;
- $offer[3]['offer_type'] = "item";
- $offer[3]['item_name'] = "Blessed Rod";
- $offer[3]['desc'] = ', najlepsza rozga na D.B. World.';
- $offer[3]['image'] = "<img src='./images/itemseq/2437.gif'>";
- $offer[3]['action_id'] = 10003;
- $offer[3]['points'] = 685;
- /*
- $offer[3]['offer_type'] = "item";
- $offer[3]['item_name'] = "Dragon Scale Helmet";
- $offer[3]['desc'] = ', najlepszy helmet na D.B. World - Earth.';
- $offer[3]['image'] = "<img src='./images/smsimages/2506.gif'>";
- $offer[3]['action_id'] = 666;
- $offer[3]['points'] = 1475;
- */
- $offer[4]['offer_type'] = "item";
- $offer[4]['item_name'] = "Manarune";
- $offer[4]['desc'] = 'Manaruna ,która się nie kończy. Dodaje tyle samo co zwykła manaruna.';
- $offer[4]['image'] = "<img src='/images/smsimages/healrune.gif'>";
- $offer[4]['action_id'] = 6053;
- $offer[4]['points'] = 685;
- $offer[5]['offer_type'] = "item";
- $offer[5]['item_name'] = "Addon Doll";
- $offer[5]['desc'] = 'Laleczka, którą można wymienić u NPC na Electry City.';
- $offer[5]['image'] = "<img src='/images/smsimages/addon_doll.gif'>";
- $offer[5]['action_id'] = 6089;
- $offer[5]['points'] = 685;
- $offer[6]['offer_type'] = "item";
- $offer[6]['item_name'] = "Vip Island";
- $offer[6]['desc'] = ', bez tej mapy nie znajdziesz specjalnej wyspy.';
- $offer[6]['image'] = "<img src='./images/itemseq/6118.gif'>";
- $offer[6]['action_id'] = 6149;
- $offer[6]['points'] = 685;
- $offer[7]['offer_type'] = "ban";
- $offer[7]['item_name'] = "Frag Remover";
- $offer[7]['desc'] = ', usuwanie RS-a nabytego przez fragi w grze.';
- $offer[7]['image'] = "<img src='./images/smsimages/frag.gif'>";
- $offer[7]['points'] = 215;
- $offer[8]['offer_type'] = "item";
- $offer[8]['item_name'] = "Exp Ring";
- $offer[8]['desc'] = ' Dzięki temu ringowi otrzymasz 50% więcej expa za zabicie potwora. Czas trwania to 60min.';
- $offer[8]['image'] = "<img src='/images/smsimages/exp_ring.gif'>";
- $offer[8]['action_id'] = 6054;
- $offer[8]['points'] = 215;
- $offer[9]['offer_type'] = "item";
- $offer[9]['item_name'] = "TP Runa";
- $offer[9]['desc'] = ' umozliwiajaca teleport do temple w kazdym momencie gry.';
- $offer[9]['image'] = "<img src='/images/smsimages/tprune.gif'>";
- $offer[9]['action_id'] = 10004;
- $offer[9]['points'] = 2000;
- $offer[10]['offer_type'] = "item";
- $offer[10]['item_name'] = "Best EQ Pack";
- $offer[10]['desc'] = ' Umozliwia on wylosowanie kilku rare items spośród wszystkich innych';
- $offer[10]['image'] = "<img src='/images/itemseq/8110.gif'>";
- $offer[10]['action_id'] = 6090;
- $offer[10]['points'] = 685;
- $offer[11]['offer_type'] = "namelock";
- $offer[11]['item_name'] = "Change Name";
- $offer[11]['desc'] = ' Zmiana nazwy postaci na inną';
- $offer[11]['image'] = "<img src='/images/smsimages/namelock.gif'>";
- $offer[11]['points'] = 1000;
- $offerId = addslashes($_POST['offer']);
- $haslo = addslashes($_POST['haslo']);
- require_once "./cfg/connect.php";
- $shop_db = @new mysqli($host, $db_user, $db_password, $db_name);
- if($shop_db->connect_errno!=0)
- {
- echo "Error:".$shop_db->connect_errno;
- }
- $SQL = $shop_db->query(sprintf("SELECT * FROM `accounts` WHERE `accno`='%s' AND password='%s'",
- mysqli_real_escape_string($shop_db,$acc_ount),
- mysqli_real_escape_string($shop_db,$pass_word)));
- $jankesi = $SQL->fetch_assoc();
- if($offer[$offerId]['offer_type'] == 'item'){
- $nick = addslashes($_POST['nick']);
- $ilee = addslashes($_POST['ilee']);
- $item_id = addslashes($offer[$offerId]['item_id']);
- $action_id = addslashes($offer[$offerId]['action_id']);
- $dbest = $shop_db->query(sprintf("SELECT * FROM `players` WHERE `name`='%s' AND account='%s'",
- mysqli_real_escape_string($shop_db,$nick),
- mysqli_real_escape_string($shop_db,$acc_ount)));
- $zasne = $shop_db->query(sprintf("SELECT * FROM `players` WHERE `name`='%s' AND account='%s'",
- mysqli_real_escape_string($shop_db,$nick),
- mysqli_real_escape_string($shop_db,$acc_ount)));
- $hoku = $dbest->num_rows;
- $ok = $zasne->fetch_assoc();
- if($hoku > 0){
- $joker = $shop_db->query(sprintf("SELECT * FROM `players` WHERE (account = '%s' AND name = '%s')",
- mysqli_real_escape_string($shop_db,$acc_ount),
- mysqli_real_escape_string($shop_db,$nick)));
- $player = $joker->fetch_array();
- $kurwa = $player['id'];
- $auc = addslashes($offer[$offerId]['points']);
- $oblicznik = addslashes($jankesi['premiumPoints']-$auc);
- $action = addslashes("shop_login; Kupiles ". $offer[$offerId]['item_name'] ." za ".$offer[$offerId]['points']." punktow.");
- $action = htmlentities($action, ENT_QUOTES, "UTF-8");
- if($haslo != $pass_word){
- $_SESSION['e_haslo'] = "Podane hasło jest niepoprawne! ";
- }else if($jankesi['premiumPoints'] >= $offer[$offerId]['points']){
- if (!isset($_POST['rules']))
- {
- $wszystko_git=false;
- $_SESSION['e_haslo']="Potwierdz ,że wylogowałeś się z postaci <font color='orange'>".$nick."</font>.";
- }else{
- if($ok['online'] == 1){
- $_SESSION['e_haslo'] = "Nie jesteś wylogowany na tej postaci.";
- }else{
- if($ok['level'] >= 8){
- $storage = $shop_db->query(sprintf("SELECT COUNT(*) FROM `playerstorage` WHERE `player` = '%s' AND `key` = '%s'",
- mysqli_real_escape_string($shop_db,$kurwa),
- mysqli_real_escape_string($shop_db,$action_id)));
- $qwerty = $storage->fetch_array()[0];
- if($qwerty > 0){
- for($x=1;$x<=$ilee;$x++){
- $values = addslashes(1);
- $shop_db->query(sprintf("UPDATE `playerstorage` SET `value` = `value` + 1 WHERE `player` = '%s' AND `key` = '%s'",
- mysqli_real_escape_string($shop_db,$kurwa),
- mysqli_real_escape_string($shop_db,$action_id)));
- $shop_db->query(sprintf("UPDATE `players` SET `pos` = '%s', `direction` = '0' WHERE `id` = '%s'",
- mysqli_real_escape_string($shop_db,$login_pos),
- mysqli_real_escape_string($shop_db,$kurwa)));
- $auc = $offer[$offerId]['points'];
- $shop_db->query(sprintf("UPDATE `accounts` SET `premiumPoints` = `premiumPoints`-'%s' WHERE accno='%s'",
- mysqli_real_escape_string($shop_db,$auc),
- mysqli_real_escape_string($shop_db,$acc_ount)));
- $shop_db->query(sprintf("INSERT INTO `store` (`id`, `kupujacy`, `secondpoints`, `firstpoints`, `time`, `action`) VALUES (NULL, '%s', '%s', '%s', '".time()."', '%s')",
- mysqli_real_escape_string($shop_db,$acc_ount),
- mysqli_real_escape_string($shop_db,$auc),
- mysqli_real_escape_string($shop_db,$oblicznik),
- mysqli_real_escape_string($shop_db,$action)));
- }
- $_SESSION['u_storage'] = "Gratulacje! Wybrany przedmiot został dodany do Twojego konta.";
- }else{
- $valuek = addslashes(1);
- $shop_db->query(sprintf("INSERT INTO `playerstorage` (`player`, `key`, `value`) VALUES ('%s', '%s', '%s')",
- mysqli_real_escape_string($shop_db,$kurwa),
- mysqli_real_escape_string($shop_db,$action_id),
- mysqli_real_escape_string($shop_db,$valuek)));
- $shop_db->query(sprintf("UPDATE `players` SET `pos` = '%s', `direction` = '0' WHERE `id` = '%s'",
- mysqli_real_escape_string($shop_db,$login_pos),
- mysqli_real_escape_string($shop_db,$kurwa)));
- $shop_db->query(sprintf("UPDATE `accounts` SET `premiumPoints` = `premiumPoints`-'%s' WHERE accno='%s'",
- mysqli_real_escape_string($shop_db,$auc),
- mysqli_real_escape_string($shop_db,$acc_ount)));
- $shop_db->query(sprintf("INSERT INTO `store` (`id`, `kupujacy`, `secondpoints`, `firstpoints`, `time`, `action`) VALUES (NULL, '%s', '%s', '%s', '".time()."', '%s')",
- mysqli_real_escape_string($shop_db,$acc_ount),
- mysqli_real_escape_string($shop_db,$auc),
- mysqli_real_escape_string($shop_db,$oblicznik),
- mysqli_real_escape_string($shop_db,$action)));
- $_SESSION['u_storage'] = "Gratulacje! Wybrany przedmiot został dodany do Twojego konta.";
- }
- }else{
- $_SESSION['e_haslo'] = "za maly level.";
- }
- }
- }
- }else{
- $_SESSION['e_haslo'] = "Nie posiadasz takiej ilości punktów.";
- }
- }else{
- echo 'Postac musi nalerzeć do ciebie.';
- }
- }
- else if($offer[$offerId]['offer_type'] == 'namelock')
- {
- if(($_POST['haslo'] == '' || $_POST['haslo'] != $pass_word))
- echo('<h2 style="color:#fff;">'.lang2("Błąd", "Error").' :</h2><h3 style="color:#fff;">'.lang2("Podane hasło jest nieprawidłowe", "Entered password is incorrect").'!</h3><a href="/shop">'.lang2("Powrót", "Return").'</a>');
- elseif(!isset($_POST['submit']))
- {
- $nick = addslashes($_POST['nick']);
- echo('<form action="/shop" method="POST">
- <input type="hidden" name="offer" value="'.$offerId.'">
- <input type="hidden" name="nick" value="'.$nick.'">
- <h2 style="color:#fff;" align="center">'.lang2("Zmień Nazwę Gracza", "Change Character Name").' :</h2>
- <table width="65%" cellspacing="1" cellpadding="5" border="0" align="center">
- <tr><td bgcolor="black" align="center"><b style="color:#fff;">'.lang2("Nazwa Gracza", "Character Name").' :</b></td><td bgcolor="black" align="center"><a href="index.php?id=info&act=players&char='.$nick.'">'.$nick.'</a></td></tr>
- <tr><td bgcolor="black" align="center"><b style="color:#fff;">'.lang2("Nowa Nazwa Gracza", "New Character Name").' :</b></td><td bgcolor="black" align="center"><input type="text" name="new" maxlength="20" required /></td></tr>
- <tr><td bgcolor="black" align="center"><b style="color:#fff;">'.lang2("Zmień", "Change").' :</b></td><td bgcolor="black" align="center"><input type="submit" name="submit" style="width: 40%; height: 25px" value="'.lang2("Zmień", "Change").'"></td></tr></table></center></br>
- <a href="index.php?id=account">'.lang2("Powrót", "Return").'</a>
- ');
- }
- else
- {
- $nick = addslashes($_POST['nick']);
- $new = addslashes($_POST['new']);
- $new = preg_replace('/\s+/', ' ', trim($new));
- $new = ucwords(strtolower($new));
- $SQL = "SELECT `id` FROM `players` WHERE `name` = '".mysql_real_escape_string($nick)."' AND `account` = '".$acc_ount."'";
- $SQL = mysql_query($SQL);
- if(preg_match("/^gm/i", $new)) $message = '<h2 style="color:#fff;">'.lang2("Błąd", "Error").' :</h2><h3 style="color:#fff;">'.lang2("Nie masz uprawnień bycia GM", "You are not allowed to be a GM").'!</h3><a href="/shop">'.lang2("Powrót", "Return").'</a>';
- else if(preg_match("/^gamemaster/i", $new)) $message = '<h2 style="color:#fff;">'.lang2("Błąd", "Error").' :</h2><h3 style="color:#fff;">'.lang2("Nie masz uprawnień bycia Game Master", "You are not allowed to be a Game Master").'!</h3><a href="/shop">'.lang2("Powrót", "Return").'</a>';
- else if(preg_match("/^god/i", $new)) $message = '<h2 style="color:#fff;">'.lang2("Błąd", "Error").' :</h2><h3 style="color:#fff;">'.lang2("Nie masz uprawnień bycia God", "You are not allowed to be a God").'!</h3><a href="/shop">'.lang2("Powrót", "Return").'</a>';
- else if(strlen($new) < 4) $message = '<h2 style="color:#fff;">'.lang2("Błąd", "Error").' :</h2><h3 style="color:#fff;">'.lang2("Nowa Nazwa jest zbyt krótka", "New name is too short").'.</h3><a href="index.php?id=shop_login">'.lang2("Powrót", "Return").'</a>';
- else if(strlen($new) > 20) $message = '<h2 style="color:#fff;">'.lang2("Błąd", "Error").' :</h2><h3 style="color:#fff;">'.lang2("Nowa Nazwa jest za długa", "New name is too long").'.</h3><a href="index.php?id=shop_login">'.lang2("Powrót", "Return").'</a>';
- else if(!preg_match("/^[a-zA-Z][a-zA-Z ]*$/", $new)) $message = '<h2 style="color:#fff;">'.lang2("Błąd", "Error").' :</h2><h3 style="color:#fff;">'.lang2("Nowa Nazwa zawiera niedozwolone znaki", "New name contains illegal characters").'.</h3><a href="index.php?id=shop_login">'.lang2("Powrót", "Return").'</a>';
- else
- {
- if (mysql_num_rows($SQL) > 0)
- {
- $player_id = mysql_result($SQL,0);
- $player2['account'] = mysql_result(mysql_query("SELECT `account` FROM `players` WHERE `id` = '".$player_id."' LIMIT 1"),0);
- $player['account'] = (int)$acc_ount;
- $account['points'] = mysql_result(mysql_query("SELECT `points` FROM `accounts` WHERE `accno` = '".$player['account']."' LIMIT 1"),0);
- $newplayer = mysql_result(mysql_query("SELECT `id` FROM `players` WHERE `name` = '".$new."' LIMIT 1"),0);
- $house = mysql_result(mysql_query("SELECT `houseid` FROM `houses` WHERE `owner` = '".$nick."' LIMIT 1"),0);
- if((int)$player2['account'] != $player['account'])
- $message = '<h2 style="color:#fff;">'.lang2("Błąd", "Error").' :</h2><h3 style="color:#fff;">'.lang2("Postać musi należeć do Ciebie", "Character must belong to you").'.</h3><a href="index.php?id=shop_login">'.lang2("Powrót", "Return").'</a>';
- elseif($newplayer)
- $message = '<h2 style="color:#fff;">'.lang2("Błąd", "Error").' :</h2><h3 style="color:#fff;">'.lang2("Nazwa Gracza jest już zajęta", "Player name is already taken.").'.</h3><a href="index.php?id=shop_login">'.lang2("Powrót", "Return").'</a>';
- elseif($house)
- $message = '<h2 style="color:#fff;">'.lang2("Błąd", "Error").' :</h2><h3 style="color:#fff;">'.lang2("Postać nie może posiadać domku", "Character cannot have a house.").'.</font></h3><a href="index.php?id=shop_login">'.lang2("Powrót", "Return").'</a>';
- elseif((int)$account['points'] < (int)$offer[$offerId]['points'])
- $message = '<h2 style="color:#fff;">'.lang2("Błąd", "Error").' :</h2><h3 style="color:#fff;">'.lang2("Nie masz wystarczającej ilości Punktów Premium", "You do not have enough Premium Points").'.</h3><a href="index.php?id=buypoints" style="color:gold">['.lang2("KUP PUNKTY", "BUY POINTS").']</a><a href="index.php?id=shop_login">'.lang2("Powrót", "Return").'</a>';
