Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?
- if(!isset($_GET['vote_id'])){
- echo 'Vote List
- <table cellpadding="0" cellspacing="4" border="0" style="border: 1px outset #000000;" width="550" >';
- foreach ($vote_links as $vote_id => $vote_link){
- echo '<tr>
- <td align="left" width="40%"><b>'.$vote_link[0].'</b></td>
- <td align="left">Credits Issued: <b>'.number_format($vote_link[2]).'</td>
- <td align="right"><a href="?vote_id='.$vote_id.'" target="_blank">Vote Now!</a></td>
- </tr>';
- }
- echo '</table>';
- }else{
- if($_GET['vote_id'] != NULL){
- $vote_id = safe_input($_GET['vote_id'],'');
- if(array_key_exists($vote_id,$vote_links)){
- if(isset($_POST['uss'])){
- $username = safe_input($_POST['uss'],'\_');
- $password = safe_input($_POST['pass'],'\_');
- $character = str_replace("'","",$_POST['character']);
- if(empty($username) || empty($password) || empty($character)){
- echo 'Error: Some fields where left blank.';
- }else{
- sql_connect($host,$user_sql,$password_sql,$database);
- $acc_check = mssql_query("SELECT memb___id FROM MEMB_INFO WHERE memb___id='$username' AND memb__pwd= [dbo].[fn_md5]('$password','$username')");
- $acc_check = mssql_num_rows($acc_check);
- if($acc_check <= 0 ){
- echo 'Error: Account or Password is invalid.';
- }else{
- $char_check = mssql_query("SELECT name FROM character WHERE name='$character' AND accountid='$username'");
- $char_check = mssql_num_rows($char_check);
- if($char_check <= 0){
- echo 'Error: Character is invalid.';
- }else{
- $delete_time_script = mssql_query("SELECT deletetime FROM MuWeb_VoteCreditsIp ORDER BY deletetime ASC");
- while ($result=mssql_fetch_array($delete_time_script)){
- $time_check2 = $result[0]-time();
- if($time_check2 <= 0){
- $delete_time =mssql_query("DELETE FROM MuWeb_VoteCreditsIp WHERE deletetime='$result[0]'");
- }
- }
- $make_time_hours2 = $delay_hours*3600;
- $time_vote2 = time()+$make_time_hours2;
- $check_ip = mssql_query("SELECT username,ip,deletetime FROM MuWeb_VoteCreditsIp WHERE username='$username'");
- if(mssql_num_rows($check_ip) <= 0){
- $check_ip_2 = mssql_query("SELECT ip,deletetime FROM MuWeb_VoteCreditsIp WHERE ip='$_SERVER[REMOTE_ADDR]'");
- if(mssql_num_rows($check_ip_2) > 0){
- $row = mssql_fetch_array($check_ip_2);
- $next = $row['deletetime'];
- //echo 'Error: One ip can vote on each '.$delay_hours.' hours';
- echo 'A vote has already been submitted using this IP. <br/>Next vote chance will be at '.($next / 3600).' hour/s and '.($next % 60).' minutes from now';
- }else{
- $create_ip_acc = mssql_query("INSERT INTO MuWeb_VoteCreditsIp (username,deletetime,ip)VALUES('$username','$time_vote2','$_SERVER[REMOTE_ADDR]')");
- echo 'Error: Please try again.';
- }
- }else{
- foreach ($vote_links as $vote_data_id => $vote_data){
- if($vote_data_id == $vote_id){
- $credits = $vote_data[2];
- $url = $vote_data[1];
- $vote_found = 1;
- break;
- }
- }
- if($vote_found == '1'){
- $select_vote = mssql_query("Select username,vote_time from MuWeb_VoteCredits where username='$username' and vote_id='$vote_id'");
- $make_time_hours = $delay_hours*3600;
- $time_vote = time()+$make_time_hours;
- if(mssql_num_rows($select_vote) <= 0){
- //check vote count
- $check_count = mssql_query("Select memb___id from MuWeb_VoteCount where memb___id='$username'");
- if(mssql_num_rows($check_count) <= 0){
- $insert_memb_count = mssql_query("INSERT INTO MuWeb_VoteCount(memb___id,vote_count)VALUES('$username','1')");
- }else{
- $update_count = mssql_query("Update MuWeb_VoteCount set vote_count=vote_count+1 where memb___id='$username'");
- }
- //insert account in list
- $insert_username = mssql_query("insert into MuWeb_VoteCredits(vote_id,username,vote_time)VALUES('$vote_id','$username','$time_vote')");
- if($insert_username){
- $check_memb_acc = mssql_query("Select memb___id from memb_Credits where memb___id='$username'");
- if(mssql_num_rows($check_memb_acc) <= 0){
- $insert_memb_acc = mssql_query("INSERT INTO MEMB_CREDITS(memb___id,credits)VALUES('$username','$credits')");
- if($insert_memb_acc){
- //reward
- if($resets_reward_system == '1'){
- $update_resets_reward = mssql_query("UPDATE character SET resets=(resets+$resets_reward_amount) WHERE name='$character'");
- }
- // ====================================================================
- // Removing part to do with adding levels as a reward, since it's obviously not going to be used
- /*
- //reward
- if($levels_reward_system == '1'){
- $select_char = mssql_fetch_row(mssql_query("SELECT class,clevel FROM character WHERE name='$character'"));
- if($select_char[1] > $levels_reward_max_level){
- echo 'a';
- }else{
