API tools faq
paste
Guest User

Untitled

a guest
Jan 25th, 2018
24
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PHP 2.70 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2. session_start();
  3.  
  4. // Se vuoi saltare la parte della connessione sottostante, puoi semplicemente fare un include al tuo core. \\
  5.  
  6. $Host = "127.0.0.1";
  7. $Nome = "root";
  8. $pass = "svtcsm74";
  9. $db_nome = "asd";
  10. $dbCon = mysql_connect($Host, $Nome, $pass) or die(mysql_error());
  11. $selDb = mysql_select_db($db_nome, $dbCon);
  12.  
  13. function FilterText($str, $advanced=false) {
  14.     if($advanced == true){ return mysql_real_escape_string($str); }
  15.     $str = mysql_real_escape_string(htmlspecialchars($str));
  16.     return $str;
  17. }
  18.  
  19. if(!isset($_SESSION['username'])){
  20.     header('location:'.$path.'/index.php');
  21.     return false;
  22. }
  23. if(isset($_SESSION['username'])){
  24.     $verifica = mysql_query("SELECT * FROM users WHERE username = '".FilterText($_SESSION['username'])."' AND password = '".$_SESSION['password']."' LIMIT 1");
  25.     $verifica_2 = mysql_fetch_assoc($verifica);
  26.     if($verifica_2['username'] !== $_SESSION['username'] && $verifica_2['password'] !== $_SESSION['password']){
  27.         header('location:'.$path.'/index.php');
  28.         return false;
  29.     }
  30. }
  31. function mus($header, $data=''){
  32.         $musData = $header . chr(1) . $data;
  33.         $sock = @socket_create(AF_INET, SOCK_STREAM, getprotobyname('tcp'));
  34.         @socket_connect($sock, '127.0.0.1', '30001');
  35.         @socket_send($sock, $musData, strlen($musData), MSG_DONTROUTE);
  36.         @socket_close($sock);  
  37. }
  38.  
  39. function salva_modello($code)
  40.     {
  41.       $random = "model_".rand(555,999999);  
  42.       $stmt = mysql_query("INSERT INTO room_models(id,door_x,door_y,door_dir,heightmap)
  43.                                                   VALUES('".$random."', '0', '10', '2', '".htmlspecialchars($code)."')");                                                
  44.       $room = mysql_query("INSERT INTO rooms(caption,owner,model_name)
  45.                                                   VALUES('Stanza Realizzata con Floor!', '".$myrow['username']."', '".$random."')");
  46.       mus("update_navigator");
  47.       return $stmt;
  48.         }            
  49.  
  50.  
  51.  
  52.  
  53.  
  54. if(isset($_POST['salva'])){
  55. $code = trim($_POST['export1']);    
  56. if($code == ""){
  57.   echo "<script>alert('Errore Modello non caricato');</script>";
  58. }else if(!strstr($code,'X') && !strstr($code,'0'))
  59. {
  60. echo"<script>alert('Errore Modello non caricato');</script>";
  61. }
  62. else if($myrow['vip_points'] < 40)
  63. {
  64.     echo"<script>alert('Devi avere almeno 40 Crediti per creare il Modello!');</script>";
  65. }
  66. else{
  67. mysql_query("UPDATE users SET vip_points = vip_points -40 WHERE username = '".$myrow['username']."' LIMIT 1");
  68. if(salva_modello($code)){
  69. echo "<script>alert('Modello Creato con successo ! Puoi trovare il nuovo modello nella Stanza *CREATA CON IL FLOOR* del tuo Navigatore se non la vedi rientra in Hotel!');</script>";
  70. }
  71. }  
  72. }
  73.  
  74. ?>
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!