API tools faq
paste
Advertisement
Mooshim

Untitled

Mooshim
Aug 6th, 2016
123
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 15.32 KB | None | 0 0
raw download clone embed print report
  1. error_reporting(0); session_id(); //setcookie(session_name(), null, -1, '/'); //setcookie(session_name(), session_id(), null, '/', null, null, true); session_start(); ob_start(); date_default_timezone_set('Europe/London'); include 'Connection.php'; /*Filter */ include "filter.php"; include"AntiSQL.php"; /* Session */ $User = $_SESSION['Username']; $Password = $_SESSION['Password']; $Admin = $_SESSION['Admin']; if (!empty($_SERVER['HTTP_CLIENT_IP'])) //check ip from share internet { $IP=$_SERVER['HTTP_CLIENT_IP']; } elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) //to check ip is pass from proxy { $IP=$_SERVER['HTTP_X_FORWARDED_FOR']; } else { $IP=$_SERVER['REMOTE_ADDR']; } function time_ago($tm, $rcs = 0) { $cur_tm = time()+21600; $dif = $cur_tm - $tm; $pds = array('second','minute','hour','day','week','month','year','decade'); $lngh = array(1,60,3600,86400,604800,2630880,31570560,315705600); for ($v = count($lngh) - 1; ($v >= 0) && (($no = $dif / $lngh[$v]) <= 1); $v--); if ($v < 0) $v = 0; $_tm = $cur_tm - ($dif % $lngh[$v]); $no = ($rcs ? floor($no) : round($no)); // if last denomination, round if ($no != 1) $pds[$v] .= 's'; $x = $no . ' ' . $pds[$v]; if (($rcs > 0) && ($v >= 1)) $x .= ' ' . $this->time_ago($_tm, $rcs - 1); return $x." ago"; } if ($User) { $MyUser = mysql_query("SELECT * FROM Users WHERE Username='".$User."'"); $myU = mysql_fetch_object($MyUser); $UserExist = mysql_num_rows($MyUser); if ($UserExist == "0") { session_destroy(); header("Location: /index.php"); } mysql_query("UPDATE Users SET IP='$IP' WHERE Username='$myU->Username'"); $checkifInDatabase = mysql_query("SELECT * FROM UserIPs WHERE IP='$IP' AND UserID='$myU->ID'"); $cii = mysql_num_rows($checkifInDatabase); if ($cii == "0") { mysql_query("INSERT INTO UserIPs (UserID, IP) VALUES('$myU->ID','$IP')"); } if ($Password != $myU->Password) { session_destroy(); } } //referrals $getReferrals = mysql_query("SELECT * FROM Users"); while ($gR = mysql_fetch_object($getReferrals)) { if ($gR->SuccessReferrer >= 3) { //check if badge is already there $getBadge = mysql_query("SELECT * FROM Badges WHERE UserID='".$gR->ID."' AND Position='Referrer'"); $Badge = mysql_num_rows($getBadge); if ($Badge == 0) { mysql_query("INSERT INTO Badges (UserID, Position) VALUES('".$gR->ID."','Referrer')"); } } } $updateCode = mysql_query("SELECT * FROM Users"); while ($uC = mysql_fetch_object($updateCode)) { $Mix = "$uC->Username$uC->Password"; $Hash = md5($Mix); mysql_query("UPDATE Users SET Hash='$Hash' WHERE ID='$uC->ID'"); } //ip bans $getIPBans = mysql_query("SELECT * FROM IPBans WHERE IP='$IP'"); $IPBan = mysql_num_rows($getIPBans); if ($IPBan > 0) { include "403.shtml"; exit; } $getNoAvatars = mysql_query("SELECT * FROM Users WHERE Body=''"); while ($gN = mysql_fetch_object($getNoAvatars)) { mysql_query("UPDATE Users SET Body='Avatar.png' WHERE ID='$gN->ID'"); } $getBanner = mysql_query("SELECT * FROM Banner"); $gB = mysql_fetch_object($getBanner); $maintenance = mysql_query("SELECT * FROM Maintenance"); $maintenancestatus = mysql_fetch_object($maintenance); if($maintenancestatus->Status == "true" && !$Admin){ header("Location: /maintenance/"); die(); } $now = time(); $timeout = 5; $xp = 60; $expires = $now + $timeout*$xp; mysql_query("UPDATE Users SET visitTick='$now' WHERE Username='$User'"); mysql_query("UPDATE Users SET expireTime='$expires' WHERE Username='$User'"); if ($myU->Ban == "1" && $_SERVER['PHP_SELF'] != "/Account/NotApproved/index.php") { header("Location: /Account/NotApproved/?ID=$myU->ID"); die(); } $Bux = $myU->Bux; $Tix = $myU->Tix; if ($Bux >= 100000&&$Bux <= 999999) { $BuxShort = substr($Bux, 0,3); $Bux = "".$BuxShort."K+"; } else if ($Bux >= 1000000&&$Bux <= 9999999) { $BuxShort = substr($Bux, 0,1); $Bux = "".$BuxShort."M+"; } else if ($Bux >= 10000000&&$Bux <= 99999999) { $BuxShort = substr($Bux, 0,2); $Bux = "".$BuxShort."M+"; } else if ($Bux >= 100000000&&$Bux <= 999999999) { $BuxShort = substr($Bux, 0,3); $Bux = "".$BuxShort."M+"; } else if ($Bux >= 1000000000&&$Bux <= 9999999999) { $BuxShort = substr($Bux, 0,1); $Bux = "".$BuxShort."B+"; } else if ($Bux >= 10000000000&&$Bux <= 99999999999) { $BuxShort = substr($Bux, 0,2); $Bux = "".$BuxShort."B+"; } else if ($Bux >= 100000000000&&$Bux <= 999999999999) { $BuxShort = substr($Bux, 0,3); $Bux = "".$BuxShort."B+"; } else if ($Bux >= 1000000000000&&$Bux <= 9999999999999) { $BuxShort = substr($Bux, 0,1); $Bux = "".$BuxShort."T+"; } else if ($Bux >= 10000000000000&&$Bux <= 99999999999999) { $BuxShort = substr($Bux, 0,2); $Bux = "".$BuxShort."T+"; } else if ($Bux >= 1000000000) { $Bux = "∞"; } else if ($Bux >= 100&&$Bux <= 99999) { $Bux = number_format($Bux); } if ($Tix >= 100000&&$Tix <= 999999) { $TixShort = substr($Tix, 0,3); $Tix = "".$TixShort."K+"; } else if ($Tix >= 1000000&&$Tix <= 9999999) { $TixShort = substr($Tix, 0,1); $Tix = "".$TixShort."M+"; } else if ($Tix >= 10000000&&$Tix <= 99999999) { $TixShort = substr($Tix, 0,2); $Tix = "".$TixShort."M+"; } else if ($Tix >= 100000000&&$Tix <= 999999999) { $TixShort = substr($Tix, 0,3); $Tix = "".$TixShort."M+"; } else if ($Tix >= 1000000000&&$Tix <= 9999999999) { $TixShort = substr($Tix, 0,1); $Tix = "".$TixShort."B+"; } else if ($Tix >= 10000000000&&$Tix <= 99999999999) { $TixShort = substr($Tix, 0,2); $Tix = "".$TixShort."B+"; } else if ($Tix >= 100000000000&&$Tix <= 999999999999) { $TixShort = substr($Tix, 0,3); $Tix = "".$TixShort."B+"; } else if ($Tix >= 1000000000000&&$Tix <= 9999999999999) { $TixShort = substr($Tix, 0,1); $Tix = "".$TixShort."T+"; } else if ($Tix >= 10000000000000&&$Tix <= 99999999999999) { $TixShort = substr($Tix, 0,2); $Tix = "".$TixShort."T+"; } else if ($Tix >= 1000000000) { $Tix = "∞"; } else if ($Tix >= 100&&$Tix <= 99999) { $Tix = number_format($Tix); } //rich badges $getPremiumWelcome = mysql_query("SELECT * FROM Users WHERE Premium='1' OR Premium='2' OR Premium='3' OR Premium='4'"); while ($gP = mysql_fetch_object($getPremiumWelcome)) { $checkBadge = mysql_query("SELECT * FROM Badges WHERE UserID='$gP->ID' AND Position='In The Club'"); $Badge = mysql_num_rows($checkBadge); if ($Badge == 0) { //mysql_query("INSERT INTO Badges (UserID, Position) VALUES('$gP->ID','In The Club')"); //mysql_query("INSERT INTO PMs (SenderID, ReceiveID, Title, Body, time) VALUES('1','$gP->ID','You have been granted a badge!','You have been granted the "In The Club" badge for being part of our membership program. Welcome to the club!','".