if ($player->is_fed_protected()) { create_error("You are under federal protection! That wouldn't be fair."); } if (!$sector->has_port()) { create_error("There is no port in that sector!"); } // check if he got enough turns if ($player->get_info('turns') < 3) { create_error("You do not have enough turns to attack this port!"); } $db->query("SELECT * FROM ship_has_weapon NATURAL JOIN weapon_type " . "WHERE account_id = {$player->account_id} AND " . "game_id = {$player->game_id} " . "ORDER BY order_id"); if (!$db->next_record()) { //do we have drones to attack? $db->query("SELECT * FROM ship_has_hardware WHERE hardware_type_id = HARDWARE_COMBAT AND account_id = {$player->account_id} AND game_id = {$player->game_id}"); if (!$db->next_record()) { create_error("What are you gonna do? Insult it to death?"); } } //set the attack start time $time = time(); //only 1 shot per 2 seconds (stop double port raids) $db->lock("port_attack_times"); //init vars $db->query("SELECT * FROM port_attack_times WHERE game_id = {$player->game_id} AND sector_id = {$player->sector_id}"); if ($db->next_record()) { $att_time = $db->f("time"); } else { $att_time = 0; } while ($att_time + 2 >= $time) { usleep(50000);
<?php if ($account->isVeteran()) { create_error('You cannot join a newbie game, shooo!'); } require_once ENGINE . 'Default/game_join.php';
//(22,25,23,75,43,55,61,24,21,38,67,33,49) // Top racials minus ATM + top UG/FED are restricted if ($newShip['AlignRestriction'] == 2 && $player->getAlignment() > -100) { create_error('You can\'t buy smuggler ships!'); } if ($newShip['AlignRestriction'] == 1 && $player->getAlignment() < 100) { create_error('You can\'t buy federal ships!'); } if ($newShip['RaceID'] != 1 && $player->getRaceID() != $newShip['RaceID']) { create_error('You can\'t buy other race\'s ships!'); } /*if ($player->getAccountID() == 101) create_error('Cheaters do NOT get ships!');*/ // do we have enough cash? if ($player->getCredits() < $cost) { create_error('You do not have enough cash to purchase this ship!'); } // adapt turns $player->setTurns(round($player->getTurns() * $newShip['Speed'] / $ship->getSpeed())); //Don't times by game speed as getSpeed doesn't include it meaning ratio will be the same but less work. // take the money from the user if ($cost > 0) { $player->decreaseCredits($cost); } else { $player->increaseCredits(-$cost); } // assign the new ship $ship->decloak(); $ship->disableIllusion(); $ship->setShipTypeID($shipID); // update again
} // now transfer $planet->shields += $amount; $ship->hardware[1] -= $amount; $account->log(11, "Player puts {$amount} shields on planet.", $player->sector_id); // do the user wants to transfer drones? } else { if ($type_id == 4) { // do we want transfer more than we have? if ($amount > $ship->hardware[4]) { create_error("You can't transfer more combat drones than you carry!"); } // do we want to transfer more than we can carry? if ($amount + $planet->drones > $planet->construction[2] * 20) { create_error("The planet can't hold more than " . $planet->construction[2] * 20 . " drones!"); } // now transfer $planet->drones += $amount; $ship->hardware[4] -= $amount; $account->log(11, "Player puts {$amount} drones on planet.", $player->sector_id); } } } else { create_error("You must choose if you want to transfer to planet or to the ship!"); } $ship->mark_seen(); // update both $planet->update(); $ship->update_hardware(); $ship->mark_seen(); forward(create_container("skeleton.php", "planet_defense.php"));
