Ivor Barhansky
36bf662112
Upload code Изменил(а) на 'README.md' Изменил(а) на 'README.md' Reviewed-on: https://src.lopar.us/lopar/AntiBK/pulls/1 Co-Authored-By: Ivor Barhansky <lopar@noreply.lopar.us> Co-Committed-By: Ivor Barhansky <lopar@noreply.lopar.us>
120 lines
4.3 KiB
PHP
120 lines
4.3 KiB
PHP
<?
|
||
if(empty($param)){
|
||
?><br><p align=right><input type=button value="Вернуться" class=nav onclick="javascript:location.href='main.php?act=none'"></p>
|
||
<div align=center><br><br><br>
|
||
<table border=0 cellpadding=0 cellspacing=0 width=300><tr>
|
||
<td width=10><img src='img/cor_l_t.gif'></td><td bgcolor=#cccccc><img src='img/10_10.gif'></td><td width=10><img src='img/cor_r_t.gif'></td>
|
||
</table>
|
||
<table border=0 bgcolor=#cccccc cellpadding=0 cellspacing=0 width=300 height=60>
|
||
<tr><td align=left valign=top>
|
||
<form name='attack' action='?act=magic&school=earth&scroll=<?echo $scroll?>' method='post'>
|
||
<small>
|
||
  Заклятие "Нападение"<BR>
|
||
</small>
|
||
  Укажите логин персонажа,на которго Вы хотите напасть:<BR>
|
||
  <input type=text name='param' class=new style="width=200">
|
||
<BR>
|
||
  <input type=submit value=" Напасть " class=new style="width=200">
|
||
</form>
|
||
</td></tr>
|
||
</table>
|
||
<table border=0 cellpadding=0 cellspacing=0 width=300><tr>
|
||
<td width=10><img src='img/cor_l_b.gif'></td><td bgcolor=#cccccc><img src='img/10_10.gif'></td><td width=10><img src='img/cor_r_b.gif'></td>
|
||
</table>
|
||
</div>
|
||
<?
|
||
}
|
||
else if($db["battle"]==0){
|
||
if (ereg("[<>\\/-]",$act) or ereg("[<>\\/-]",$school) or ereg("[<>\\/-]",$scroll) or ereg("[<>\\/-]",$param)) {print "?!"; exit();}
|
||
$act=htmlspecialchars($act);
|
||
$school=htmlspecialchars($school);
|
||
$scroll=htmlspecialchars($scroll);
|
||
$param=htmlspecialchars($param);
|
||
$S="select * from characters where login='$param'";
|
||
$q=mysql_query($S);
|
||
$res=mysql_fetch_array($q);
|
||
$on1 = 0;
|
||
$text ="";
|
||
$chas = date("H");
|
||
$date = date("H:i", mktime($chas-$GSM));
|
||
$sss = mysql_query("SELECT * FROM online");
|
||
while($D = mysql_fetch_array($sss)){
|
||
if($D["login"] == $param){
|
||
$on1 = 1;
|
||
}
|
||
}
|
||
$user_sql="SELECT * FROM characters WHERE login='$login'";
|
||
$user_q=mysql_query($user_sql);
|
||
$user_dat=mysql_fetch_array($user_q);
|
||
$shans = rand(0,100);
|
||
if(!$res){
|
||
print"<script>location.href=\"main.php?act=inv§ion=thing&warning=4¶m=$param\";</script>";
|
||
die();
|
||
}
|
||
if($param==$login){
|
||
print"<script>location.href=\"main.php?act=inv§ion=thing&warning=6\";</script>";
|
||
die();
|
||
}
|
||
if($on1 == 0){
|
||
print"<script>location.href=\"main.php?act=inv§ion=thing&warning=7¶m=$param\";</script>";
|
||
die();
|
||
}
|
||
if($user_dat["room"]!=$res["room"]){
|
||
print"<script>location.href=\"main.php?act=inv§ion=thing&warning=8¶m=$param\";</script>";
|
||
die();
|
||
}
|
||
if(!empty($res["battle"])){
|
||
print"<script>location.href=\"main.php?act=inv§ion=thing&warning=9¶m=$param\";</script>";
|
||
die();
|
||
}
|
||
if($res["hp"] < '15'){
|
||
print"<script>location.href=\"main.php?act=inv§ion=thing&warning=10¶m=$param\";</script>";
|
||
die();
|
||
}
|
||
if($res["level"]=='0'){
|
||
print"<script>location.href=\"main.php?act=inv§ion=thing&warning=11\";</script>";
|
||
die();
|
||
}
|
||
if($param=='Мироздатель'){
|
||
print"<script>location.href=\"main.php?act=inv§ion=thing&warning=12¶m=$param\";</script>";
|
||
die();
|
||
}
|
||
$mine_id=$db["id"];
|
||
if(empty($ip))
|
||
{
|
||
if (getenv('HTTP_X_FORWARDED_FOR'))
|
||
{
|
||
$ip=getenv('HTTP_X_FORWARDED_FOR');
|
||
}
|
||
else
|
||
{
|
||
$ip=getenv('REMOTE_ADDR');
|
||
}
|
||
}
|
||
|
||
$SQL = mysql_query("UPDATE characters SET cast = cast+0.5,earth=earth+0.5 WHERE login='$login'");
|
||
$S = mysql_query("UPDATE inv SET iznos = iznos+1 WHERE id=$scroll");
|
||
$S_INV = mysql_query("SELECT * FROM inv WHERE id = $scroll");
|
||
$DATA = mysql_fetch_array($S_INV);
|
||
$iznos = $DATA["iznos"];
|
||
$tear_max = $DATA["tear_max"];
|
||
$iznos_k = $iznos+1;
|
||
if($iznos_k>=$tear_max){
|
||
$S_D = mysql_query("DELETE FROM inv WHERE id = $scroll");
|
||
}
|
||
if($shans>70){
|
||
print"<script>location.href=\"main.php?act=inv§ion=thing&warning=13\";</script>";
|
||
die();
|
||
}
|
||
|
||
|
||
$Z = mysql_query("INSERT INTO zayavka(status,type,timeout,creator) VALUES('3','1','3','$mine_id')");
|
||
$T1 = mysql_query("INSERT INTO team2(player,ip,battle_id,hitted,over) VALUES('$login','$ip','$mine_id','0','0')");
|
||
$T2 = mysql_query("INSERT INTO team1(player,ip,battle_id,hitted,over) VALUES('$param','unknown','$mine_id','0','0')");
|
||
goBattle($login);
|
||
goBattle($param);
|
||
|
||
|
||
}
|
||
|
||
?>
|