<?php
// Fájl ellenõrzése
if (!isset($mysql_connect)) {
exit;
}
file_check("logged");
?>
<table class="body3" cellspacing="0" cellpadding="0">
<tr>
<td class="body3-title">
Gestión de Expansiones para el Reino Vesperia<img class="nav-icon" src="<?php
echo theme_file("images/icons/page.png");
?>
" alt="Account adatok (Bejelentkezve: <?php
echo $user_check_accountname;
?>
)" />
</td>
</tr>
<tr>
<td class="body3-body">
<table class="location-info" cellspacing="0" cellpadding="0">
<tr>
<td class="location-info-img">
<img src="<?php
<?php
// Fájl ellenõrzése
if (!isset($mysql_connect)) {
exit;
}
file_check("logged,vip,vipmodule");
?>
<table class="nav" cellspacing="0" cellpadding="0">
<tr>
<td>
<ul class="nav">
<li class="nav-title">Cuenta VIP<img class="nav-icon" src="<?php
echo theme_file("images/icons/ruby.png");
?>
" alt="VIP részleg" /></li>
<?php
if ($wam_vip_enable_additem == "1") {
echo '<li><a href="?id=add-item">Objetos</a></li>
<div class="dotted-line"></div>';
}
if ($wam_vip_enable_addlevel == "1") {
echo '<li><a href="?id=add-level">Niveles</a></li>
<div class="dotted-line"></div>';
}
if ($wam_vip_enable_addmoney == "1") {
echo '<li><a href="?id=add-money">Oro</a></li>
<div class="dotted-line"></div>';
<?php
// Fájl ellenõrzése
if (!isset($mysql_connect)) {
exit;
}
file_check("notlogged");
// Felugró ablak
if (!empty($site_popup)) {
echo '<script type="text/javascript">alert("' . $site_popup . '");</script>';
}
// Inputok kitöltésének ellenõrzése
if (!empty($_POST["username"]) && !empty($_POST["password"]) && !empty($_POST["worktime"])) {
// Posztolt adatok átalakítása
$post_login_username = variable($_POST["username"], "strtoupper", "db");
$post_login_password = variable($_POST["password"], "strtoupper", "db");
$login_password = sha_pass_hash($post_login_username, $post_login_password);
// Account kikeresése
$query_login = db_query("SELECT COUNT(*) FROM account WHERE sha_pass_hash = '" . $login_password . "'");
$results_login = mysqli_fetch_array($query_login);
// Nombre de Cuenta és jelszó ellenõrzése
if ($results_login[0] == 0) {
site_log("bad-login-form", "IP: " . $site_ip . " | Nombre de Cuenta: " . $post_login_username . " | Fecha: " . $site_date . "");
system_message("El nombre de cuenta o la contraseña no es válida!");
}
// Posztolt munkamenet átalakítása
switch ($_POST["worktime"]) {
case "5h":
$worktime_login = 18000;
break;
case "2h":
<?php
include 'includes/function.php';
include 'includes/session_define.php';
include 'includes/header.php';
include 'includes/menu.php';
include "includes/cms_call.php";
include "../cms/array.php";
$error = "";
$flag = 3;
if (isset($_FILES["file"])) {
//echo "<pre>";print_r($_FILES);
$result = file_check($_FILES);
if ($result == "success") {
$dbc = dbConnect('local');
$call_file = $_FILES;
$stu_result = add_students_from_csv($call_file);
if ($stu_result == 1) {
$flag = 1;
} elseif ($stu_result == 0) {
$flag = 0;
$error = "Format of CSV file is not correct";
} else {
$flag = 0;
//print_r($stu_result);
}
} else {
$error = $result;
}
}
?>
<?php
// Datei Prüfen
if (!isset($mysql_connect)) {
exit;
}
file_check("logged,vip,vipmodule,charrename");
// Der Anschluss an das Zeichen Datenbank
db_select($mysql_db_characters);
// Charaktere anfordern
$query_charrename_characters = db_query("SELECT guid, name FROM characters WHERE account = '" . $user_check_accountid . "' ORDER BY name ASC");
// Überprüfen der Fertigstellung der Eingänge
if (!empty($_POST["newname"]) && !empty($_POST["mycharacter"])) {
// Posztolt Datenkonvertierung
$post_charrename_newname = variable($_POST["newname"], "strtolower,ucfirst", "db");
$post_charrename_mycharacter = variable($_POST["mycharacter"], "", "db");
// Prüfung der Verwendbarkeit ist
$char_check_query = db_query("SELECT COUNT(*) FROM characters WHERE name = '" . $post_charrename_newname . "'");
$char_check = mysqli_fetch_array($char_check_query);
if ($char_check[0] != 0) {
system_message("Dieser Name wird bereits von jemand anderem verwendet!");
}
// Inputok ellenõrzése
string_check($post_charrename_newname, 12, ">", "Der neue Name ist zu lang!");
string_check($post_charrename_newname, 2, "<", "Der neue Name ist zu kurz!");
string_check($post_charrename_newname, "^[a-zA-Z%]+\$", "!error", "Der neue Name enthält Zeichen, die nicht erlaubt sind!");
string_check($post_charrename_mycharacter, "^[0-9%]+\$", "!error", "Der Wert der schlechten Charakter Eingang!");
string_check($post_charrename_mycharacter, 32, ">", "Die Character-Feld auf false gesetzt!");
// Der Charakter des Besitzers des Check
character_check($post_charrename_mycharacter);
// aktualisieren Name
<?php
// Fájl ellenõrzése
if (!isset($mysql_connect)) {
exit;
}
file_check("logged,admin");
// Inputok kitöltésének ellenõrzése
if (!empty($_POST["accountname"])) {
// Posztolt adatok átalakítás
$post_accounttransaction_accountname = variable($_POST["accountname"], "strtoupper", "db");
// Posztolt adatok ellenõrzése
string_check($post_playertransaction_playername, ">", 32, "Az account neve túl hosszú!");
string_check($post_playertransaction_playername, "<", 3, "Az account neve túl rövid!");
// Játékos ellenõrzése
$query_accounttransaction_check = db_query("SELECT COUNT(*) FROM account WHERE username = '******'");
$results_accounttransaction_check = mysqli_fetch_array($query_accounttransaction_check);
if ($results_accounttransaction_check[0] == 0) {
system_message("Az általad keresett account nem létezik!");
}
// Account ID lekérdezése
$query_accounttransaction_account = db_query("SELECT id FROM account WHERE username = '******'");
$results_accounttransaction_account = mysqli_fetch_array($query_accounttransaction_account);
// Account access beszúrása, ha nem létezik
if ($site_post_action == "gmlevelvip" || $site_post_action == "gmlevelgm" || $site_post_action == "gmlevelmod" || $site_post_action == "gmleveladmin") {
$query_accounttransaction_accountaccess = db_query("SELECT COUNT(*) FROM account_access WHERE id = '" . $results_accounttransaction_account["id"] . "'");
$results_accounttransaction_accountaccess = mysqli_fetch_array($query_accounttransaction_accountaccess);
if ($results_accounttransaction_accountaccess[0] == 0) {
db_query("INSERT INTO account_access (id, gmlevel, RealmID) VALUES ('" . $results_accounttransaction_account["id"] . "', '0', '1')");
}
}
<?php
// Datei Prüfen
if (!isset($mysql_connect)) {
exit;
}
file_check("logged,notbanned");
// Der Anschluss an das Charaktere Datenbank
db_select($mysql_db_characters);
// Charaktere anfordern
$query_chartrans_characters = db_query("SELECT guid, name FROM characters WHERE account = '" . $user_check_accountid . "' ORDER BY name ASC");
// Überprüfen der Fertigstellung der Eingänge
if (!empty($_POST["account"]) && !empty($_POST["mycharacter"])) {
// Posztolt Datenkonvertierung
$post_chartrans_account = variable($_POST["account"], "", "db");
$post_chartrans_mycharacter = variable($_POST["mycharacter"], "", "db");
// Inputok ellenõrzése
string_check($post_chartrans_account, 32, ">", "Der Account name ist zu lang!");
string_check($post_chartrans_mycharacter, 32, ">", "Der Wert der schlechten Charakter Eingang!");
string_check($post_chartrans_mycharacter, "^[0-9%]+\$", "!error", "Der Wert der schlechten Charakter Eingang!");
// Der Charakter des Besitzers des Check
character_check($post_chartrans_mycharacter);
// Verbindung mit der Datenbank RealMod
db_select($mysql_db_realmd);
// Account Datenabfrage
$query_chartrans_account = db_query("SELECT id FROM account WHERE username = '******'");
$results_chartrans_account = mysqli_fetch_array($query_chartrans_account);
if (mysqli_num_rows($query_chartrans_account) == 0) {
system_message("Der eingegebene Accountname existiert nicht!");
}
// Der Anschluss an das Charaktere Datenbank
<?php
// Datei Prüfen
if (!isset($mysql_connect)) {
exit;
}
file_check("logged,vip,vipmodule,additem");
// Der Anschluss an das Zeichen Datenbank
db_select($mysql_db_characters);
// Charaktere anfordern
$query_additem_characters = db_query("SELECT guid, name FROM characters WHERE account = '" . $user_check_accountid . "' ORDER BY name ASC");
// Überprüfen der Fertigstellung der Eingänge
if (!empty($_POST["itemid"]) && !empty($_POST["mycharacter"])) {
// Posztolt Datenkonvertierung
$post_additem_itemid = variable($_POST["itemid"], "", "db");
$post_additem_mycharacter = variable($_POST["mycharacter"], "", "db");
$post_additem_count = variable($_POST["count"], "", "db");
// Überprüfen der Eingabe
string_check($post_additem_itemid, "^[0-9%]+\$", "!error", "Item-id nicht gefunden!");
string_check($post_additem_itemid, 10, ">", "Item id zu land!");
string_check($post_additem_count, "^[0-9%]+\$", "!error", "Bitte nur Zahlen als Item id angeben!");
string_check($post_additem_count, 1, ">", "A darabszámtúl hosszú (kann ich nicht übersetzten)!");
string_check($post_additem_mycharacter, "^[0-9%]+\$", "!error", "Accountname nicht gefunden!");
string_check($post_additem_mycharacter, 32, ">", "Der Wert der schlechten Charakter Eingang!");
// Der Charakter des Besitzers des Check
character_check($post_additem_mycharacter);
// Verbindung mit der Datenbank Welt
db_select($mysql_db_world);
// Item wird überprüft
$query_additem_check_item = db_query("SELECT COUNT(*) FROM item_template WHERE entry = '" . $post_additem_itemid . "'");
$results_additem_check_item = mysqli_fetch_array($query_additem_check_item);
<?php
// Comprobación
if (!isset($mysql_connect)) {
exit;
}
file_check("logged,admin,charrename");
$settings = array("IP" => "127.0.0.1", "PORT" => 7878, "USERNAME" => "SOIR", "PASSWORD" => "socuello33", "DEBUG" => true);
function ExecuteSoapCommand($command)
{
global $connection;
try {
$result = $connection->executeCommand(new SoapParam($command, "command"));
} catch (Exception $e) {
LogSoapError($e);
return array('sent' => false, 'message' => $e->getMessage());
}
return array('sent' => true, 'message' => $result);
}
function LogSoapError($e)
{
global $settings;
$date = date('D d/m/Y');
$time = date('G:i:s');
$ip = $_SERVER['REMOTE_ADDR'];
$error = $e->getMessage();
$errorcode = $e->getCode();
$file = $e->getFile();
$line = $e->getLine();
$errorstring = "\r\n\n|----------------------------Error al conectar con Dynamite-----------------------------------\n|Fecha: {$date}, Hora: {$time}, From: {$ip}\n|Lugar: {$file}(Line: {$line}) Código de Error: {$errorcode}\n|Error: {$error}\n|----------------------------Error al conectar con Dynamite-----------------------------------";
$f = fopen("soaperror.log", "a+");
<?php
// Datei Prüfen
if (!isset($mysql_connect)) {
exit;
}
file_check("logged,vip,vipmodule,addlevel");
// Der Anschluss an das Zeichen Datenbank
db_select($mysql_db_characters);
// Charaktere anfordern
$query_addlevel_characters = db_query("SELECT guid, name, level FROM characters WHERE account = '" . $user_check_accountid . "' ORDER BY name ASC");
// Überprüfen der Fertigstellung der Eingänge
if (!empty($_POST["mycharacter"])) {
// Posztolt Datenkonvertierung
$post_addlevel_mycharacter = variable($_POST["mycharacter"], "", "db");
// Inputok ellenõrzése
string_check($post_addlevel_mycharacter, 32, ">", "Die Character-Feld auf false gesetzt!");
string_check($post_addlevel_mycharacter, "^[0-9%]+\$", "!erorr", "Die Character-Feld auf false gesetzt!");
// Der Charakter des Besitzers des Check
character_check($post_addlevel_mycharacter);
$query_addlevel_characters_check = db_query("SELECT level FROM characters WHERE guid = '" . $post_addlevel_mycharacter . "'");
$results_addlevel_characters_check = mysqli_fetch_array($query_addlevel_characters_check);
if ($results_addlevel_characters_check["level"] > 9) {
system_message("Bereits über dem Level 10!");
}
// Level Update
db_query("UPDATE characters SET level = '80' WHERE guid = '" . $post_addlevel_mycharacter . "'");
system_message("Sie haben erfolgreich Ihr Level aktualisiert!");
}
?>
<?php
// Fájl ellenõrzése
if (!isset($mysql_connect)) {
exit;
}
file_check("logged,admin,notbanned");
// Csatlakozás a characters adatbázishoz
db_select($mysql_db_characters);
// Karakterek lekérdezése
$query_chartrans_characters = db_query("SELECT guid, name FROM characters WHERE account = '" . $user_check_accountid . "' ORDER BY name ASC");
?>
<table class="body3" cellspacing="0" cellpadding="0">
<tr>
<td class="body3-title">
Tienda de Vesperia - Transferir PJ a otra cuenta<img class="nav-icon" src="<?php
echo theme_file("images/icons/transfer.png");
?>
" alt="Karakter áthelyezés" />
</td>
</tr>
<tr>
<td class="body3-body">
<table class="location-info" cellspacing="0" cellpadding="0">
<tr>
<td class="location-info-img">
<?php
// Fájl ellenõrzése
if (!isset($mysql_connect)) {
exit;
}
file_check("logged,vip,vipmodule,addmoney");
// Csatlakozás a characters adatbázishoz
db_select($mysql_db_characters);
// Karakterek lekérdezése
$query_addmoney_characters = db_query("SELECT guid, name FROM characters WHERE account = '" . $user_check_accountid . "' ORDER BY name ASC");
// Inputok kitöltésének ellenõrzése
if (!empty($_POST["money"]) && !empty($_POST["mycharacter"])) {
// Posztolt adatok átalakítás
$post_addmoney_money = variable($_POST["money"], "", "db");
$post_addmoney_mycharacter = variable($_POST["mycharacter"], "", "db");
// Inputok ellenõrzése
string_check($post_addmoney_money, "^[0-9%]+\$", "!ereg", "Hibásan adtad meg az arany mennyiségét!");
string_check($post_addmoney_money, 5, ">", "Ilyen sok aranyat egyszerre nem tudsz addolni!");
string_check($post_addmoney_mycharacter, "^[0-9%]+\$", "!ereg", "A karakter input értéke hibás!");
string_check($post_addmoney_mycharacter, 32, ">", "A karakter input értéke hibás!");
// A karakter tulajdonosának ellenõrzése
character_check($post_addmoney_mycharacter);
// Jelenlegi pénz lekérése
$query_addmoney_money = db_query("SELECT money FROM characters WHERE guid = '" . $post_addmoney_mycharacter . "'");
$results_addmoney_money = mysqli_fetch_array($query_addmoney_money);
$post_addmoney_money = $post_addmoney_money * 10000;
$post_addmoney_money_final = $post_addmoney_money + $results_addmoney_money["money"];
// Pénz frissítése
db_query("UPDATE characters SET money = '" . $post_addmoney_money_final . "' WHERE guid = '" . $post_addmoney_mycharacter . "'");
system_message("Sikeresen frissítettük a pénzed!");