SHOW:
|
|
- or go back to the newest paste.
1 | <?php | |
2 | $your_app_key = "MY_OFFERTORO_SECRET_APP_KEY"; | |
3 | define("MYSQL_HOST", "MY_DB_HOST"); | |
4 | define("MYSQL_PORT", "3306"); | |
5 | define("MYSQL_DB", "MY_DB_NAME"); | |
6 | define("MYSQL_TABLE", "MY_DB_TABLE"); | |
7 | define("MYSQL_USER", "MY_DB_USER"); | |
8 | define("MYSQL_PASS", "MY_DB_PASSWORD"); | |
9 | $mysqli = new mysqli(MYSQL_HOST, MYSQL_USER, MYSQL_PASS, MYSQL_DB); | |
10 | if ($mysqli->connect_errno) | |
11 | { | |
12 | echo "Failed to connect to MySQL: (" . $mysqli->connect_errno . ") " . $mysqli->connect_error; | |
13 | } | |
14 | ||
15 | $oid = isset($_GET['oid']) ? $_GET['oid'] : null; | |
16 | $o_name = isset($_GET['o_name']) ? $_GET['o_name'] : null; | |
17 | $amount = isset($_GET['amount']) ? $_GET['amount'] : null; | |
18 | $currency_name = isset($_GET['currency_name']) ? $_GET['currency_name'] : null; | |
19 | $user_id = isset($_GET['user_id']) ? $_GET['user_id'] : null; | |
20 | $sig = isset($_GET['sig']) ? $_GET['sig'] : null; | |
21 | $payout = isset($_GET['payout']) ? $_GET['payout'] : null; | |
22 | $ip_address = isset($_GET['ip_address']) ? $_GET['ip_address'] : "0.0.0.0"; | |
23 | ||
24 | - | $my_signature = md5($oid.$user_id.$your_app_key); |
24 | + | $my_signature = md5($oid.'-'.$user_id.'-'.$your_app_key); |
25 | ||
26 | if($my_signature != trim($sig)){ | |
27 | echo "0"; | |
28 | exit(0); | |
29 | } | |
30 | ||
31 | $sql = "UPDATE ".MYSQL_TABLE." SET solde=solde+".$mysqli->real_escape_string($amount)." WHERE id = ".$mysqli->real_escape_string($user_id); | |
32 | $result = $mysqli->query($sql); | |
33 | ||
34 | if($result){ | |
35 | echo "1"; | |
36 | }else{ | |
37 | echo "0"; | |
38 | } | |
39 | ||
40 | exit(0); | |
41 | ||
42 | ?> |