} } else { create_error($access_token, 'PHP', 'init_user.php', 'No user found.', $db); die('No user found.'); } $result_token = mysql_query("select * from access_token where token = '" . $keyTok . "'", $db); $row_token = mysql_fetch_array($result_token, MYSQL_ASSOC); if ($row_user['password'] == $password) { $row_array['accessTok'] = $row_token['token']; $row_array['username'] = $row_user['username']; $row_array['email'] = $row_user['email']; } else { create_error($access_token, 'PHP', 'init_user.php', 'Wrong password!', $db); die('Wrong password!'); } $session_get_query = mysql_query("select * from session where user_id = '" . $userId . "'", $db); if (mysql_num_rows($session_get_query) > 0) { } else { $session_insert_query = mysql_query("insert into session (user_id) values('" . $userId . "')", $db); } if (!$session_get_query || mysql_num_rows($session_get_query) <= 0) { create_error($access_token, 'PHP', 'init_user.php', 'No session found', $db); die('No session found'); } $session_get_row = mysql_fetch_array($session_get_query, MYSQL_ASSOC); $sessionId = $session_get_row['id']; $time_of_creation = date("Y/m/d H:i:s"); $history_insert_query = mysql_query("insert into history (session_id,time_of_creation) values('" . $sessionId . "','" . $time_of_creation . "')", $db); echo json_encode($row_array); //Close the database connection mysql_close($db);
<?php $notify_id = $_REQUEST['notify_id']; if (!isset($notify_id)) { create_error('You must choose the messages you want to delete.'); } $db->query('DELETE FROM message_notify WHERE notify_id IN (' . $db->escapeArray($notify_id) . ')'); forward(create_container('skeleton.php', 'notify_view.php'));
} else { if ($var['task'] == 'reset_website') { $db->query('UPDATE album SET website = \'\' WHERE account_id = ' . $db->escapeNumber($account_id)); } else { if ($var['task'] == 'reset_birthdate') { $db->query('UPDATE album SET day = 0, month = 0, year = 0 WHERE account_id = ' . $db->escapeNumber($account_id)); } else { if ($var['task'] == 'reset_other') { $db->query('UPDATE album SET other = \'\' WHERE account_id = ' . $db->escapeNumber($account_id)); } else { if ($var['task'] == 'delete_comment') { $comment_ids = $_REQUEST['comment_ids']; // we just ignore if nothing was set if (count($comment_ids) > 0) { $db->query('DELETE FROM album_has_comments WHERE album_id = ' . $db->escapeNumber($account_id) . ' AND comment_id IN (' . $db->escapeArray($comment_ids) . ')'); } } else { create_error('No action chosen!'); } } } } } } } $container = create_container('skeleton.php', 'album_moderate.php'); transfer('account_id'); forward($container);
<?php if (isset($var['alliance_id'])) { $alliance_id = $var['alliance_id']; } else { $alliance_id = $player->alliance_id; } define('WITHDRAW', 0); define('DEPOSIT', 1); print_topic('Alliance Bank Report'); include get_file_loc('menue.inc'); print_bank_menue(); //get all transactions $db->query("SELECT * FROM alliance_bank_transactions WHERE alliance_id = {$alliance_id} AND game_id = {$player->game_id}"); if (!$db->nf()) { create_error("Your alliance has no recorded transactions"); } while ($db->next_record()) { if ($db->f("transaction") == 'Payment') { if (!$db->f("exempt")) { $trans[$db->f("payee_id")][WITHDRAW] += $db->f("amount"); } else { $trans[0][WITHDRAW] += $db->f("amount"); } } else { if (!$db->f("exempt")) { $trans[$db->f("payee_id")][DEPOSIT] += $db->f("amount"); } else { $trans[0][DEPOSIT] += $db->f("amount"); } }
function getFleet(&$players, &$weapons) { if (DEBUG) { print "Get Fleet<br>"; } global $db, $session, $player; $player_ids = array_keys($players); $fleet = array(); // Is there a fed beacon in the sector? $db->query('SELECT location_type_id FROM location WHERE location_type_id=201 AND sector_id=' . $player->sector_id . ' AND game_id=' . SmrSession::$game_id . ' LIMIT 1'); if ($db->next_record()) { $have_beacon = TRUE; $db->query('SELECT account_id FROM ship_has_cargo WHERE good_id IN (5,9,12) AND game_id=' . SmrSession::$game_id . ' AND account_id IN (' . implode(',', $player_ids) . ')'); while ($db->next_record()) { $illegal_goods[$db->f('account_id')] = TRUE; } } else { $have_beacon = FALSE; } foreach ($player_ids as $account_id) { // Remove players that are fed protected from the fighting if ($have_beacon && !isset($illegal_goods[$account_id]) && protected_rating($account_id, $players, $weapons)) { // Player and their target must not have dropped into fed protection if ($account_id == $player->account_id) { create_error("You are under federal protection"); } unset($players[$account_id]); } else { if ($account_id != $player->account_id) { // We add the player and target to the fleet after capping if ($players[$account_id][ALLIANCE_ID] == $player->alliance_id) { $fleet[] = $account_id; } else { $fleet[] = $account_id; } } } } // Cap fleet to the required size $fleet_size = count($fleet); if ($fleet_size > MAXIMUM_FLEET_SIZE - 1) { // We shuffle to stop the same people being capped all the time shuffle($fleet); $temp = array(); $count = 0; for ($j = 0; $j < $fleet_size; ++$j) { if ($count < MAXIMUM_FLEET_SIZE - 1) { $temp[] = $fleet[$j]; } else { unset($players[$fleet[$j]]); } ++$count; } $fleet = $temp; } // Add the inital combatants to their respective fleets $fleet[] = (int) SmrSession::$old_account_id; // Shuffle for random firing order shuffle($fleet); return $fleet; }
} $row_user = mysql_fetch_array($user, MYSQL_ASSOC); $userId = $row_user['user_id']; $gallery = mysql_query("select * from user where id = '" . $userId . "' and exclude = '0'", $db); if (!$gallery || mysql_num_rows($gallery) <= 0) { create_error($access_token, 'PHP', 'set_artist_status.php', 'No gallery found', $db); die('No gallery found'); } $row_gallery = mysql_fetch_array($gallery, MYSQL_ASSOC); $galleryId = $row_gallery['gallery_id']; if ($artist_status == 'true') { $artist_update = mysql_query("update artist set display='1' where id='" . $artistId . "' and gallery_id='" . $galleryId . "'", $db); $artwork_update = mysql_query("update artwork set display='1' where artist_id='" . $artistId . "'", $db); if (!$artwork_update) { create_error($access_token, 'PHP', 'set_artist_status.php', 'Not able to update the status of the artwork', $db); die('Not able to update the status of the artwork'); } } else { $artist_update = mysql_query("update artist set display='0' where id='" . $artistId . "' and gallery_id='" . $galleryId . "'", $db); $artwork_update = mysql_query("update artwork set display='0' where artist_id='" . $artistId . "'", $db); if (!$artwork_update) { create_error($access_token, 'PHP', 'set_artist_status.php', 'Not able to update the status of the artwork', $db); die('Not able to update the status of the artwork'); } } if (!$artist_update) { create_error($access_token, 'PHP', 'set_artist_status.php', 'Not able to update the status of the artist', $db); die('Not able to update the status of the artist'); } //Close the database connection mysql_close($db);
$db_name = $ini_array['db_name']; $db_username = $ini_array['db_username']; $db_password = $ini_array['db_password']; ########################################## $db = mysql_connect($db_ip, $db_username, $db_password) or die("Could not connect"); mysql_select_db($db_name) or die("Could not select database"); include 'create_error.php'; //Get all information $access_token = $_POST['access_token']; if (!isset($access_token)) { create_error('-', 'PHP', 'get_information.php', 'Access Token is Missing!', $db); die('Access Token ID is Missing!'); } $access = mysql_query("select * from access_token where token = '" . $access_token . "'", $db); if (!$access || mysql_num_rows($access) <= 0) { create_error($access_token, 'PHP', 'get_information.php', 'No user found', $db); die('No user found'); } $access_row = mysql_fetch_array($access, MYSQL_ASSOC); $userId = $access_row['user_id']; $infoForGallery = mysql_query("select * from info_for_user inner join information on info_for_user.info_id = information.id where user_id = '" . $userId . "'", $db); $json_response_infos = array(); while ($row_infoForGallery = mysql_fetch_array($infoForGallery, MYSQL_ASSOC)) { $row_array['id'] = $row_infoForGallery['info_id']; $row_array['time'] = $row_infoForGallery['time']; $row_array['message'] = $row_infoForGallery['message']; array_push($json_response_infos, $row_array); } echo json_encode($json_response_infos); //Close the database connection mysql_close($db);
die('No session found'); } $session_row = mysql_fetch_array($session, MYSQL_ASSOC); $row_options['session'] = $session_row['id']; $user = mysql_query("select * from user where id = '" . $userId . "' and exclude = '0'", $db); if (!$user || mysql_num_rows($user) <= 0) { create_error($access_token, 'PHP', 'get_errors.php', 'No user found', $db); die('No user found'); } $user_row = mysql_fetch_array($user, MYSQL_ASSOC); $galleryId = $user_row['gallery_id']; $optionId = $user_row['settings_id']; $sectionId = $user_row['section_id']; $section = mysql_query("select * from section where id = '" . $sectionId . "'", $db); if (!$section || mysql_num_rows($section) <= 0) { create_error($access_token, 'PHP', 'get_errors.php', 'No section found', $db); die('No section found'); } $section_row = mysql_fetch_array($section, MYSQL_ASSOC); $sectionRef = $section_row['ref']; if ($sectionRef == 1000 || $sectionRef == '1000') { $result_errors = mysql_query("select * from error", $db); $json_response_errors = array(); while ($row = mysql_fetch_array($result_errors, MYSQL_ASSOC)) { $row_array['id'] = $row['id']; $row_array['reference'] = $row['reference']; $row_array['source_file'] = $row['source']; $row_array['time'] = $row['time']; $row_array['message'] = utf8_encode($row['message']); $result_user = mysql_query("select user.username as username, gallery.name as gallery_name from user inner join gallery on user.gallery_id = gallery.id where user.id = '" . $row_array['user_id'] . "'", $db); $user_row = mysql_fetch_array($section, MYSQL_ASSOC);
<?php $action = $_REQUEST['action']; if ($action == 'Skip >>') { $container = array(); $container['url'] = 'skeleton.php'; $container['body'] = 'universe_create_ports.php'; $container['game_id'] = $var['game_id']; forward($container); } $id = $_REQUEST['id']; if (!isset($id)) { create_error('Error while transmitting data from previous form!'); } include get_file_loc('universe_create_location.inc'); foreach ($id as $location_type_id => $location_array) { // first we deal with race HQ if ($location_type_id == GOVERNMENT) { foreach ($location_array as $galaxy_id => $hq_type) { // 1 means no hq if ($hq_type == 1) { continue; } // put actual hq in $hq_sector = create_location($var['game_id'], $galaxy_id, GOVERNMENT + $hq_type); // ship shop and co (for racials only) create_location($var['game_id'], $galaxy_id, RACIAL_SHIPS + $hq_type - 1, $hq_sector); create_location($var['game_id'], $galaxy_id, RACIAL_SHOPS + $hq_type - 1, $hq_sector); // create fed around hq create_fed($var['game_id'], $galaxy_id, $hq_sector); }
<?php $sector =& $player->getSector(); if (!$sector->isLinked($var['target_sector']) && $sector->getSectorID() != $var['target_sector']) { create_error('You cannot scan a sector you are not linked to.'); } // initialize vars $scanSector =& SmrSector::getSector($player->getGameID(), $var['target_sector']); $template->assign('PageTopic', 'Sector Scan of #' . $scanSector->getSectorID() . ' (' . $scanSector->getGalaxyName() . ')'); $friendly_forces = 0; $enemy_forces = 0; $friendly_vessel = 0; $enemy_vessel = 0; // iterate over all forces in the target sector $scanSectorAllForces =& $scanSector->getForces(); foreach ($scanSectorAllForces as &$scanSectorForces) { // decide if it's a friendly or enemy stack if ($player->sameAlliance($scanSectorForces->getOwner())) { $friendly_forces += $scanSectorForces->getMines() * 3 + $scanSectorForces->getCDs() * 2 + $scanSectorForces->getSDs(); } else { $enemy_forces += $scanSectorForces->getMines() * 3 + $scanSectorForces->getCDs() * 2 + $scanSectorForces->getSDs(); } } unset($scanSectorForces); $scanSectorPlayers =& $scanSector->getOtherTraders($player); foreach ($scanSectorPlayers as &$scanSectorPlayer) { $scanSectorShip =& $scanSectorPlayer->getShip(); // he's a friend if he's in our alliance (and we are not in a 0 alliance if ($player->traderMAPAlliance($scanSectorPlayer)) { $friendly_vessel += $scanSectorShip->getAttackRating(); } else {
<?php if (!$player->isLandedOnPlanet()) { create_error('You are not on a planet!'); } // create planet object $planet =& $player->getSectorPlanet(); $template->assign('PageTopic', 'Planet : ' . $planet->getName() . ' [Sector #' . $planet->getSectorID() . ']'); require_once get_file_loc('menu.inc'); create_planet_menu($planet); $PHP_OUTPUT .= '<p>There are no goods present on your ship or the planet!</p>'; $present = false; $table .= '<p>'; $table .= '<table class="standard">'; $table .= '<tr>'; $table .= '<th></th>'; $table .= '<th>Good</th>'; $table .= '<th>Ship</th>'; $table .= '<th>Planet</th>'; $table .= '<th>Amount</th>'; $table .= '<th>Transfer to</th>'; $table .= '</tr>'; $GOODS =& Globals::getGoods(); foreach ($GOODS as $goodID => $good) { if (!$ship->hasCargo($goodID) && !$planet->hasStockpile($goodID)) { continue; } if (!$present) { $present = true; $PHP_OUTPUT = ""; }
$section_row = mysql_fetch_array($section, MYSQL_ASSOC); $sectionRef = $section_row['ref']; $gallery = mysql_query("select * from gallery where id = '" . $galleryId . "'", $db); if (!$gallery || mysql_num_rows($gallery) <= 0) { create_error($access_token, 'PHP', 'get_user.php', 'No gallery found', $db); die('No gallery found'); } $gallery_row = mysql_fetch_array($gallery, MYSQL_ASSOC); $galleryName = $gallery_row['name']; $galleryLocation = $gallery_row['city']; $row_user['name'] = $userName; $row_user['email'] = $userEmail; $row_user['username'] = $userUsername; $row_user['location'] = $galleryLocation; $row_user['gallery_name'] = $galleryName; $row_user['group'] = $sectionRef; $artists = mysql_query("select * from artist where gallery_id = '" . $galleryId . "'", $db); $artworks_qty = 0; if (!$artists) { create_error($access_token, 'PHP', 'get_user.php', 'No artists found', $db); die('No artists found'); } $row_user['qty_artists'] = mysql_num_rows($artists); while ($row_artists = mysql_fetch_array($artists, MYSQL_ASSOC)) { $result_artworks = mysql_query("select * from artwork where artist_id= '" . $row_artists['id'] . "'", $db); $artworks_qty = $artworks_qty + 1; } $row_user['qty_artworks'] = $artworks_qty; echo json_encode($row_user); //Close the database connection mysql_close($db);
VALUES(' . $db->escapeNumber(SmrSession::$account_id) . ', ' . $db->escapeNumber($gameID) . ', 1, ' . $db->escapeNumber($amount_shields) . ', ' . $db->escapeNumber($amount_shields) . ')'); // give the player armour $db->query('INSERT INTO ship_has_hardware (account_id, game_id, hardware_type_id, amount, old_amount) VALUES(' . $db->escapeNumber(SmrSession::$account_id) . ', ' . $db->escapeNumber($gameID) . ', 2, ' . $db->escapeNumber($amount_armour) . ', ' . $db->escapeNumber($amount_armour) . ')'); // give the player cargo hold $db->query('INSERT INTO ship_has_hardware (account_id, game_id, hardware_type_id, amount, old_amount) VALUES(' . $db->escapeNumber(SmrSession::$account_id) . ', ' . $db->escapeNumber($gameID) . ', 3, 40, 40)'); // give the player weapons $db->query('INSERT INTO ship_has_weapon (account_id, game_id, order_id, weapon_type_id) VALUES(' . $db->escapeNumber(SmrSession::$account_id) . ', ' . $db->escapeNumber($gameID) . ', 0, 46)'); // insert the huge amount of sectors into the database :) $db->query('SELECT MIN(sector_id), MAX(sector_id) FROM sector WHERE game_id = ' . $db->escapeNumber($gameID)); if (!$db->nextRecord()) { create_error('This game doesn\'t have any sectors'); } $min_sector = $db->getInt('MIN(sector_id)'); $max_sector = $db->getInt('MAX(sector_id)'); for ($i = $min_sector; $i <= $max_sector; $i++) { //if this is our home sector we dont add it. if ($i == $home_sector_id) { continue; } $db->query('INSERT INTO player_visited_sector (account_id, game_id, sector_id) VALUES (' . $db->escapeNumber(SmrSession::$account_id) . ', ' . $db->escapeNumber($gameID) . ', ' . $db->escapeNumber($i) . ')'); } $db->query('INSERT INTO player_has_stats (account_id, game_id) VALUES (' . $db->escapeNumber(SmrSession::$account_id) . ', ' . $db->escapeNumber($gameID) . ')'); // update stats $db->query('UPDATE account_has_stats SET games_joined = games_joined + 1 WHERE account_id = ' . $db->escapeNumber($account->getAccountID())); // is this our first game? $db->query('SELECT * FROM account_has_stats WHERE account_id = ' . $db->escapeNumber($account->getAccountID()));
<?php $accountIDs = $_REQUEST['account_id']; if (empty($accountIDs)) { create_error('You have to choose someone to remove them!'); } if (in_array($player->getAlliance()->getLeaderID(), $accountIDs)) { create_error('You can\'t kick the leader!'); } if (in_array($player->getAccountID(), $accountIDs)) { create_error('You can\'t kick yourself!'); } foreach ($accountIDs as $accountID) { $currPlayer =& SmrPlayer::getPlayer($accountID, $player->getGameID()); if (!$player->sameAlliance($currPlayer)) { throw new Exception('Cannot kick someone from another alliance!'); } $currPlayer->leaveAlliance($player); } forward(create_container('skeleton.php', 'alliance_roster.php'));
function getImgOverviewPath($galleryDirectory, $imgName) { $imgName = $imgName . '_sm'; $imgPath = ''; if ($handle = opendir($galleryDirectory)) { while (false !== ($file = readdir($handle))) { if (strpos($file, $imgName) !== false) { $img = $galleryDirectory . $file; $imgData = base64_encode(file_get_contents($img)); $imgPath = 'data: ' . get_type($img) . ';base64,' . $imgData; } } closedir($handle); } else { create_error($access_token, 'PHP', 'create_artist_img.php', 'No image found in the gallery directory', $db); die('No image found in the gallery directory'); } return $imgPath; }
<?php $db->query('SELECT 1 FROM draft_leaders WHERE game_id=' . $db->escapeNumber($player->getGameID()) . ' AND account_id=' . $db->escapeNumber($player->getAccountID())); if ($db->nextRecord()) { require_once ENGINE . 'Default/alliance_create_processing.php'; } else { create_error('You cannot create an alliance in a draft game.'); }
<?php if (empty($_REQUEST['webboard']) || empty($_REQUEST['ircnick']) || empty($_REQUEST['started']) || empty($_REQUEST['reasons']) || empty($_REQUEST['time']) || empty($_REQUEST['online'])) { create_error('You must fill in all the fields!'); } $new_sub = 'Beta Application'; $message = 'Login: '******'-----------' . EOL . EOL . 'Account ID: ' . $account->getAccountID() . EOL . EOL . '-----------' . EOL . EOL . 'E-Mail: ' . $account->getEmail() . EOL . EOL . '-----------' . EOL . EOL . 'Webboard Name: ' . $_REQUEST['webboard'] . EOL . EOL . '-----------' . EOL . EOL . 'IRC Nick: ' . $_REQUEST['ircnick'] . EOL . EOL . '-----------' . EOL . EOL . 'Start Time: ' . $_REQUEST['started'] . EOL . EOL . '-----------' . EOL . EOL . 'Reasons: ' . $_REQUEST['reasons'] . EOL . EOL . '-----------' . EOL . EOL . 'Time spent on beta: ' . $_REQUEST['time'] . EOL . EOL . '-----------' . EOL . EOL . 'Online time: ' . $_REQUEST['online']; //mail('*****@*****.**', // $new_sub, // $message, // 'From: '.$account->getEmail()); $player->sendMessageToBox(BOX_BETA_APPLICATIONS, $message); $container = array(); $container['url'] = 'skeleton.php'; if (SmrSession::$game_id > 0) { if ($player->isLandedOnPlanet()) { $container['body'] = 'planet_main.php'; } else { $container['body'] = 'current_sector.php'; } } else { $container['body'] = 'game_play.php'; } forward($container);
<?php // Why is this here? Is there a reason? // sleep(1); if ($var['action'] == 'Enable') { $ship->enable_cloak(); } elseif ($var['action'] == 'Disable') { $ship->disable_cloak(); } elseif ($var['action'] == 'Set Illusion') { if (!is_numeric($_REQUEST['ship_id']) || !is_numeric($_REQUEST['attack']) || !is_numeric($_REQUEST['defense'])) { create_error('Numbers only please'); } $ship->set_illusion($_REQUEST['ship_id'], $_REQUEST['attack'], $_REQUEST['defense']); } elseif ($var['action'] == 'Disable Illusion') { $ship->disable_illusion(); } $container = array(); $container['url'] = 'skeleton.php'; if ($player->land_on_planet == 'TRUE') { $container['body'] = 'planet_main.php'; } else { $container['body'] = 'current_sector.php'; } forward($container);
<?php $account_id = $_REQUEST['account_id']; $exception = $_REQUEST['exception']; if (!is_array($account_id)) { create_error('Please check the boxes next to the names you wish to open.'); } $action = $_REQUEST['action']; if ($action == 'Reopen and add to exceptions') { foreach ($account_id as $id) { $curr_exception = $exception[$id]; $bannedAccount =& SmrAccount::getAccount($id); $bannedAccount->unbanAccount($account, $curr_exception); } } else { foreach ($account_id as $id) { $bannedAccount =& SmrAccount::getAccount($id); $bannedAccount->unbanAccount($account); } } forward(create_container('skeleton.php', 'admin_tools.php'));
$location = $_POST['gallery_location']; if (!isset($access_token)) { create_error('-', 'I-100', 'set_user.php', 'Access Token is Missing!', $db); die('Access Token ID is Missing!'); } $user = mysql_query("select * from access_token where token = '" . $access_token . "'", $db); if (!$user || mysql_num_rows($user) <= 0) { create_error($access_token, 'I-100', 'set_user.php', 'No user found', $db); die('No user found'); } $row = mysql_fetch_array($user, MYSQL_ASSOC); $userId = $row['user_id']; $gallery = mysql_query("select * from user where id = '" . $userId . "' and exclude = '0'", $db); if (!$gallery || mysql_num_rows($gallery) <= 0) { create_error($access_token, 'I-100', 'set_user.php', 'No gallery found', $db); die('No gallery found'); } $row = mysql_fetch_array($gallery, MYSQL_ASSOC); $galleryId = $row['gallery_id']; $sql_user = mysql_query("update user set username = '******', name ='" . $name . "' where id='" . $userId . "'", $db); if (!$sql_user) { create_error($access_token, 'I-250', 'set_user.php', 'Not able to find or update the user', $db); die('Not able to find or update the user'); } $sql_gallery = mysql_query("update gallery set name = '" . $gallery_name . "', location = '" . $location . "' where id='" . $galleryId . "'", $db); if (!$sql_gallery) { create_error($access_token, 'I-200', 'set_user.php', 'Not able to find or update the gallery', $db); die('Not able to find or update the gallery'); } //Close the database connection mysql_close($db);
<?php $action = $_REQUEST['action']; if ($action == 'Marked Messages') { if (!isset($_REQUEST['message_id'])) { create_error('You must choose the messages you want to delete.'); } foreach ($_REQUEST['message_id'] as $id) { $db->query('DELETE FROM message_boxes WHERE message_id = ' . $db->escapeNumber($id)); } } else { if ($action == 'All Messages') { if (!isset($var['box_type_id'])) { create_error('No box selected.'); } $db->query('DELETE FROM message_boxes WHERE box_type_id = ' . $db->escapeNumber($var['box_type_id'])); } } forward(create_container('skeleton.php', 'box_view.php'));
$amount = $_REQUEST['amount']; if (!is_numeric($amount)) { create_error("Numbers only please"); } if ($amount <= 0) { create_error("You must actually enter an ammount > 0!"); } //lets make sure there is actually that much on the ship if ($amount > $ship->cargo[$good_id]) { create_error("You can't dump more than you have."); } if ($sector->has_fed_beacon()) { create_error("You can't dump cargo in a Federal Sector!"); } if ($player->turns < 1) { create_error("You do not have enough turns to dump cargo!"); } require_once "shop_goods.inc"; // get the distance $good_distance = get_good_distance($good_id, "Buy"); $lost_xp = (round($amount / 30) + 1) * 2 * $good_distance; $player->experience -= $lost_xp; if ($player->experience < 0) { $player->experience = 0; } // take turn $player->take_turns(1); $player->update(); $ship->cargo[$good_id] -= $amount; $ship->update_cargo(); // log action
//Get all artists $access_token = $_POST['access_token']; if (!isset($access_token)) { create_error('-', 'PHP', 'get_artists.php', 'Access Token is Missing!', $db); die('Access Token ID is Missing!'); } $access = mysql_query("select * from access_token where token = '" . $access_token . "'", $db); if (!$access || mysql_num_rows($access) <= 0) { create_error($access_token, 'PHP', 'get_artists.php', 'No access found', $db); die('No access found'); } $access_row = mysql_fetch_array($access, MYSQL_ASSOC); $userId = $access_row['user_id']; $user = mysql_query("select * from user where id = '" . $userId . "' and exclude = '0'", $db); if (!$user || mysql_num_rows($user) <= 0) { create_error($access_token, 'PHP', 'get_artists.php', 'No user found', $db); die('No user found'); } $user_row = mysql_fetch_array($user, MYSQL_ASSOC); $galleryId = $user_row['gallery_id']; $galleryFolder = 'gallery_' . $galleryId . '/'; $galleryDirectory = $destination_folder . $galleryFolder; $result_artists = mysql_query("select * from artist where gallery_id = '" . $galleryId . "'", $db); $json_response_artists = array(); while ($row = mysql_fetch_array($result_artists, MYSQL_ASSOC)) { $row_array['id'] = $row['id']; $row_array['slug'] = $row['id']; $row_array['name'] = utf8_encode($row['name']); $row_array['imgName'] = utf8_encode($row['img']); $row_array['imgPath'] = getImgPath($galleryFolder, $galleryDirectory, utf8_encode($row['img'])); $row_array['imgOverviewPath'] = getImgOverviewPath($galleryDirectory, utf8_encode($row['img']));
<?php require_once get_file_loc("smr_planet.inc"); $planet = new SMR_PLANET($player->sector_id, $player->game_id); $planet_player = new SMR_PLAYER($var["account_id"], SmrSession::$game_id); $owner = new SMR_PLAYER($planet->owner_id, $player->game_id); if ($owner->alliance_id != $player->alliance_id) { create_error("You can not kick someone off a planet your alliance does not own!"); } $message = "You have been kicked from {$planet->planet_name} in #{$player->sector_id}"; $player->send_message($planet_player->account_id, 2, format_string($message, false)); $planet_player->land_on_planet = "FALSE"; //update their last active time so that they are visable if kicked $worst = time() - 1500; if ($planet_player->last_active < $worst) { $planet_player->last_active = $worst; } $planet_player->update(); forward(create_container("skeleton.php", "planet_main.php"));
$db->query('SELECT location_name FROM location JOIN location_type USING(location_type_id) WHERE location_type_id > ' . $db->escapeNumber(UNDERGROUND) . ' AND location_type_id < ' . $db->escapeNumber(FED) . ' AND game_id = ' . $db->escapeNumber($var['game_id']) . ' ORDER BY location_type_id'); while ($db->nextRecord()) { // get the name for this race // HACK! cut ' HQ' from location name! $race_name = substr($db->getField('location_name'), 0, -3); // get race id for this race $db2->query('SELECT race_id FROM race WHERE race_name = ' . $db->escapeString($race_name) . ' LIMIT 1'); if ($db2->nextRecord()) { $race_id = $db2->getField('race_id'); } else { create_error('Couldn\'t find the ' . $race_name . ' in database!'); } if (in_array($race_id, $only)) { continue; } $only[] = $race_id; // hack for the user mrspock if ($player_name == 'MrSpock' && $race_name == 'Salvene') { $selected = ' selected="selected"'; } else { $selected = ''; } $PHP_OUTPUT .= '<option value="' . $race_id . '"' . $selected . '>' . $race_name . '</option>'; } $PHP_OUTPUT .= '</select><br><br><br>'; $PHP_OUTPUT .= '</p>';
<?php create_error('Please use main album edit.'); print_topic("Edit Photo"); print "<p><span style=\"font-size:80%;\">Here you have a chance to add an entry to the Space Merchant Realms - The Photo Album!<br>"; print "We only accept jpg or gif images to a maximum of 500 x 500 in size.<br>"; print "Your image will be posted under your <i>Hall Of Fame</i> nick!<br>"; print "<b>Please Note:</b> Your entry needs to be approved by an admin before going online</p>"; print "<p style=\"font-size:150%;\">"; print "Status of your album entry: "; $db->query("SELECT * FROM album WHERE account_id = " . SmrSession::$old_account_id); if ($db->next_record()) { $location = stripslashes($db->f("location")); $email = stripslashes($db->f("email")); $website = stripslashes($db->f("website")); $day = $db->f("day"); $month = $db->f("month"); $year = $db->f("year"); $other = stripslashes($db->f("other")); $approved = $db->f("approved"); $disabled = $db->f("disabled"); if ($approved == "TBC") { print "<span style=\"color:orange;\">Waiting approval</span>"; } elseif ($approved == "NO") { print "<span style=\"color:red;\">Approval denied</span>"; } elseif ($disabled == "TRUE") { print "<span style=\"color:red;\">Disabled</span>"; } elseif ($approved == "YES") { print "<a href=\"" . URL . "/album/?{$account->HoF_name}\" style=\"color:green;\">Online</a>"; } } else {