$now."')"); } } $getItemskk = mysql_query("SELECT * FROM Items"); while ($GIKK = mysql_fetch_object($getItemskk)) { if ($GIKK->UpdateTime == "") { mysql_query("UPDATE Items SET UpdateTime='$GIKK->CreationTime' WHERE ID='$GIKK->ID'"); } } $getRich = mysql_query("SELECT * FROM Users WHERE Bux > 9999"); while ($gR = mysql_fetch_object($getRich)) { $checkBadge = mysql_query("SELECT * FROM Badges WHERE UserID='".$gR->ID."' AND Position='Rich'"); $NumBadge = mysql_num_rows($checkBadge); if ($NumBadge == 0) { mysql_query("INSERT INTO Badges (UserID, Position) VALUES('".$gR->ID."','Rich')"); } } $getPremium1 = mysql_query("SELECT * FROM Users WHERE Premium='1'"); while ($gP = mysql_fetch_object($getPremium1)) { $findItem = mysql_query("SELECT * FROM Inventory WHERE UserID=$gP->ID AND ItemID=3"); if (mysql_num_rows($findItem) == 0) { $UserID = $gP->ID; $ItemID = 3; $ii = mysql_query("SELECT * FROM Items WHERE ID='$ItemID'"); $gI = mysql_fetch_object($ii); $code1 = sha1($gI->File); $code2 = sha1($UserID); //mysql_query("UPDATE Users SET Bux=Bux + $SalePrice WHERE ID='".$row->UserID."'"); mysql_query("INSERT INTO Inventory (UserID, ItemID, File, Type, code1, code2, SerialNum) VALUES ('$UserID','$ItemID','$gI->File','$gI->Type','$code1','$code2','0')"); } $checkBadge = mysql_query("SELECT * FROM Badges WHERE UserID='$gP->ID' AND Position='Bronze VIP'"); $Badge = mysql_num_rows($checkBadge); if ($Badge == 0) { mysql_query("INSERT INTO Badges (UserID, Position) VALUES('$gP->ID','Bronze VIP')"); mysql_query("INSERT INTO PMs (SenderID, ReceiveID) VALUES('1','$gP->ID','')"); } if ($gP->PremiumExpire != "unlimited") { if ($now > $gP->PremiumExpire) { mysql_query("UPDATE Users SET Premium='0' WHERE ID='$gP->ID'"); mysql_query("UPDATE Users SET PremiumExpire='' WHERE ID='$gP->ID'"); mysql_query("DELETE FROM Badges WHERE UserID='$gP->ID' AND Position='Bronze VIP'"); mysql_query("INSERT INTO PMs (SenderID, ReceiveID, Title, Body, time) VALUES('1','$gP->ID','Oh no! It looks like your membership has run out!','Your membership has expired. You can always reupgrade at any time by checking out our upgrades page here: /Upgrades/Premium.aspx. We\'re sorry to see you go. We look forward to hearing from you in the future! ','$now')"); } } } $getPremium2 = mysql_query("SELECT * FROM Users WHERE Premium='2'"); while ($gP = mysql_fetch_object($getPremium2)) { $findItem = mysql_query("SELECT * FROM Inventory WHERE UserID=$gP->ID AND ItemID=5"); if (mysql_num_rows($findItem) == 0) { $UserID = $gP->ID; $ItemID = 5; $ii = mysql_query("SELECT * FROM Items WHERE ID='$ItemID'"); $gI = mysql_fetch_object($ii); $code1 = sha1($gI->File); $code2 = sha1($UserID); //mysql_query("UPDATE Users SET Bux=Bux + $SalePrice WHERE ID='".$row->UserID."'"); mysql_query("INSERT INTO Inventory (UserID, ItemID, File, Type, code1, code2, SerialNum) VALUES ('$UserID','$ItemID','$gI->File','$gI->Type','$code1','$code2','0')"); } $checkBadge = mysql_query("SELECT * FROM Badges WHERE UserID='$gP->ID' AND Position='Silver VIP'"); $Badge = mysql_num_rows($checkBadge); if ($Badge == 0) { mysql_query("INSERT INTO Badges (UserID, Position) VALUES('$gP->ID','Silver VIP')"); mysql_query("INSERT INTO PMs (SenderID, ReceiveID) VALUES('1','$gP->ID','')"); } if ($gP->PremiumExpire != "unlimited") { if ($now > $gP->PremiumExpire) { mysql_query("UPDATE Users SET Premium='0' WHERE ID='$gP->ID'"); mysql_query("UPDATE Users SET PremiumExpire='' WHERE ID='$gP->ID'"); mysql_query("DELETE FROM Badges WHERE UserID='$gP->ID' AND Position='Silver VIP'"); mysql_query("INSERT INTO PMs (SenderID, ReceiveID, Title, Body, time) VALUES('1','$gP->ID','Premium Expired','Your premium membership has expired.','$now')"); } } } $getPremium3 = mysql_query("SELECT * FROM Users WHERE Premium='3'"); while ($gP = mysql_fetch_object($getPremium3)) { $findItem = mysql_query("SELECT * FROM Inventory WHERE UserID=$gP->ID AND ItemID=4"); if (mysql_num_rows($findItem) == 0) { $UserID = $gP->ID; $ItemID = 4; $ii = mysql_query("SELECT * FROM Items WHERE ID='$ItemID'"); $gI = mysql_fetch_object($ii); $code1 = sha1($gI->File); $code2 = sha1($UserID); //mysql_query("UPDATE Users SET Bux=Bux + $SalePrice WHERE ID='".$row->UserID."'"); mysql_query("INSERT INTO Inventory (UserID, ItemID, File, Type, code1, code2, SerialNum) VALUES ('$UserID','$ItemID','$gI->File','$gI->Type','$code1','$code2','0')"); } $checkBadge = mysql_query("SELECT * FROM Badges WHERE UserID='$gP->ID' AND Position='Gold VIP'"); $Badge = mysql_num_rows($checkBadge); if ($Badge == 0) { mysql_query("INSERT INTO Badges (UserID, Position) VALUES('$gP->ID','Gold VIP')"); mysql_query("INSERT INTO PMs (SenderID, ReceiveID) VALUES('1','$gP->ID','')"); } if ($gP->PremiumExpire != "unlimited") { if ($now > $gP->PremiumExpire) { mysql_query("UPDATE Users SET Premium='0' WHERE ID='$gP->ID'"); mysql_query("UPDATE Users SET PremiumExpire='' WHERE ID='$gP->ID'"); mysql_query("DELETE FROM Badges WHERE UserID='$gP->ID' AND Position='Gold VIP'"); mysql_query("INSERT INTO PMs (SenderID, ReceiveID, Title, Body, time) VALUES('1','$gP->ID','Premium Expired','Your premium membership has expired.','$now')"); } } } $getPremium4 = mysql_query("SELECT * FROM Users WHERE Premium='4'"); while ($gP = mysql_fetch_object($getPremium4)) { $findItem = mysql_query("SELECT * FROM Inventory WHERE UserID=$gP->ID AND ItemID=6"); if (mysql_num_rows($findItem) == 0) { $UserID = $gP->ID; $ItemID = 6; $ii = mysql_query("SELECT * FROM Items WHERE ID='$ItemID'"); $gI = mysql_fetch_object($ii); $code1 = sha1($gI->File); $code2 = sha1($UserID); //mysql_query("UPDATE Users SET Bux=Bux + $SalePrice WHERE ID='".$row->UserID."'"); mysql_query("INSERT INTO Inventory (UserID, ItemID, File, Type, code1, code2, SerialNum) VALUES ('$UserID','$ItemID','$gI->File','$gI->Type','$code1','$code2','0')"); } $checkBadge = mysql_query("SELECT * FROM Badges WHERE UserID='$gP->ID' AND Position='Platinum VIP'"); $Badge = mysql_num_rows($checkBadge); if ($Badge == 0) { mysql_query("INSERT INTO Badges (UserID, Position) VALUES('$gP->ID','Platinum VIP')"); mysql_query("INSERT INTO PMs (SenderID, ReceiveID) VALUES('1','$gP->ID','')"); } if ($gP->PremiumExpire != "unlimited") { if ($now > $gP->PremiumExpire) { mysql_query("UPDATE Users SET Premium='0' WHERE ID='$gP->ID'"); mysql_query("UPDATE Users SET PremiumExpire='' WHERE ID='$gP->ID'"); mysql_query("DELETE FROM Badges WHERE UserID='$gP->ID' AND Position='Platinum VIP'"); mysql_query("INSERT INTO PMs (SenderID, ReceiveID, Title, Body, time) VALUES('1','$gP->ID','Premium Expired','Your premium membership has expired.','$now')"); } } } $now = time(); if ($now > $myU->getBux) { $NewBux = $now + 86400; if($myU->Premium == 0) { $AmountToAdd = 5; } elseif($myU->Premium == 1){ $AmountToAdd = 15; } elseif($myU->Premium == 2){ $AmountToAdd = 30; } elseif($myU->Premium == 3){ $AmountToAdd = 70; } elseif($myU->Premium == 4){ $AmountToAdd = 100; } mysql_query("UPDATE Users SET Bux=Bux + ".$AmountToAdd." WHERE ID='$myU->ID'"); mysql_query("UPDATE Users SET getBux='$NewBux' WHERE ID='$myU->ID'"); } $getFriendR = mysql_query("SELECT * FROM FRs WHERE ReceiveID='$myU->ID' AND Active='0'"); $FriendsPending = mysql_num_rows($getFriendR); $Posts = mysql_num_rows($Posts = mysql_query("SELECT * FROM Threads WHERE PosterID='".$Poster->ID."'")); $Replies = mysql_num_rows($Replies = mysql_query("SELECT * FROM Replies WHERE PosterID='".$Poster->ID."'")); $Posts2 = $Posts+$Replies; mysql_query("UPDATE Users SET ForumPost='".$Posts2."' WHERE ID='".$myU->ID."'"); $myPosts = mysql_num_rows($Posts = mysql_query("SELECT * FROM Threads WHERE PosterID='".$myU->ID."'")); $myPosts2 = mysql_num_rows($Posts = mysql_query("SELECT * FROM Replies WHERE PosterID='".$myU->ID."'")); $myTotalPosts = $myPosts + $myPosts2; mysql_query("UPDATE Users SET ForumPost='$myTotalPosts' WHERE ID='$myU->ID'"); $test = mysql_query("SELECT * FROM Users WHERE Body=''"); $test1 = mysql_fetch_object($test); if($test1 > 0){ mysql_query("UPDATE Users SET Body='Avatar.png' WHERE ID='".$test1->ID."'"); } if(empty($myU->Body)){ mysql_query("UPDATE Users SET Body='Avatar.png' WHERE ID='".$myU->ID."'"); } if($User) { $GetFriends = mysql_query("SELECT * FROM FRs WHERE SenderID='$myU->ID' AND Active='1'"); $numgetFriends = mysql_num_rows($GetFriends); $GetFriends2 = mysql_query("SELECT * FROM FRs WHERE ReceiveID='$myU->ID' AND Active='1'"); $numgetFriends2 = mysql_num_rows($GetFriends2); $totalFriends = $numgetFriends+$numgetFriends2; if($totalFriends > 9){ $checkBadge = mysql_query("SELECT * FROM Badges WHERE UserID='$myU->ID' AND Position='Friendship'"); $checkBadgeExist = mysql_num_rows($checkBadge); if($checkBadgeExist == 0) { mysql_query("INSERT INTO Badges (UserID,Position) VALUES ('$myU->ID','Friendship')"); } } } $aakd = mysql_query("SELECT * FROM Users ORDER BY ID ASC"); while ($sjf = mysql_fetch_object($aakd)) { $newquery11 = mysql_query("SELECT * FROM Users WHERE IP='$sjf->IP'"); while ($uajd = mysql_fetch_object($newquery11)) { mysql_query("DELETE * FROM Users WHERE ID='$uajd->ID'"); } }
  2.  
  3.  
  4.  
  5.  
  6.  
  7.  
  8. Meep Name
  9.  
  10. Password
  11.  
  12. Login
  13.  
  14.  
  15.  
  16.  
  17.  
  18.  
  19. Fatal error: Call to undefined function SecurePost() in /home/u187867441/public_html/login/index.php on line 266
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!