- else
- {
- $plog = mysql_result(mysql_query("SELECT `logged` FROM `players` WHERE `name` = '".mysql_real_escape_string($nick)."' AND `account` = '".$acc_ount."' LIMIT 1"),0);
- if((int)$plog == 1){
- $message = '<h2 style="color:#fff;">'.lang2("Błąd", "Error").' :</h2><h3 style="color:#fff;">'.lang2("Twoja postać musi być wylogowana", "This character must be logged off").'.</h3><a href="index.php?id=shop_login">'.lang2("Powrót", "Return").'</a>';
- } else {
- $SQL = mysql_query("UPDATE `players` SET `name` = '".$new."' WHERE `id` = '".$player_id."'");
- mysql_query("UPDATE `deathlist` SET `killer` = '".$new."' WHERE `killer` = '".$nick."'");
- if ($SQL) $message = '<h2 style="color:#fff;">'.lang2("Gratulacje", "Congratulations").' :</h2><h3 style="color:#fff;">'.lang2("Wybranej postaci została zmieniona Nazwa Gracza", "Chosen character player's name has been changed.").'.</h3><a href="index.php?id=shop_login">'.lang2("Powrót", "Return").'</a>';
- else $message = lang2("Błąd! Skontaktuj się z Supportem.", "Error! Contact with Support.");
- $account['points'] -= (int)$offer[$offerId]['points'];
- mysql_query("UPDATE `accounts` SET `points` = '".$account['points']."' WHERE `accno` = '".$player['account']."'");
- //$action = "shop_login;".lang2('Kupiłeś', 'You buy')." ".$offer[$offerId]['item_name']." ".lang2('za', 'for')." ".$offer[$offerId]['points']." ".lang2('punktów', 'points').".";
- //mysql_query("INSERT INTO `store` (`id`, `from`, `action`, `saldo`, `time`, `to`) VALUES (NULL, '". $player['account'] ."', '$action', '". $account['points'] ."', '".time()."', '". $player['account'] ."')") or die(mysql_error());
- }
- }
- }
- else
- $message = '<h2 style="color:#fff;">'.lang2("Błąd", "Error").' :</h2><h3 style="color:#fff;">'.lang2("Taka postać nie istnieje", "This character does not exists").'.</h3><a href="index.php?id=shop_login">'.lang2("Powrót", "Return").'</a>';
- }
- }
- }
- elseif($offer[$offerId]['offer_type'] == 'ban'){
- $nick_ban = addslashes($_POST['nick']);
- $item_id_ban = addslashes($offer[$offerId]['item_id']);
- $action_id_ban = addslashes($offer[$offerId]['action_id']);
- $dbest_ban = $shop_db->query(sprintf("SELECT * FROM `players` WHERE `name`='%s' AND account='%s'",
- mysqli_real_escape_string($shop_db,$nick_ban),
- mysqli_real_escape_string($shop_db,$acc_ount)));
- $zasne_ban = $shop_db->query(sprintf("SELECT `online` FROM `players` WHERE `name`='%s' AND account='%s'",
- mysqli_real_escape_string($shop_db,$nick_ban),
- mysqli_real_escape_string($shop_db,$acc_ount)));
- $hoku_ban = $dbest_ban->num_rows;
- $ok_ban = $zasne_ban->fetch_assoc();
- if ($hoku_ban > 0){
- $pokers = $shop_db->query(sprintf("SELECT * FROM `players` WHERE (account = '%s' AND name = '%s')",
- mysqli_real_escape_string($shop_db,$acc_ount),
- mysqli_real_escape_string($shop_db,$nick_ban)));
- $player_ban = $pokers->fetch_array();
- $kurwa_ban = $player_ban['id'];
- $auc = $offer[$offerId]['points'];
- $auc_ban = addslashes($offer[$offerId]['points']);
- $redsculltime = addslashes(0);
- $redskull = addslashes(0);
- $oblicznik_ban = addslashes($jankesi['premiumPoints']-$auc);
- $action_ban = addslashes("shop_login; Kupiles ". $offer[$offerId]['item_name'] ." za ".$offer[$offerId]['points']." punktow.");
- $action_ban = htmlentities($action_ban, ENT_QUOTES, "UTF-8");
- if($haslo != $pass_word){
- $_SESSION['e_haslo'] = "Podane hasło jest niepoprawne!";
- }if($jankesi['premiumPoints'] >= $offer[$offerId]['points']){
- if (!isset($_POST['rules']))
- {
- $wszystko_git=false;
- $_SESSION['e_haslo']="Potwierdz ,że wylogowałeś się z postaci <font color='orange'>".$nick_ban."</font>.";
- }else{
- if($ok_ban['online'] == 1){
- $_SESSION['e_haslo'] = "Nie jesteś wylogowany na tej postaci.";
- }
- else{
- $shop_db->query(sprintf("UPDATE `players` SET `redskulltime` = '%s', `redskull` = '%s' WHERE `id` = '%s'",
- mysqli_real_escape_string($shop_db,$redsculltime),
- mysqli_real_escape_string($shop_db,$redskull),
- mysqli_real_escape_string($shop_db,$kurwa_ban)));
- $shop_db->query(sprintf("UPDATE `accounts` SET `premiumPoints` = `premiumPoints`-'%s' WHERE accno='%s'",
- mysqli_real_escape_string($shop_db,$auc),
- mysqli_real_escape_string($shop_db,$acc_ount)));
- $shop_db->query(sprintf("INSERT INTO `store` (`id`, `kupujacy`, `secondpoints`, `firstpoints`, `time`, `action`) VALUES (NULL, '%s', '%s', '%s', '".time()."', '%s')",
- mysqli_real_escape_string($shop_db,$acc_ount),
- mysqli_real_escape_string($shop_db,$auc),
- mysqli_real_escape_string($shop_db,$oblicznik_ban),
- mysqli_real_escape_string($shop_db,$action_ban)));
- $_SESSION['u_storage'] = "Gratulacje! Twój Ban ,oraz fragi zostały usunięte.";
- }
- }
- }else{
- $_SESSION['e_haslo'] = "Nie posiadasz takiej ilości punktów.";
- }
- }else{
- echo 'Postac musi nalerzeć do ciebie.';
- }
- }
- ?>
- <?php
- ?>
- <center>
- Twoja liczba punktów premium to: <span style="FONT-WEIGHT:bold; color:#FF8C00"><?php echo addslashes($jankesi['premiumPoints']); ?></span><br>Twoja liczba zamrożonych punktów to: <span style="FONT-WEIGHT:bold; color:#FF8C00"><?php echo addslashes($jankesi['zam_points']); ?></span><br /><small><font color="red"><a href="sys_p">Co to zamrożone punkty?</a></font></small><br><br><a href="sms_shop"><span style="FONT-WEIGHT:bold; color:#FF8C00">[Doładuj punkty premium]</span></a><br><br>
- <a href="shop/history">[historia operacji]</a><br><br>
- <table width=490 border='0' cellpadding='0' cellspacing='1'>
- <tr align='center' style='background-color:#2f261f;' height='30px'>
- <td width=10%><b>Obrazek</b></td>
- <td width=50%><b>Przedmiot</b></td>
- <td width=20%><b>Wymagane punkty</b></td>
- </tr>
- <?php
- for($from=0;$from<count($offer);$from++){
- $id=$i+1;
- echo ($i % 2) ? "<tr style='height:30px;' bgcolor=\"".$config['site']['vdarkborder']."\">" : "<tr style='height:30px;' bgcolor=\"".$config['site']['lightborder']."\">" ;
- echo '
- <td style="text-align: center;padding:15px;" >'.$offer[$from]['image'].'</td>
- <td style="padding-left:5px;">
- <p><span style="FONT-WEIGHT:bold; color:#00ff00">'.$offer[$from]['item_name'].'</span> '.$offer[$from]['desc'].'</p>
- </td>
- <td style="text-align: center;"><b>'.$offer[$from]['points'].'</b></td>
- ';
- echo'
- </td>
- </tr>';
- $i++;
- }
- echo '</table><br />';
- echo'<form action="shop" method="post">';
- echo'<h3>Wybierz Przedmiot:<br />';
- echo'<select class="typ_sms" name="offer">';
- for($from=0;$from<count($offer);$from++){
- echo '<option value="'.$from.'">'.$offer[$from]['item_name'].'</option>';
- }
- echo '</select><br /><br />';
- echo'<h3>Wybierz Postać:<br />';
- echo '<select class="typ_sms" name="nick">
- ';
- $keke = $shop_db->query(sprintf("SELECT * FROM `players` WHERE `account` = '%s'",
- mysqli_real_escape_string($shop_db,$acc_ount)));
- while($postki = $keke->fetch_array()){
- echo'<option value="'.$postki["name"].'">'.$postki["name"].'</option>';
- }
- echo'</select><br /><br />';
- echo '<h3>Wybierz ilość:<br />';
- echo '<select class="typ_sms" name="ilee">';
- for($from=1;$from<=20;$from++){
- echo '<option value="'.$from.'">'.$from.'</option>';
- }
- echo'</select><br /><br />';
- echo'<input type="password" name="haslo" class="logins" placeholder="Your Password" maxlength="25" required /><br />
- '; ?>
- <?php
- if(isset($_SESSION['e_haslo']))
- {
- echo '<font color="red">'.$_SESSION['e_haslo'].'</font><br />';
- unset($_SESSION['e_haslo']);
- }
- ?>
- <?php
- if(isset($_SESSION['u_storage']))
- {
- echo '<font color="green">'.$_SESSION['u_storage'].'</font><br />';
- unset($_SESSION['u_storage']);
- }
- ?>
- <br /><label><input type="checkbox" name="rules" />Akceptuje regulamin sklepu<br /> i oświadczam,że wylogowałem się z postaci.</label><br />
- <?php
- echo'<br />';
- echo'<button class="button">Kup Przedmiot</button>';
- echo'</form>';
- }
- ?>
- </center>
- <?php
- } else {
- switch($_GET['site']){
- case "history":
- echo"<table width='100%' border='0' cellpadding='0' cellspacing='1'>";
- echo"<tr>";
- echo"<td style='background-color:#2f261f;' height='30px' align='center'width='20%'><b style='color:#fff;'>Data Operacji:</b></td>";
- echo"<td style='background-color:#2f261f;' height='30px' align='center'width='60%'><b style='color:#fff;'>Akcja:</b></td>";
- echo"<td style='background-color:#2f261f;' height='30px' align='center'width='20%'><b style='color:#fff;'>Stan Konta<br /><small> (po operacji):</small></b></td>";
- require_once "./cfg/connect.php";
- $condziurno = @new mysqli($host, $db_user, $db_password, $db_name);
- if ($condziurno->connect_error) {
- die('Error : ('. $condziurno->connect_errno .') '. $condziurno->connect_error);
- }
- $rezult = $condziurno->query(sprintf("SELECT * FROM `store` WHERE `kupujacy` = '%s' ORDER BY `time` DESC LIMIT 0,50",
- mysqli_real_escape_string($condziurno,$acc_ount)));
- while($zabojca = $rezult->fetch_assoc()){
- $akcja = explode(';', $zabojca['action']);
- $id=$i+1;
- echo ($i % 2) ? "<tr style='height:30px;' bgcolor=\"".$config['site']['vdarkborder']."\">" : "<tr style='height:30px;' bgcolor=\"".$config['site']['lightborder']."\">" ;
- echo '<td style="text-align:center; border: 1px solid #1b0e0e;">'.date("Y-m-d, H:i:s", $zabojca["time"]).'</td> ';
- if($akcja[0] == "prowizja" || $akcja[0] == "sell_char" || $akcja[0] == "add" || $akcja[0] == "shop" || $akcja[0] == "xsms" || $akcja[0] == "shop_login"){
- echo '<td style="text-align:center; border: 1px solid #1b0e0e;">'.$akcja[1].'</td> ';
- }
- echo '<td style="text-align:center;border: 1px solid #1b0e0e;">'.$zabojca["firstpoints"].'</td> ';
- echo'</tr>';
- $i++;
- }
- echo'</table>';
- break;
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement