$query = mysql_query("SELECT * FROM invites WHERE secret_hash = '$invid'") or sqlerr(); $invite = mysql_fetch_array($query); $invitari = $invite['inviter_id']; $sql = 'SELECT * FROM users WHERE id='.$invitari; $res = mysql_query($sql); if(mysql_num_rows($res) < '1') bark("Ekki tókst að fletta upp á bjóðanda."); $checkinv = mysql_fetch_array($res); if($checkinv['enabled'] === 'no' || $checkinv['deleted'] == '1' || $checkinv['warned'] === 'yes') bark('Bjóðandi má ekki vera óvirkur, eyddur eða hafa viðvörun.'); if($invite['email'] != $email) bark('Þessi boðslykill er eingöngu nothæfur til að búa til aðgang fyrir netfangið '.$invite['email']); if(mysql_num_rows($query) < 1) bark("Þetta er rangur boðslykill"); mysql_query("UPDATE invites SET used=1 WHERE secret_hash = '$invid' AND email='$email'") or sqlerr(); hit_count(); $md5secret = md5(mksecret()); $secret = mksecret(); $wantpasshash = md5($secret . $wantpassword . $secret); $editsecret = mksecret(); $ret = mysql_query("INSERT INTO users (username, passhash, secret, editsecret, email, enabled, md5secret, invitari, status, added) VALUES (" . implode(",", array_map("sqlesc", array($wantusername, $wantpasshash, $secret, $editsecret, $email, 'yes', $md5secret, $invitari, 'pending'))) . ",'" . get_date_time() . "')"); $id = mysql_insert_id(); if (!$ret) { if (mysql_errno() == 1062) { bark("Notandanafn er nú þegar til!"); } bark("borked");
<?php include 'count.php'; echo hit_count();