- if($select_char[0] == '64' || $select_char[0] == '48' || $select_char[0] == '65' || $select_char[0] == '49'){
- $new_points = $levels_reward_amount*$special_class_reward;
- }else{
- $new_points = $levels_reward_amount*$basic_class_reward;
- }
- $update_p = mssql_query("UPDATE character SET clevel=(clevel+$levels_reward_amount),leveluppoint=(leveluppoint+$new_points) WHERE name='$character'");
- }
- } */
- // ====================================================================
- header('Location: '.$url.'');
- }else{
- echo 'System error.';
- }
- }else{
- $insert_credits = mssql_query("UPDATE memb_credits SET credits=credits+".$credits." WHERE memb___id='$username'");
- //reward
- if($resets_reward_system == '1'){
- $update_resets_reward = mssql_query("UPDATE character SET resets=(resets+$resets_reward_amount) WHERE name='$character'");
- }
- // ====================================================================
- // Removing part to do with adding levels as a reward, since it's obviously not going to be used
- /*
- //reward
- if($levels_reward_system == '1'){
- $select_char = mssql_fetch_row(mssql_query("Select class,clevel from character where name='$character'"));
- if($select_char[1] > $levels_reward_max_level){
- echo 'a';
- }else{
- if($select_char[0] == '64' || $select_char[0] == '48' || $select_char[0] == '65' || $select_char[0] == '49'){
- $new_points = $levels_reward_amount*$special_class_reward;
- }else{
- $new_points = $levels_reward_amount*$basic_class_reward;
- }
- $update_p = mssql_query("Update character set clevel=(clevel+$levels_reward_amount),leveluppoint=(leveluppoint+$new_points) where name='$character'");
- }
- } */
- // ====================================================================
- header('Location: '.$url.'');
- // WTF?
- if($insert_credits){
- }else{
- echo 'System error.';
- }
- }
- }
- }else {
- $take_old_vote = mssql_fetch_row($select_vote);
- $time_check = $take_old_vote[1]-time();
- if($time_check > 0){
- // This is the part I'm actually supposed to work, so it displays something nicer
- // This is the original code :
- // echo 'Error: '.$delay_hours.' hours have not passed';
- echo 'Error, ' . $delay_hours . 'hours have not passed. You will be able to vote in ' . ($next / 3600) . ' hours and ' . ($next % 60) . ' minutes.';
- }else{
- $update_vote_info = mssql_query("Update MuWeb_VoteCredits set [vote_time]='$time_vote' where username='$username' and vote_id='$vote_id'");
- $update_count = mssql_query("Update MuWeb_VoteCount set vote_count=vote_count+1 where memb___id='$username'");
- if($update_vote_info){
- $insert_credits = mssql_query("Update memb_credits set credits=credits+".$credits." where memb___id='$username'");
- if($insert_credits){
- //reward
- if($resets_reward_system == '1'){
- $update_resets_reward = mssql_query("Update character set resets=(resets+$resets_reward_amount) where name='$character'");
- }
- // ====================================================================
- /*
- //reward
- if($levels_reward_system == '1'){
- $select_char = mssql_fetch_row(mssql_query("Select class,clevel from character where name='$character'"));
- if($select_char[1] > $levels_reward_max_level){
- }else{
- if($select_char[0] == '64' || $select_char[0] == '48' || $select_char[0] == '65' || $select_char[0] == '49'){
- $new_points = $levels_reward_amount*$special_class_reward;
- }else{
- $new_points = $levels_reward_amount*$basic_class_reward;
- }
- $update_p = mssql_query("Update character set clevel=(clevel+$levels_reward_amount),leveluppoint=(leveluppoint+$new_points) where name='$character'");
- }
- } */
- // ====================================================================
- header('Location: '.$url.'');
- }else{
- echo 'System error.';
- }
- }
- }
- }
- }
- }
- }
- }
- }
- }
- }
- echo '<div style="margin-top: 40px;">
- <fieldset style="width: 250px"><legend><b>Login Infos</b></legend>
- <form action="" method="post">
- <table cellpadding="0" cellspacing="4" border="0" style="border: 0px outset #000000;" width="250" >
- <tr>
- <td align="left" width="100">Username:</td>
- <td align="left"><input type="text" name="uss" length="20">
- </tr>
- <tr>
- <td align="left">Password:</td>
- <td align="left"><input type="password" name="pass" length="20">
- </tr>
- <tr>
- <td align="left">Character:</td>
- <td align="left"><input type="text" name="character" length="20">
- </tr>
- <tr>
- <td colspan="2" align="right"><input type="submit" value="Vote Now!"></td>
- </tr>
- <tr>
- <td colspan="2" align="left"><a href="index.php">Go back to vote list</a></td>
- </tr>
- </table>
- </form></fieldset></div>';
- }else{
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement