Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?phpphp
- #########################################################
- # _______ _ _ ___ #
- # |__ __| | | (_)__ \ #
- # | |___ _ _ _ _ ___ ___| |__ _ ) | #
- # | / __| | | | | | |/ _ \/ __| '_ \| | / / #
- # | \__ \ |_| | |_| | (_) \__ \ | | | |/ /_ #
- # |_|___/\__,_|\__, |\___/|___/_| |_|_|____| #
- # __/ | #
- # |___/ #
- # #
- # . Tsuyoshi2 WebCMS . . . V 1.0 . . #
- # . . Script by Ap0kalyps3 . . . . . . #
- #########################################################
- class account
- {
- public function regist()
- {
- ?>
- <div class="con_ui contop"><h2 style="cursor:pointer;">Registration</h2></div>
- <div class="con_ui conpost">
- <div class="wrap">
- <?php
- {
- echo '
- <div class="l_box_t"><span class="title">Registrierung</span></div>
- <div class="l_box_m">
- <div class="inner">
- ';
- if($_POST['captcha'] == $_SESSION['code'])
- {
- $query = "
- SELECT count(`account`.`id`) as CHECKUSER
- FROM `account`.`account`
- WHERE `account`.`login` = '".$_POST['username']."'
- ";
- $exec = mysql_query($query);
- $row = mysql_fetch_assoc($exec);
- if($row['CHECKUSER'] == 0)
- {
- $query = "
- INSERT INTO `account`.`account` (Login, Password, Social_id, Email)
- VALUES('".$_POST['username']."',password('".$_POST['password']."'),'".$_POST['del_code']."','".$_POST['mail']."')
- ";
- mysql::connect(1);
- mysql_query($query);
- mysql::connect(2);
- mysql_query($query);
- echo 'Herzlichen Glückwunsch '.$_POST['username'].'.<br/>Deine Registrierung auf Tsuyoshi2 war erfolgreich.
- <br/><br/>
- Username: '.$_POST['username'].'<br/>
- Passwort: '.$_POST['password'].'<br/>
- E-Mail: '.$_POST['mail'].'<br/><br/>
- <i>Bitte merke dir die angegebene E-Mail Adresse, da du diese<br/>
- benötigst, wenn du dein Passwort vergessen hast.</i>';
- }
- else
- {
- echo 'Es existiert bereits ein Nutzer mit der Login-ID <i>'.$_POST['username'].'</i>.<br/><a href="?p=reg">Zurück zur Anmeldung</a>';
- }
- }
- else
- {
- echo 'Der eingegebene Sicherheitscode stimmt nicht mit dem angezeigten überein.<br/><a href="?p=reg">Zurück zur Anmeldung</a>';
- }
- echo '
- </div>
- </div>
- <div class="l_box_b"></div>
- ';
- }
- ?>
- </div>
- </div>
- <div class="con_ui conbt"></div>
- <?php
- }
- public function activate_account()
- {
- ?>
- <div class="con_ui contop"><h2 style="cursor:pointer;">Account aktivieren</h2></div>
- <div class="con_ui conpost">
- <div class="wrap">
- <?php
- if($_GET['act_code'])
- {
- mysql::connect(1);
- $query = "SELECT activation_code FROM `account`.`account` WHERE account.activation_code = '". $_GET['act_code'] ."';";
- $result = mysql_fetch_assoc(mysql_query($query));
- if($_GET['act_code'] == $result['activation_code'])
- {
- $query = "
- UPDATE account.account SET status='OK' WHERE activation_code = '".$_GET['act_code']."'
- ";
- if(mysql::global_exec($query) === true)
- {
- echo 'Dein Account ist nun Aktiv!';
- $query = "UPDATE account.account SET activation_code=NULL WHERE login = '".$_SESSION['USER']."'";
- mysql::global_exec($query);
- }
- else
- {
- echo 'Es ist ein undefinierter Fehler aufgetreten.<br/>Dein Passwort hat sich nicht verändert.';
- }
- } else {
- echo "Der Aktivierungscode stimmt nicht oder ist nicht mehr gültig!";
- }
- } else{
- echo "Es ist ein Fehler aufgetreten.";
- }
- ?>
- </div>
- </div>
- <div class="con_ui conbt"></div>
- <?php
- }
- public function login()
- {
- ?>
- <div class="con_ui contop"><h2 style="cursor:pointer;">Login</h2></div>
- <div class="con_ui conpost">
- <div class="wrap">
- <?php
- mysql::connect();
- $query = "
- SELECT
- `account`.`id`,
- `account`.`password`,
- `account`.`status`,
- `account`.`email`
- FROM `account`.`account`
- WHERE `account`.`login` = '".$_POST['loginid']."'
- AND `account`.`password`=password('".$_POST['password']."')
- ";
- $exec = mysql_query($query);
- $row = mysql_fetch_assoc($exec);
- if($row['id'] > 0)
- {
- if($row['status'] == 'OK')
- {
- $_SESSION['USER'] = $_POST['loginid'];
- $_SESSION['UID'] = $row['id'];
- $_SESSION['PASS'] = $row['password'];
- $_SESSION['EMAIL'] = $row['email'];
- echo '<script type="text/javascript">window.location.href = "index.php";</script>';
- }
- elseif($row['status'] == 'MAIL')
- {
- echo 'Bestätige den Account über die E-Mail um dich einzuloggen.<br/><br/>';
- forms::login();
- } else
- {
- echo 'Der Account mit dem du dich versuchst einzuloggen ist gesperrt.<br/><br/>';
- forms::login();
- }
- }
- else
- {
- echo 'Login fehlgeschlagen.<br/><br/>';
- forms::login();
- }
- ?>
- </div>
- </div>
- <div class="con_ui conbt"></div>
- <?php
- }
- public function logout()
- {
- session_destroy();
- echo '<script type="text/javascript">window.location.href = "index.php";</script>';
- }
- public function checklogin()
- {
- mysql::connect();
- $username = $_SESSION['USER'];
- $password = $_SESSION['PASS'];
- $query = "
- SELECT
- `account`.`id`,
- `account`.`status`
- FROM `account`.`account`
- WHERE `account`.`login` = '".$username."'
- AND `account`.`password`='".$password."'
- ";
- $exec = mysql_query($query);
- $row = mysql_fetch_assoc($exec);
- if($row['status'] == 'OK')
- {
- return true;
- }
- else
- {
- return false;
- }
- }
- public function active_info()
- {
- $en = array('' => 'Kein Reich', 1 => 'Shinsoo', 2 => 'Chunjo', 3 => 'Jinno');
- echo '<div id="uinfo">
- <table>
- <tr>
- <td>» <a href="?p=clist">Charakterliste</a></td>
- <td>Coins: '.account::get_coins($_SESSION['USER']).'</td>
- <td>» <a href="?p=shop">Itemshop</a></td>
- <td>Reich: '.$en[account::get_empire($_SESSION['USER'])].'</td>
- <td>» <a href="?p=cdat">Daten ändern</a></td>
- <td>Chars: '.account::get_char_count($_SESSION['USER']).'</td>
- <td>» <a href="?p=lout">Ausloggen</a></td>
- <td>» <a href="?p=donate">Spenden</a></td>
- </tr>
- </table>
- </div>';
- }
- public function get_coins($user)
- {
- $query = "
- SELECT `account`.`coins`
- FROM `account`.`account`
- WHERE `account`.`login` = '".$user."'
- ";
- $exec = mysql_query($query);
- $row = mysql_fetch_assoc($exec);
- return $row['coins'];
- }
- public function get_vcoins($user)
- {
- $query = "
- SELECT `account`.`vcoins`
- FROM `account`.`account`
- WHERE `account`.`login` = '".$user."'
- ";
- $exec = mysql_query($query);
- $row = mysql_fetch_assoc($exec);
- return $row['vcoins'];
- }
- public function get_empire($user)
- {
- $query = "
- SELECT `player_index`.`empire`
- FROM `player`.`player_index`
- WHERE `player_index`.`id` = (
- SELECT `account`.`id`
- FROM `account`.`account`
- WHERE `account`.`login` = '".$user."'
- )
- ";
- $exec = mysql_query($query);
- $row = mysql_fetch_assoc($exec);
- return $row['empire'];
- }
- public function get_char_count($user)
- {
- $query = "
- SELECT count(`player`.`id`) AS pcount
- FROM `player`.`player`
- WHERE `player`.`account_id` = (
- SELECT `account`.`id`
- FROM `account`.`account`
- WHERE `account`.`login` = '".$user."'
- )
- ";
- $exec = mysql_query($query);
- $row = mysql_fetch_assoc($exec);
- return $row['pcount'];
- }
- public function list_characters($user)
- {
- echo' <div class="con_ui contop"><h2 style="cursor:pointer;">Charakter Liste</h2></div>
- <div class="con_ui conpost">
- <div class="wrap">';
- $query = "
- SELECT
- `player`.`name`,
- `player`.`level`,
- `player`.`job`,
- `player`.`alignment`,
- `player`.`playtime`,
- `player`.`st`,
- `player`.`ht`,
- `player`.`dx`,
- `player`.`iq`,
- `player`.`exp`,
- `player`.`horse_level`,
- `player`.`exp`
- FROM `player`.`player`
- WHERE `player`.`account_id` = (
- SELECT `account`.`id`
- FROM `account`.`account`
- WHERE `account`.`login` = '".$user."'
- )
- ";
- mysql::connect(1);
- $exec = mysql_query($query);
- mysql::connect(2);
- $exec_ = mysql_query($query);
- $chardata = array();
- $charcount = 0;
- while($row = mysql_fetch_assoc($exec))
- {
- if($row['alignment'] < -12000)
- $alignment = 'Grausam';
- elseif($row['alignment'] < -8000)
- $alignment = 'Aggressiv';
- elseif($row['alignment'] < -4000)
- $alignment = 'Bösartig';
- elseif($row['alignment'] < -1000)
- $alignment = 'Arglistig';
- elseif($row['alignment'] < 1000)
- $alignment = 'Neutral';
- elseif($row['alignment'] < 4000)
- $alignment = 'Freundlich';
- elseif($row['alignment'] < 8000)
- $alignment = 'Gut';
- else
- $alignment = 'Ritterlich';
- $chardata[$charcount] = '
- <table border="0" style="width: 98%; background-color: #170503; border: 2px solid #7A2319;">
- <tbody><tr height="75">
- <td width="100" align="center"><img src="images/char_avatars/'.$row['job'].'.png"></td>
- <td align="center">
- <span style="color: red; font-weight: bold;">'.$row['name'].'</span> <br>
- <span style="color: green;">Level '.$row['level'].'</span> <span>'.$alignment.'</span> <br>
- </td>
- </tr>
- <tr>
- <td valign="top" height="200" colspan="2">
- <table height="100%" cellspacing="6" cellpadding="0" border="0" style="border: 1px dotted #7A2319;">
- <tbody><tr>
- <td align="center">Spielzeit</td>
- <td align="left">'.$row['playtime'].' Minuten</td>
- </tr>
- <tr>
- <td align="center">EXP</td>
- <td align="left">'.$row['exp'].'</td>
- </tr>
- <tr>
- <td align="center">VIT</td>
- <td align="left">'.$row['ht'].'</td>
- </tr>
- <tr>
- <td align="center">INT</td>
- <td align="left">'.$row['iq'].'</td>
- </tr>
- <tr>
- <td align="center">STR</td>
- <td align="left">'.$row['st'].'</td>
- </tr>
- <tr>
- <td align="center">DEX</td>
- <td align="left">'.$row['dx'].'</td>
- </tr>
- <tr>
- <td align="center">Pferde Level</td>
- <td align="left">'.$row['horse_level'].'</td>
- </tr>
- </tbody></table>
- </td>
- </tr>
- </tbody></table>
- ';
- $charcount++;
- }
- $chardata = array();
- $charcount = 0;
- while($row = mysql_fetch_assoc($exec_))
- {
- if($row['alignment'] < -12000)
- $alignment = 'Grausam';
- elseif($row['alignment'] < -8000)
- $alignment = 'Aggressiv';
- elseif($row['alignment'] < -4000)
- $alignment = 'Bösartig';
- elseif($row['alignment'] < -1000)
- $alignment = 'Arglistig';
- elseif($row['alignment'] < 1000)
- $alignment = 'Neutral';
- elseif($row['alignment'] < 4000)
- $alignment = 'Freundlich';
- elseif($row['alignment'] < 8000)
- $alignment = 'Gut';
- else
- $alignment = 'Ritterlich';
- $chardata[$charcount] = '
- <table border="0" style="width: 98%; background-color: #170503; border: 2px solid #7A2319;">
- <tbody><tr height="75">
- <td width="100" align="center"><img src="images/char_avatars/'.$row['job'].'.png"></td>
- <td align="center">
- <span style="color: red; font-weight: bold;">'.$row['name'].'</span> <br>
- <span style="color: green;">Level '.$row['level'].'</span> <span>'.$alignment.'</span> <br>
- </td>
- </tr>
- <tr>
- <td valign="top" height="200" colspan="2">
- <table height="100%" cellspacing="6" cellpadding="0" border="0" style="border: 1px dotted #7A2319;">
- <tbody><tr>
- <td align="center">Spielzeit</td>
- <td align="left">'.$row['playtime'].' Minuten</td>
- </tr>
- <tr>
- <td align="center">EXP</td>
- <td align="left">'.$row['exp'].'</td>
- </tr>
- <tr>
- <td align="center">VIT</td>
- <td align="left">'.$row['ht'].'</td>
- </tr>
- <tr>
- <td align="center">INT</td>
- <td align="left">'.$row['iq'].'</td>
- </tr>
- <tr>
- <td align="center">STR</td>
- <td align="left">'.$row['st'].'</td>
- </tr>
- <tr>
- <td align="center">DEX</td>
- <td align="left">'.$row['dx'].'</td>
- </tr>
- <tr>
- <td align="center">Pferde Level</td>
- <td align="left">'.$row['horse_level'].'</td>
- </tr>
- </tbody></table>
- </td>
- </tr>
- </tbody></table>
- ';
- $charcount++;
- }
- ?>
- <?php
- echo '
- <table>
- <tr>
- <td>'.$chardata[0].'</td>
- <td>'.$chardata[1].'</td>
- </tr><tr>
- <td>'.$chardata[2].'</td>
- <td>'.$chardata[3].'</td>
- </tr>
- </table>
- </div>
- </div>
- <div class="l_box_b"></div>
- ';
- ?>
- <div class="con_ui conbt"></div>
- <?php
- }
- public function forget_pass()
- {
- ?>
- <div class="con_ui contop"><h2 style="cursor:pointer;">Passwort vergessen</h2></div>
- <div class="con_ui conpost">
- <div class="wrap">
- <?php
- error_reporting(E_ALL);
- $query = "
- SELECT count(`id`) AS checkenter
- FROM `account`.`account`
- WHERE `account`.`login` = '".$_POST['username']."'
- AND `account`.`email` = '".$_POST['mail']."'
- ";
- $exec = mysql_query($query);
- $row = mysql_fetch_assoc($exec);
- if($row['checkenter'] == 1)
- {
- $newpass = substr(md5(time()), 0, 8);
- $query = "
- UPDATE `account`.`account`
- SET `account`.`password` = password('".$newpass."')
- WHERE `account`.`login` = '".$_POST['username']."'
- AND `account`.`email` = '".$_POST['mail']."'
- ";
- mysql::global_exec($query);
- // message
- $message = '
- <html>
- <head>
- <title>Passwort Vergessen</title>
- </head>
- <body>
- <p>Du hast eine Passwort Vergessen Anfrage gesendet.</p>
- <p>Dein neues Passwort lautet: '.$newpass.'</p>
- </table>
- </body>
- </html>
- ';
- //Klasse einbinden
- require('./phpmailer/phpmailer.inc.php');
- //Instanz von PHPMailer bilden
- $mail = new PHPMailer();
- $mail->IsSMTP(); // enable SMTP
- $mail->SMTPDebug = 0; // debugging: 1 = errors and messages, 2 = messages only
- $mail->SMTPAuth = true; // authentication enabled
- $mail->Host = 'smtp.strato.de';
- $mail->Port = 25 ;
- $mail->Username = "support@astaria2.de";
- $mail->Password = "4uhs6456zghs";
- $mail->IsHTML(true);
- //Absenderadresse der Email setzen
- $mail->From = "support@astaria2.de";
- //Name des Abenders setzen
- $mail->FromName = "Tsuyoshi2.info Support";
- //Empfängeradresse setzen
- $mail->AddAddress($_POST['mail']);
- //Betreff der Email setzen
- $mail->Subject = "Dein Tsuyoshi2.info Passwort";
- //Text der EMail setzen
- $mail->Body = nl2br($message);
- //Altbody enthält die alternative Textform
- //mit strip_tags() werden die HTML-Tags entfernt
- $mail->AltBody = strip_tags($message);
- //EMail senden und überprüfen ob sie versandt wurde
- if(!$mail->Send())
- {
- //$mail->Send() liefert FALSE zurück: Es ist ein Fehler aufgetreten
- echo "Die Email konnte nicht gesendet werden";
- echo "Fehler: " . $mail->ErrorInfo;
- }
- else
- {
- //$mail->Send() liefert TRUE zurück: Die Email ist unterwegs
- echo "Die Email wurde versandt.";
- }
- }
- else
- {
- echo 'Überprüfe deine Eingaben.<br/><br/>';
- forms::forget_pass();
- }
- ?>
- </div>
- </div>
- <div class="con_ui conbt"></div>
- <?php
- }
- public function forget_spass()
- {
- ?>
- <div class="con_ui contop"><h2 style="cursor:pointer;">Passwort vergessen</h2></div>
- <div class="con_ui conpost">
- <div class="wrap">
- <?php
- mysql::connect();
- $query = "
- SELECT
- `account`.`id`,
- count(`id`) AS checkenter
- FROM `account`.`account`
- WHERE `account`.`login` = '".$_SESSION['USER']."'
- AND `account`.`email` = '".$_POST['mail']."'
- AND `account`.`password` = password('".$_POST['pass']."')
- LIMIT 1
- ";
- $exec = mysql_query($query);
- $row = mysql_fetch_assoc($exec);
- if($row['checkenter'] == 1)
- {
- $query = "
- SELECT `safebox`.`password`
- FROM `player`.`safebox`
- WHERE `safebox`.`account_id` = '".$row['id']."'
- ";
- $exec = mysql_query($query);
- $result_s1 = mysql_fetch_assoc($exec);
- mysql::connect(2);
- $exec = mysql_query($query);
- $result_s2 = mysql_fetch_assoc($exec);
- $result_s1['password'] == '' ? $s1pw = '000000' : $s1pw = $result_s1['password'];
- $result_s2['password'] == '' ? $s2pw = '000000' : $s2pw = $result_s1['password'];
- echo 'Lager Passwort Server1: '.$s1pw.'<br />
- Lager Passwort Server2: '.$s2pw.'<br />';
- }
- else
- {
- echo 'Die eingegebene E-Mail Adresse, oder das Passwort stimmt nicht mit dem eingeloggten Account überein.';
- }
- ?>
- </div>
- </div>
- <div class="con_ui conbt"></div>
- <?php
- }
- public function change_password()
- {
- ?>
- <div class="con_ui contop"><h2 style="cursor:pointer;">Passwort ändern</h2></div>
- <div class="con_ui conpost">
- <div class="wrap">
- <?php
- if($_POST['captcha'] == $_SESSION['code'])
- {
- if($_POST['new_pass'] == $_POST['new_repass'])
- {
- $query = "
- SELECT count(`account`.`id`) AS checkpw
- FROM `account`.`account`
- WHERE `account`.`login` = '".$_SESSION['USER']."'
- AND `account`.`password` = password('".$_POST['curr_pass']."')
- ";
- $exec = mysql_query($query);
- $row = mysql_fetch_assoc($exec);
- if($row['checkpw'] == 1)
- {
- $query = "
- UPDATE `account`.`account`
- SET `account`.`password` = password('".$_POST['new_pass']."')
- WHERE `account`.`login` = '".$_SESSION['USER']."'
- ";
- if(mysql::global_exec($query) === true)
- echo 'Dein Passwort wurde erfolgreich geändert.';
- else
- echo 'Es ist ein undefinierter Fehler aufgetreten.<br/>Dein Passwort hat sich nicht verändert.';
- }
- else
- {
- echo 'Das eingegebene aktuelle Passwort stimmt nicht mit dem Account überein.';
- }
- }
- else
- {
- echo 'Die eingegebenen neuen Passwörter stimmen nicht überein.';
- }
- }
- else
- {
- echo 'Der eingegebene Sicherheitscode stimmt nicht mit dem angezeigten überein.';
- }
- ?>
- </div>
- </div>
- <div class="con_ui conbt"></div><?php
- }
- public function change_sb_password()
- {
- ?>
- <div class="con_ui contop"><h2 style="cursor:pointer;">Lagerpasswort vergessen</h2></div>
- <div class="con_ui conpost">
- <div class="wrap">
- <?php
- if($_POST['captcha'] == $_SESSION['code'])
- {
- if($_POST['new_pass'] == $_POST['new_repass'])
- {
- $newpass = mysql_real_escape_string($_POST['new_pass']);
- $act_code = substr(md5(time()+uniqid()), 0, 8);
- $query = "
- UPDATE `account`.`account`
- SET `account`.`sb_pw_change_code` = '".$act_code."', `account`.`sb_pw_to_change` = '".$newpass."'
- WHERE `account`.`login` = '". $_SESSION['USER']."';
- ";
- mysql::global_exec($query);
- $newpass = htmlspecialchars($_POST['new_pass']);
- // message
- $message = '
- <html>
- <head>
- <title>Lager Passwort Vergessen</title>
- </head>
- <body>
- <p>Du hast eine Passwort Vergessen Anfrage gesendet.</p>
- <p>Dein neues Passwort lautet: '.$newpass.'</p>
- <p>Klicke auf diesen Link um das neue Passwort zu aktivieren:</p>
- <p><a href="http://www.tsuyoshi2.info?p=actsbpw&act_code='.$act_code.'">www.tsuyoshi2.info?p=actsbpw&act_code='.$act_code.'</a></p>
- </table>
- </body>
- </html>
- ';
- //Klasse einbinden
- require('./phpmailer/phpmailer.inc.php');
- //Instanz von PHPMailer bilden
- $mail = new PHPMailer();
- $mail->IsSMTP(); // enable SMTP
- $mail->SMTPDebug = 0; // debugging: 1 = errors and messages, 2 = messages only
- $mail->SMTPAuth = true; // authentication enabled
- $mail->Host = 'smtp.strato.de';
- $mail->Port = 25 ;
- $mail->Username = "support@astaria2.de";
- $mail->Password = "4uhs6456zghs";
- $mail->IsHTML(true);
- //Absenderadresse der Email setzen
- $mail->From = "support@astaria2.de";
- //Name des Abenders setzen
- $mail->FromName = "Tsuyoshi2 Support";
- //Empfängeradresse setzen
- $mail->AddAddress($_SESSION['EMAIL']);
- //Betreff der Email setzen
- $mail->Subject = "Dein Tsuyoshi2 Lager Passwort";
- //Text der EMail setzen
- $mail->Body = nl2br($message);
- //Altbody enthält die alternative Textform
- //mit strip_tags() werden die HTML-Tags entfernt
- $mail->AltBody = strip_tags($message);
- //EMail senden und überprüfen ob sie versandt wurde
- if(!$mail->Send())
- {
- //$mail->Send() liefert FALSE zurück: Es ist ein Fehler aufgetreten
- echo "Die Email konnte nicht gesendet werden";
- echo "Fehler: " . $mail->ErrorInfo;
- }
- else
- {
- //$mail->Send() liefert TRUE zurück: Die Email ist unterwegs
- echo "Die Email wurde versandt.";
- }
- }
- else
- {
- echo 'Die eingegebenen neuen Passwörter stimmen nicht überein.';
- }
- }
- else
- {
- echo 'Der eingegebene Sicherheitscode stimmt nicht mit dem angezeigten überein.';
- }
- ?>
- </div>
- </div>
- <div class="con_ui conbt"></div>
- <?php
- }
- public function change_sb_password_activate()
- {
- ?>
- <div class="con_ui contop"><h2 style="cursor:pointer;">Lagerpasswort vergessen</h2></div>
- <div class="con_ui conpost">
- <div class="wrap">
- <?php
- if($_GET['act_code'])
- {
- if(account::checklogin() === false) {
- forms::login();
- return false;
- }
- mysql::connect(1);
- $query = "SELECT sb_pw_change_code, sb_pw_to_change FROM `account`.`account` WHERE account.login = '". $_SESSION['USER']."';";
- $result = mysql_fetch_assoc(mysql_query($query));
- $sbQuery = "SELECT password FROM player.safebox WHERE `safebox`.`account_id` = (
- SELECT `account`.`id`
- FROM `account`.`account`
- WHERE `account`.`login` = '".$_SESSION['USER']."'
- )";
- $user = mysql_fetch_assoc(mysql_query($sbQuery));
- echo mysql_error();
- if($_GET['act_code'] == $result['sb_pw_change_code'])
- {
- if(!($user['password'] == $result['sb_pw_to_change']))
- {
- $query = "
- UPDATE `player`.`safebox`
- SET `safebox`.`password` = '".$result['sb_pw_to_change']."'
- WHERE `safebox`.`account_id` = (
- SELECT `account`.`id`
- FROM `account`.`account`
- WHERE `account`.`login` = '".$_SESSION['USER']."'
- )
- ";
- if(mysql::global_exec($query) === true)
- {
- echo 'Dein Lager-Passwort wurde erfolgreich geändert.';
- $query = "UPDATE account.account SET sb_pw_change_code=NULL, sb_pw_to_change=NULL WHERE login = '".$_SESSION['USER']."'";
- mysql::global_exec($query);
- }
- else
- {
- echo 'Es ist ein undefinierter Fehler aufgetreten.<br/>Dein Passwort hat sich nicht verändert.';
- }
- } else {
- echo 'Dein Lager-Passwort wurde erfolgreich geändert.';
- $query = "UPDATE account.account SET sb_pw_change_code=NULL, sb_pw_to_change=NULL WHERE login = '".$_SESSION['USER']."'";
- mysql::global_exec($query);
- }
- } else {
- echo "Der Aktivierungscode stimmt nicht oder ist nicht mehr gültig!";
- }
- } else{
- echo "Es ist ein Fehler aufgetreten.";
- }
- ?>
- </div>
- </div>
- <div class="con_ui conbt"></div>
- <?php
- }
- public function unstuck()
- {
- $nextunstuck = $_COOKIE["next_unstuck"];
- (!$nextunstuck && empty($nextunstuck))?(""):($err .= 'Du musst zwischen 2 Debugvorgängen ~ 30 Minuten warten!<br/>');
- ?>
- <div class="con_ui contop"><h2 style="cursor:pointer;">Charakter Entbuggen</h2></div>
- <div class="con_ui conpost">
- <div class="wrap">
- <?php
- if($_POST['captcha'] == $_SESSION['code'])
- {
- mysql::connect();
- $query = "
- SELECT count(`account`.`id`) AS checkdata
- FROM `account`.`account`
- WHERE `account`.`login` = '".$_SESSION['USER']."'
- AND `account`.`password` = password('".$_POST['password']."')
- ";
- $exec = mysql_query($query);
- $row = mysql_fetch_assoc($exec);
- if($row['checkdata'] == 1)
- {
- $query_ = "
- UPDATE `player`.`player`
- SET
- `player`.`x`='335709',
- `player`.`y`='756000',
- `player`.`map_index`='64',
- `player`.`exit_x`='335709',
- `player`.`exit_y`='756000',
- `player`.`exit_map_index`='64',
- `player`.`horse_riding`='0'
- WHERE `player`.`account_id` = (
- SELECT `account`.`id`
- FROM `account`.`account`
- WHERE `account`.`login` = '".$_SESSION['USER']."'
- AND `account`.`password` = password('".$_POST['password']."')
- )
- ";
- mysql::global_exec($query_);
- echo "<a href=\"javascript:history.back();\">Deine Charaktere wurden erfolgreich entbuggt!</a><div style=\"display:none;\">".mysql_error()."</div>";
- }
- else
- {
- echo 'Überprüfe deine Eingaben!';
- }
- }
- else
- {
- echo 'Captcha falsch! <a href="javascript:history.back();">zurück</a><br/>';
- }
- ?>
- </div>
- </div>
- <div class="con_ui conbt"></div>
- <?php
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement