AntiBK/old/magic/lech.php
Ivor Barhansky 36bf662112 code-upload (#1)
Upload code

Изменил(а) на 'README.md'

Изменил(а) на 'README.md'

Reviewed-on: https://src.lopar.us/lopar/AntiBK/pulls/1
Co-Authored-By: Ivor Barhansky <lopar@noreply.lopar.us>
Co-Committed-By: Ivor Barhansky <lopar@noreply.lopar.us>
2021-02-11 16:13:04 +00:00

120 lines
4.1 KiB
PHP
Raw Permalink Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

<?
if(empty($param)){
?><br><p align=right><input type=button value="Вернуться" class=nav onclick="javascript:location.href='main.php?act=none'"></p>
<div align=center><br><br><br>
<table border=0 cellpadding=0 cellspacing=0 width=300><tr>
<td width=10><img src='img/cor_l_t.gif'></td><td bgcolor=#cccccc><img src='img/10_10.gif'></td><td width=10><img src='img/cor_r_t.gif'></td>
</table>
<table border=0 bgcolor=#cccccc cellpadding=0 cellspacing=0 width=300 height=60>
<tr><td align=left valign=top>
<form name='attack' action='?act=magic&school=earth&scroll=<?echo $scroll?>' method='post'>
<small>
&nbsp&nbspЗаклятие "Лечение травм"<BR>
</small>
&nbsp&nbspУкажите логин персонажа, которго Вы хотите вылечить:<BR>
&nbsp&nbsp<input type=text name='param' class=new style="width=200">
<BR>
&nbsp&nbsp<input type=submit value=" Напасть " class=new style="width=200">
</form>
</td></tr>
</table>
<table border=0 cellpadding=0 cellspacing=0 width=300><tr>
<td width=10><img src='img/cor_l_b.gif'></td><td bgcolor=#cccccc><img src='img/10_10.gif'></td><td width=10><img src='img/cor_r_b.gif'></td>
</table>
</div>
<?
}
else if($db["battle"]==0){
if (ereg("[<>\\/-]",$act) or ereg("[<>\\/-]",$school) or ereg("[<>\\/-]",$scroll) or ereg("[<>\\/-]",$param)) {print "?!"; exit();}
$act=htmlspecialchars($act);
$school=htmlspecialchars($school);
$scroll=htmlspecialchars($scroll);
$param=htmlspecialchars($param);
$S="select * from characters where login='$param'";
$q=mysql_query($S);
$res=mysql_fetch_array($q);
$on1 = 0;
$text ="";
$chas = date("H");
$date = date("H:i", mktime($chas-$GSM));
$sss = mysql_query("SELECT * FROM online");
while($D = mysql_fetch_array($sss)){
if($D["login"] == $param){
$on1 = 1;
}
}
$user_sql="SELECT * FROM characters WHERE login='$login'";
$user_q=mysql_query($user_sql);
$user_dat=mysql_fetch_array($user_q);
$shans = rand(0,100);
if(!$res){
print"<script>location.href=\"main.php?act=inv&section=thing&warning=4&param=$param\";</script>";
die();
}
if($res["travm"]==0){
print"<script>location.href=\"main.php?act=inv&section=thing&warning=5&param=$param\";</script>";
die();
}
if(empty($ip))
{
if (getenv('HTTP_X_FORWARDED_FOR'))
{
$ip=getenv('HTTP_X_FORWARDED_FOR');
}
else
{
$ip=getenv('REMOTE_ADDR');
}
}
$SQL = mysql_query("UPDATE characters SET cast = cast+0.5,earth=earth+0.5 WHERE login='$login'");
$S = mysql_query("UPDATE inv SET iznos = iznos+1 WHERE id=$scroll");
$S_INV = mysql_query("SELECT * FROM inv WHERE id = $scroll");
$DATA = mysql_fetch_array($S_INV);
$iznos = $DATA["iznos"];
$tear_max = $DATA["tear_max"];
$iznos_k = $iznos+1;
if($iznos_k>=$tear_max){
$S_D = mysql_query("DELETE FROM inv WHERE id = $scroll");
}
if($shans>50){
print"<script>location.href=\"main.php?act=inv&section=thing&warning=13\";</script>";
die();
}
$QUERY=mysql_query("SELECT * FROM characters WHERE login='$param'");
$data=mysql_fetch_array($QUERY);
$o_stat = $data['travm_old_stat'];
$t_stat = $data['travm_stat'];
$SQ = mysql_query("UPDATE characters SET $t_stat='$o_stat',travm='0' WHERE login='$param'");
$pref=$user_dat["sex"];
if($pref=="female"){
$prefix="а";
}
else{
$prefix="";
}
if($user_dat["orden"]==2){$opr="Тарман";}
else {$opr="Персонаж";}
if ($user_dat["orden"]==1){$opr="Паладин";}
$city = $user_dat["city_game"];
$time = time();
$room = $user_dat["room"];
$d=date("d.m.y H:i");
if($login!=$param){
$text = "от всех травм персонажа &quot$param&quot";
}
else{
$text = "себя от всех травм";
}
$masseg= "<i>$opr &quot$login&quot излечил$prefix $text.</i>";
mysql_query("INSERT INTO chat(date,name,room,msg,class,date_stamp,city) VALUES('$d','','$room','$masseg','sys','$time','$city')");
print"<script>location.href=\"main.php?act=inv&section=thing&warning=2\";</script>";
}
?>