function news_comment_record($News) { if (verif_connect(true)) { if (verifier_token(600, get_link('Comments', 'Public'), 'Comment-' . $News['News_ID'])) { if (request_confirm('End_Add')) { if (request_confirm('Comment_Message')) { insert_db('Caranille_Comments', addslashes_r($_POST)); } } } } }
function news_comment_record($News) { if (verif_connect(true)) { if (verifier_token(600, get_link('Comments', 'Public'), 'Comment-' . $News['News_ID'])) { if (request_confirm('End_Add')) { if (request_confirm('Comment_Message')) { echo "vous ne devriez pas pouvoir faire ça..."; } } } } }
<?php // print_r($_POST); //On commence par s'assurer que le membre est connecté if (verif_connect()) { if (request_confirm('Finish')) { extract(addslashes_r($_POST)); if (verifier_token(60, get_link('Profil', 'User'), 'Character-Password')) { $return = ""; if ($New_Password == $New_Password_Confirmation) { // reencodage du mot de passe avec une nouvelle clé $r['Account_ID'] = user_data('Account_ID'); $r['Account_Salt'] = uniqid(); $r['Account_Password'] = password_encode($prefixe_salt . $r['Account_Salt'] . $suffixe_salt, $New_Password); if (update_db('Caranille_Accounts', addslashes_r($r))) { $_return .= 'Votre mot de passe à bien été modifié'; $_return .= '<form method="POST" action="' . get_link("Character", "Game") . '"><br />'; $_return .= '<input type="submit" name="Cancel" value="Retour">'; $_return .= '</form>'; } } else { $_return .= 'Les deux mots de passe ne sont pas identiques'; $_return .= '<form method="POST" action="' . get_link("Character", "Game") . '"><br />'; $_return .= '<input type="submit" name="Cancel" value="Retour">'; $_return .= '</form>'; } } else { $_return .= "erreur sur le token"; } } if (request_confirm('sent')) {
<?php $record = false; if (request_confirm('Renew')) { if (verifier_token(600, get_link('Password_Renew', 'User'), 'Renew')) { extract(addslashes_r($_POST)); if (request_confirm('Pseudo') && request_confirm('Email')) { if (filter_var($Email, FILTER_VALIDATE_EMAIL) !== false) { $user = get_db('request_account', $_POST); if (!empty($user)) { $key = uniqid(); update_db('Caranille_Accounts', array('Account_ID' => $user['Account_ID'], 'Account_Key' => $key)); $user_record = get_db($req_pseudo); request_renew_email($user_record); } else { $baseline = "compte inconnu"; } } else { $baseline = "email invalide"; } } else { $baseline = "formulaire incomplet"; } } else { $baseline = "formulaire invalide"; } } if (request_confirm('Valid')) { $baseline = 'Restitution de votre mot de passe'; print_r($_RESQUEST); if (!empty($_GET)) {
<?php include_once $_path . "Sources/Register/Modules/Register.php"; if (request_confirm('Classe')) { if (verifier_token(600, get_link('Classe', 'Register'), 'Register-step-classe')) { extract(stripslashes_r($_POST)); update_db('Caranille_Accounts', array('Account_Classe' => $Classe_ID, 'Account_ID' => $Account_ID, 'Account_Step' => 5)); $message = 'Vous venez de rejoindre une classe'; add_diary($message, $Account_ID); //echo '<br /><br />'.$message; $baseline = 'Inscription effectuée, vous allez recevoir le mail de validation'; $_SESSION['Account_Register']['step'] = 5; header('location:' . get_link('Bonus', 'Register')); //$bonus = true ; } } else { $classe = true; }
<?php //$title =""; // l'utilisateur peut ajouter un titre pour chaque module different de Caranille -Accueil //$baseline= "" if (request_confirm('Delete')) { if (verifier_token(600, get_link('Delete_Account', 'User'), 'Delete_Account-step-2')) { extract(addslashes_r($_POST)); $Delete_List = get_db('request_account', $_POST); if (!empty($Delete_List)) { if ($Password === password_decode($prefixe_salt . $Delete_List['Account_Salt'] . $suffixe_salt, $Delete_List['Account_Password'])) { delete_db('Caranille_Accounts', $Delete_List); echo 'Votre compte ainsi que toute vos données personnelles ont été définitivement supprimée'; } else { echo 'Mauvaise combinaison Pseudo/Mot de Passe'; } } else { echo 'compte inconnu'; } } }
} add_diary($message); if ($comp['Competence_Level'] > 0) { debug_log("pexing update"); $comp['Competence_Experience']++; update_db('Caranille_Competences', $comp); } else { debug_log("pexing create"); insert_db('Caranille_Competences', array('Competence_Work_ID' => $job['Work_ID'], 'Competence_Account_ID' => logged_data('Account_ID'), 'Competence_Level' => 1, 'Competence_Experience' => 1)); } } } } } } if (request_confirm('entrer_Town')) { $Town_ID = htmlspecialchars(addslashes($_POST['Town_ID'])); if (verifier_token(60, get_link('World', 'Map'), 'entrer_Town-' . $Town_ID)) { debug_log("truly enter..."); $information_Town = get_db('request_town', addslashes_r($_POST)); if (!empty($information_Town)) { $_SESSION['Town_ID'] = intval($information_Town['Town_ID']); $_SESSION['Town'] = true; } $message = "Vous entrez dans la ville " . $information_Town['Town_Name']; $enter = true; add_diary($message); } } } }
Pour valider votre inscription, cliquez sur ce bouton : <form method="post" action="' . get_link('Register', 'User') . '"> <input type="hidden" name="Account_Key" value="' . $account['Account_Key'] . '"/> <input type="hidden" name="Account_Email" value="' . $account['Account_Email'] . '"/> <input type="submit" name="Valid" value="Activer"/> </form> Ou sur <a href="' . $url_valid . '">ce lien</a> </body> </html>'; debug_log($message_html, false); send_email($account['Account_Email'], $sujet, $message_texte, $message_html); } $record = false; if (request_confirm('Register')) { if (verifier_token(600, get_link('Register', 'User'), 'Register-step-1')) { extract(addslashes_r($_POST)); if (request_confirm('Pseudo') && request_confirm('Password') && request_confirm('Email')) { if (filter_var($Email, FILTER_VALIDATE_EMAIL) !== false) { if ($Password == $Password_Confirm) { if (request_confirm('Licence')) { $req_pseudo = get_select_req('request_account', $_POST); $Pseudo_List = get_db($req_pseudo); if (empty($Pseudo_List)) { $record = true; $Date = date('Y-m-d H:i:s'); $IP = getRealIpAddr(); $filter = uniqid(); $pswd = password_encode($prefixe_salt . $filter . $suffixe_salt, $Password); $key = uniqid(); insert_db('Caranille_Accounts', array('Account_Pseudo' => $Pseudo, 'Account_Password' => $pswd, 'Account_Salt' => $filter, 'Account_Email' => $Email, 'Account_Last_Connection' => $Date, 'Account_Inscription' => $Date, 'Account_Last_IP' => $IP, 'Account_HP_Remaining' => 100, 'Account_Key' => $key, 'Account_valid' => 0, 'Account_Level' => 1, 'Account_Order' => 1, 'Account_Reason' => 'None', 'Account_Status' => "Authorized", 'Account_Access' => "Member", 'Account_Guild_ID' => 0, 'Account_HP_Bonus' => 0, 'Account_MP_Remaining' => 10, 'Account_MP_Bonus' => 0, 'Account_Strength_Bonus' => 0, 'Account_Magic_Bonus' => 0, 'Account_Agility_Bonus' => 0, 'Account_Defense_Bonus' => 0, 'Account_Experience' => 0, 'Account_Golds' => 0, 'Account_Notoriety' => 0, 'Account_Chapter' => 1, 'Account_Mission' => 1));
<?php include_once $_path . "Sources/Register/Modules/Register.php"; if (request_confirm('Order')) { if (verifier_token(600, get_link('Order', 'Register'), 'Register-step-order')) { extract(stripslashes_r($_POST)); update_db('Caranille_Accounts', array('Account_Order' => $Order_ID, 'Account_ID' => $Account_ID, 'Account_Step' => 3)); $message = 'Vous venez de rejoindre un ordre'; add_diary($message, $Account_ID); //echo '<br /><br />'.$message; $baseline = 'Inscription effectuée, vous allez recevoir le mail de validation'; $_SESSION['Account_Register']['step'] = 3; //$classe = true ; header('location:' . get_link('Race', 'Register')); } } else { $order = true; }
<?php // l'utilisateur peut ajouter un titre pour chaque module different de Caranille -Accueil $title = "ChatRoom"; $baseline = LanguageValidation::iMsg("welcome.public.chat"); //"Bienvenue dans le chat publique"; if (verif_connect()) { if (request_confirm('Send')) { if (verifier_token(600, get_link('Chat', 'User'), 'Chat-Send')) { $ID = user_data('Account_ID'); $Message = htmlspecialchars(addslashes($_POST['Message'])); insert_db('Caranille_Chat', array('Chat_Pseudo_ID' => $ID, 'Chat_Message' => $Message)); } } if (verif_access("Admin", true)) { if (request_confirm('Clear')) { if (verifier_token(600, get_link('Chat', 'User'), 'Chat-Send')) { delete_db('Caranille_Chat'); echo 'Tous les messages ont bien été supprimé'; } } } }
if (!empty($quest)) { // first we need to check if the user has the appropriate item for the quest to be completed $find = get_db('item_quest_inventaire', $quest + user_data()); // print_r($find); if (!empty($find)) { // now lets first remove the item from the inventory, give the reward, and mark the quest as completed. use_item($quest['Quest_Item'], $find['inventory_ID']); if ($quest['Quest_Gold_Gift'] > 0) { // update with the new gold in the database update_db('Caranille_Account', array('Account_ID' => user_data('Account_ID'), 'Account_Golds' => user_data('Account_Golds') + $quest['Quest_Gold_Gift'])); } if ($quest['Quest_Item_Gift'] > 0) { gain_item($quest['Quest_Item_Gift']); } // mark the quest as complete update_db('Caranille_Inventory_Quests', array('Inventory_Quest_Account_ID' => user_data('Account_ID'), 'Inventory_Quest_Quest_ID' => $quest['Quest_ID'], 'Inventory_Quest_Status' => 'complete')); add_diary("Vous avez rendu une quete : " . $quest['Quest_Name']); } } } } if (request_confirm('accept_quest')) { if (verifier_token(600, get_link('QuestBoard', 'Game'), 'accept_quest-' . $_POST['Quest_ID'])) { // need to assign the quest $quest = get_db('request_quest', $_POST); insert_db('Caranille_Inventory_Quests', array('Inventory_Quest_Account_ID' => user_data('Account_ID'), 'Inventory_Quest_Quest_ID' => $quest['Quest_ID'], 'Inventory_Quest_Status' => 'incomplete')); add_diary("Vous avez accepté une quete : " . $quest['Quest_Name']); } } } }
<?php $record = false; if (request_confirm('Valid')) { if (verifier_token(600, get_link('Email_Valid', 'User'), 'Valid')) { extract(addslashes_r($_POST)); if (request_confirm('Pseudo') && request_confirm('Password') && request_confirm('Email')) { if (filter_var($Email, FILTER_VALIDATE_EMAIL) !== false) { if ($Password == $Password_Confirm) { $account = get_db('request_account', $_POST); if (!empty($account)) { if ($account['Account_Valid'] === 0) { $pswd = password_encode($prefixe_salt . $account['Account_Salt'] . $suffixe_salt, $Password); $restore = password_decode($prefixe_salt . $account['Account_Salt'] . $suffixe_salt, $account['Account_Password']); if ($account['Account_Password'] === $pswd && $restore === $Password) { $key = uniqid(); update_db('Caranille_Accounts', array('Account_Key' => $key, 'Account_ID' => $account['Account_ID'])); $user_record = get_db($req_pseudo); if (!empty($user_record)) { register_email($user_record); } } else { $baseline = "mot de passe éronné"; } } else { $baseline = "ce compte est dejà validé"; } } else { $baseline = "compte inconnu"; } } else {
<?php include_once $_path . "Sources/Register/Modules/Register.php"; if (request_confirm('Register')) { if (verifier_token(600, get_link('Members', 'Register'), 'Register-step-member')) { if (request_confirm('Pseudo') && request_confirm('Password') && request_confirm('Email')) { extract(addslashes_r(stripslashes_r($_POST))); if (filter_var($Email, FILTER_VALIDATE_EMAIL) !== false) { if ($Password == $Password_Confirm) { if (request_confirm('Licence')) { $Pseudo_List = get_db('request_account', $_POST); if (empty($Pseudo_List)) { $race = true; $user_record = register_request(); if (!empty($user_record)) { register_email($user_record); debug_log("register-member-end => equipment init"); for ($i = 1; $i <= 5; $i++) { insert_db('Caranille_Inventory', array('Inventory_Account_ID' => $user_record['Account_ID'], 'Inventory_Item_ID' => $i, 'Inventory_Item_Quantity' => 1, 'Inventory_Item_Equipped' => 'Yes')); } debug_log("register-member-end => sesioning pseudo init"); $_SESSION['Account_Register']['Pseudo'] = $Pseudo; $_SESSION['Account_Register']['step'] = 2; debug_log("register-member-end => redirection init"); header('location:' . get_link('Order', 'Register')); debug_log("register-member-end => redirection failed"); } } else { $baseline = 'Ce Pseudo est déjà utilisé'; } } else {
if (request_confirm('Golds-Send')) { if (verifier_token(600, get_link('Gift', 'Guild'), 'guild-golds-Send')) { if (user_data('Account_Golds') > $_POST['golds']) { $ID = user_data('Account_ID'); $guild_ID = guild_data('Guild_ID'); //print_r($_POST); // retirer xp joueur update_db('Caranille_Accounts', array('Account_ID' => user_data('Account_ID'), 'Account_Golds' => user_data('Account_Golds') - $_POST['golds'])); // ajouter xp guild update_db('Caranille_Guilds', array('Guild_ID' => guild_data('Guild_ID'), 'Guild_Golds' => guild_data('Guild_Golds') + $_POST['golds'])); echo "experience offerte"; } } } else { if (request_confirm('xp-Send')) { if (verifier_token(600, get_link('Gift', 'Guild'), 'guild-xp-Send')) { if (user_data('Account_Experience') > $_POST['experience']) { $ID = user_data('Account_ID'); $guild_ID = guild_data('Guild_ID'); //print_r($_POST); // retirer xp joueur update_db('Caranille_Accounts', array('Account_ID' => user_data('Account_ID'), 'Account_Experience' => user_data('Account_Experience') - $_POST['experience'])); // ajouter xp guild update_db('Caranille_Guilds', array('Guild_ID' => guild_data('Guild_ID'), 'Guild_Experience' => guild_data('Guild_Experience') + $_POST['experience'])); echo "experience offerte"; } } } } } }
<?php // l'utilisateur peut ajouter un titre pour chaque module different de Caranille -Accueil $title = "Messagerie"; $baseline = LanguageValidation::iMsg("welcome.private.message"); //""; if (verif_connect()) { //Si l'utilisateur souhaite supprimé un message if (request_confirm('Delete')) { $Private_Message_ID = htmlspecialchars(addslashes($_POST['Private_Message_ID'])); delete_db('Caranille_Private_Messages', array('Private_Message_ID' => $Private_Message_ID)); echo 'Votre message a bien été supprimé'; } if (request_confirm('Send')) { if (verifier_token(600, get_link('Mailbox', 'User'), 'Mailbox-Send')) { $Transmitter = logged_data('Account_ID'); extract(addslashes_r($_POST)); insert_db('Caranille_Private_Messages', array('Private_Message_Transmitter' => $Transmitter, 'Private_Message_Receiver' => $Receiver, 'Private_Message_Subject' => $Message_Subject, 'Private_Message_Message' => $Message, 'Private_Message_Conversation' => isset($Conversation) ? $Conversation : null)); echo 'Votre message a bien été envoyé'; } } }
$baseline = 'Le jeu est actuellement fermé, merci de revenir plus tard'; session_destroy(); } return true; } return 2; } return 3; } return 4; } return 5; } $affich = true; if (request_confirm('Login')) { if (verifier_token(60, get_link('Login', 'User'), 'Login')) { extract(addslashes_r($_POST)); list($tentatives, $existence_ft) = ft_files($Pseudo); if (brute_force_ctrl_limit($tentatives)) { $c_Login = count_db('count_account', $_POST); if ($c_Login === 1) { $connect = connexion($Pseudo, $Password); if ($connect === 2) { $message = "IMPOSSIBLE DE SE CONNECTER!!!" . "\n"; $message .= "Votre compte est banni pour la raison suivante : " . "\n"; $message .= user_data('Account_Reason'); } elseif ($connect === 3) { $baseline = 'Compte actuellement connecté'; ft_treatment($Pseudo, $tentatives, $existence_ft); } elseif ($connect === 4) { print_r($login);
if ($newX < $min) { $newX = $min; } if ($newY < $min) { $newY = $min; } $positionnement = array('Position_PosX' => $newX, 'Position_PosY' => $newY, 'Position_Account_ID' => user_data('Account_ID'), 'Position_Town_ID' => $_SESSION['Town_ID']); if (!empty($position)) { update_db('Caranille_Position', $positionnement); } else { insert_db('Caranille_Position', $positionnement); } $message = '<p class="message">Tu réussis à te déplacer en ' . $newX . ' | ' . $newY . "</p>\n"; } else { $message = 'erreur token'; } } //Si l'utilisateur décIDe de quitter la Town if (request_confirm('Exit_Town')) { debug_log("exit request", false); if (verifier_token(60, get_link('Town', 'Map'), 'Exit_Town-' . $_SESSION['Town_ID'])) { debug_log("truly exit", false); $_SESSION['Town'] = 0; $message = "Vous venez de quitter la ville " . $_SESSION['Town_Name']; $exit = true; add_diary($message); } } include_once $_path . "Sources/Map/Modules/Index.php"; } }
if (empty($_POST['Delete']) && empty($_POST['Second_Delete'])) { echo '<div id="login">'; /** echo '<form method="POST" action="'.get_link('Delete_Account','User').'"><br />'; echo '<label for="Pseudo">Pseudo</label><input placeholder="Pseudo" type="text" name="Pseudo"><br /><br />'; echo '<label for="Password">Password</label><input placeholder="Mot de passe" type="password" name="Password"><br /><br />'; echo '<input type="submit" name="Second_Delete" value="Suppression">'; echo '<input type="hidden" name="token" value="'.generer_token("Delete_Account-step-1").'"/>'; echo '</form>'; **/ echo formulaire_input(array(text_input("label.login.pseudo", "Pseudo", null, null, null, "placeholder.login.pseudo"), password_input("label.login.password", "Password", null, null, null, "placeholder.login.password"), submit_input("Second_Delete", "btn.delete.account")), "Delete_Account-step-1", get_link('Delete', 'User'), "post", null); echo '</div>'; } if (request_confirm('Second_Delete')) { // $Pseudo = htmlspecialchars(addslashes($_POST['Pseudo'])); // $Password = md5(htmlspecialchars(addslashes($_POST['Password']))); if (verifier_token(600, get_link('Delete_Account'), 'Delete_Account-step-1')) { extract(addslashes_r($_POST)); echo "Sans Regret ?<br />"; /** echo '<form method="POST" action="'.get_link('Delete','User').'">'; echo '<input type="hidden" name="Pseudo" value="'.$Pseudo.'"/>'; echo '<input type="hidden" name="Password" value="'.$Password.'"/>'; echo '<input type="submit" name="Back" value="Renoncer">'; echo '<input type="hidden" name="token" value="'.generer_token("Delete_Account-step-2").'"/>'; echo '<input type="submit" name="Delete" value="Suppression">'; echo '</form>'; **/ echo formulaire_input(array(hidden_input("Pseudo", $Pseudo), hidden_input("Password", $Password), submit_input("Back", "btn.back.account"), submit_input("Delete", "btn.delete.account")), "Delete_Account-step-2", get_link('Delete', 'User'), "post", null); } }
<?php include_once $_path . "Sources/Register/Modules/Register.php"; if (request_confirm('Race')) { if (verifier_token(600, get_link('Race', 'Register'), 'Register-step-race')) { extract(stripslashes_r($_POST)); update_db('Caranille_Accounts', array('Account_Race' => $Race_ID, 'Account_ID' => $Account_ID, 'Account_Step' => 4)); $message = 'Vous venez de rejoindre une race'; add_diary($message, $Account_ID); //echo '<br /><br />'.$message; $baseline = 'Inscription effectuée, vous allez recevoir le mail de validation'; $_SESSION['Account_Register']['step'] = 4; header('location:' . get_link('Order', 'Register')); } } else { $race = true; }
echo '<input type="submit" name="Accept" value="' . LanguageValidation::nMsg("btn.guild.join") . '"/>' . LanguageValidation::eMsg("btn.guild.join"); //Rejoindre la guilde"/>'; echo '<select name="Guild_ID" ID="Guilde">'; echo "<option></option>"; foreach ($Guild_List as $Guild) { extract(stripslashes_r($Guild)); echo "<option value=\"{$Guild_ID}\">{$Guild_Name}</option>"; } echo '</select>'; echo '<input type="hidden" name="token" value="' . generer_token("guild-accept") . '"/>'; echo '</form></li>'; } echo '</ol>'; } if (request_confirm('Create_Guild')) { if (verifier_token(60, get_link('Guild', 'Guild'), 'guild-init')) { echo LanguageValidation::iMsg("intro.guild.create"); echo '<form method="POST" action="' . get_link("Guild", "Guild") . '">'; echo '' . LanguageValidation::iMsg("label.guild.name") . '<input placeholder="' . LanguageValidation::nMsg("placeholder.guild.name") . '" type="texte" name="Guild_Name">' . LanguageValidation::eMsg("placeholder.guild.name") . '<br />'; echo '' . LanguageValidation::iMsg("label.guild.description") . '<br /><textarea placeholder="' . LanguageValidation::nMsg("placeholder.guild.description") . '" name="Guild_Description" ID="Guild_Description" rows="10" cols="50"></textarea>' . LanguageValidation::eMsg("placeholder.guild.description") . '<br /><br />'; echo '<input type="hidden" name="token" value="' . generer_token("guild-create") . '"/>'; echo '<input type="submit" name="Confirm" value="' . LanguageValidation::nMsg("btn.guild.init") . '"/>' . LanguageValidation::eMsg("btn.guild.init"); //Créer la guilde">'; echo '</form>'; } } } else { //echo 'vous appartenez déjà à une guilde'; menu_guild(); echo "<div id='guild-page'>"; echo "<h4>" . guild_data('Guild_Name') . "</h4>";
<?php include_once $_path . "Sources/Register/Modules/Register.php"; if (request_confirm('Confirm')) { if (verifier_token(600, get_link('Bonus', 'Register'), 'Register-step-bonus')) { foreach ($_POST as $c => $v) { if ($c != 'Account_ID' && $c != 'Confirm' && $c != 'Regene') { if ($v > 10) { $_POST[$c] = 1; } } } $_POST['Account_Step'] = 6; update_db('Caranille_Accounts', addslashes_r($_POST)); $_SESSION['Account_Register']['step'] = 6; header('location:' . get_link('End', 'Register')); //$ended = true ; } } else { $bonus = true; } if (request_confirm('Regene') or $bonus) { $baseline = "Validez vos stats ou regenerez les"; $_SESSION['Account_Register']['step'] = 5; foreach ($array_character_barre as $barre) { eval("\$Account_" . strtoupper($barre) . "_Bonus = mt_rand(0, 10);"); } //$Account_HP_Bonus = mt_rand(0, 10); //$Account_MP_Bonus = mt_rand(0, 10); foreach ($array_character_stats as $stats) { eval("\$Account_" . ucfirst($stats) . "_Bonus = mt_rand(0, 10);");
<?php // l'utilisateur peut ajouter un titre pour chaque module different de Caranille -Accueil //$title =""; //$baseline= "" include_once "Battle/Index.php"; //(path_source("Index","Battle","Battle")); if (verif_connect()) { $roaster = get_roaster(); if (request_confirm('Launch')) { if (verifier_token(60, get_link('Story', 'Battle'), 'Story')) { extract($_POST); $Chapter_Monster = get_db('story_step_content', array('Chapter_Number' => $Chapter_Number)); if (!empty($Chapter_Monster)) { init_battle('Monster', $Chapter_Monster, 'Chapter'); $launch = true; } } } }
<?php if (request_confirm('engage')) { if (verifier_token(60, get_link('Roaster', 'Game'), 'roaster-engage-' . $_POST['Account_ID'])) { if (user_data('Account_Roaster_ID') == 0) { $_POST['Account_Roaster_ID'] = insert_db('Caranille_Roaster', array('Roaster_Member_1' => user_data('Account_ID'))); user_set('Account_Roaster_ID', $_POST['Account_Roaster_ID']); user_record(); } update_db('Caranille_Accounts', stripslashes_r($_POST)); } }
$baseline = LanguageValidation::iMsg("welcome.guild.none"); // if (request_confirm('Accept')) { if (verifier_token(60, get_link('Guild', 'Guild'), 'guild-accept')) { //$Guild_ID = htmlspecialchars(addslashes($_POST['Guild_ID'])); //$Guild_Name = htmlspecialchars(addslashes($_POST['Guild_Name'])); //$Guild_Description = htmlspecialchars(addslashes($_POST['Guild_Description'])); extract(addslashes_r($_POST)); update_db('Caranille_Accounts', array('Account_Guild_ID' => $Guild_ID, 'Account_ID' => $ID)); $message = "Vous venez de rejoindre la guilde {$Guild_Name}"; add_diary($message); $baseline = $message; } } if (request_confirm('Confirm')) { if (verifier_token(60, get_link('Guild', 'Guild'), 'guild-create')) { extract(addslashes_r($_POST)); insert_db('Caranille_Guilds', array('Guild_Name' => $Guild_Name, 'Guild_Owner_ID' => $ID, 'Guild_Description' => $Guild_Description)); //Pour mettre le compte de l'utilisateur à jour avec l'ID de la guild ont fait une recherche de l'id de la guild précédament crée $Guild_Query = get_db("edit_admin", array('table' => 'Caranille_Guilds', 'ID' => 'Guild_Name', 'value' => $Guild_Name)); if (!empty($Guild_Query)) { $Guild_ID = $Guild_Query['Guild_ID']; //last_id_db(); // update_db('Caranille_Accounts', array('Account_Guild_ID' => $Guild_ID, 'Account_ID' => $ID)); $message = "Vous avec créer la guilde " . $Guild_Name; add_diary($message); $baseline = $message; } } } }
<?php // l'utilisateur peut ajouter un titre pour chaque module different de Caranille -Accueil //$title =""; //$baseline= "" if (verif_connect()) { //Si l'utilisateur ne possède pas de Guilde if (has_guild()) { load_css('guild.css', 'guild'); if (has_guild_acces('message')) { if (request_confirm('send-message')) { if (verifier_token(60, get_link('Message', 'Guild'), 'guild-message')) { update_db('Caranille_Guilds', addslashes_r($_POST)); echo "Message mis à jour"; } } } } }
$request_params = array('town' => $_SESSION['Town_ID']); break; } if (verif_town()) { $Town = htmlspecialchars(addslashes($_SESSION['Town_ID'])); $return = print_r($_POST, 1) . "<br/>"; if (request_confirm('Buy')) { $return .= "<br/>sell_id::{$sell_id}"; if (isset($sell_id)) { $Item_ID = htmlspecialchars(addslashes($_POST[$sell_id])); $return .= "<br/>Item_ID::{$Item_ID}"; $return .= "<br/>page::{$page}"; $return .= "<br/>get_link({$page},'Shop') = " . get_link($page, "Shop"); $return .= "<br/>{$_path}" . "Sources/" . ucfirst("Shop") . "/Modules/" . ucfirst($page) . ".php"; $return .= "<br/>{$_url}" . strtolower($directory) . "/" . strtolower($Module) . ".html"; if (verifier_token(600, get_link($page, 'Shop'), "buy-" . strtolower($page) . "-" . $_POST[$sell_id])) { switch (strtolower($page)) { case 'weapon': case "accessory": case "item": $item = pay_item($Item_ID); if ($item !== false) { $paid = true; } break; case "magic": $item = pay_magic($Item_ID); if ($item !== false) { $paid = true; } break;
<?php if (verif_connect()) { load_css('guild.css', 'guild'); if (has_guild()) { if (has_guild_acces('recrutement')) { if (request_confirm('guild-engage') || request_confirm('guild-refuse')) { if (verifier_token(60, get_link('Recrutement', 'Guild'), 'guild-candidat-' . $_POST['Account_ID'])) { $Account_Query = get_db("candidat_guild_confirm", array('Guild_ID' => guild_data('Guild_ID'), 'Account_ID' => request_post('Account_ID'))); if (!empty($Account_Query)) { if (request_confirm('guild-engage')) { update_db('Caranille_Accounts', stripslashes_r($_POST)); $message = "Vous avez été accepté dans la guilde " . guild_data('Guild_Name') . "."; } else { update_db('Caranille_Accounts', array('Account_ID' => $Account_Query['Account_ID'], 'Account_Guild_ID' => 0, 'Account_Guild_Accept' => 0)); $message = "Votre candidature dans la guilde " . guild_data('Guild_Name') . " a été refusé."; } add_diary($message, $Account_Query['Account_ID']); insert_db('Caranille_Private_Messages', array('Private_Message_Transmitter' => logged_data('Account_ID'), 'Private_Message_Receiver' => $Account_Query['Account_Pseudo'], 'Private_Message_Subject' => "Votre candidature dans la guilde " . guild_data('Guild_Name'), 'Private_Message_Message' => $message, 'Private_Message_Conversation' => null)); } } } } } }
function temoignages_exec() { global $secteur, $page, $_path, $temoignage_delimit, $temoignage_ipvisiteur, $temoignage_validForm, $temoignage_message, $temoignage_nom, $temoignage_mail, $temoignage_MsgErreur, $temoignage_file; if ($page == 'temoignages') { // --------------------- // GUESTBOOK $temoignage_file = $_path . 'livredor.txt'; $temoignage_delimit = '-*-'; // délimiteur // --------------------- // IP du visiteur / date $temoignage_ipvisiteur = $_SERVER["REMOTE_ADDR"]; $date = date("d/m/Y H:i:s"); // --------------------- // Initialisation $temoignage_nom = ''; $temoignage_message = ''; $temoignage_mail = ''; $temoignage_validForm = true; $temoignage_MsgErreur = ''; // --------------------- // TRAITEMENT SI formulaire soumis if (request_confirm('LivredorSubmit')) { if (verifier_token(600, get_link('temoignages', 'Install'), 'Temoignage-Send')) { // --------------------- // RECUPERATION des DONNEES //On convertit les caracteres html $temoignage_nom = request_post('nom'); $temoignage_mail = request_post('mail'); // textarea :attention aux injections de code html ! $allowable_tags = '<b><a>'; // (facultatif) on autorise ces balises $temoignage_message = request_post('message'); $temoignage_message = strip_tags($temoignage_message, $allowable_tags); $temoignage_message = nl2br($temoignage_message); // nl2br() : change les sauts de ligne tapés par le visiteur en <br /> $temoignage_message = preg_replace("/(\r\n|\n|\r)/", " ", $temoignage_message); // enlève les sauts de ligne résiduels, pour l'écriture dans le fichier (sur une seule ligne) // On censure $newnom = censorWords($temoignage_nom); $newmessage = censorWords($temoignage_message); $newmail = censorWords($temoignage_mail); $champ_censure = array(); if ($temoignage_nom != $newnom) { $champ_censure[] = 'Nom'; } if ($temoignage_message != $newmessage) { $champ_censure[] = 'Message'; } if ($temoignage_mail != $newmail) { $champ_censure[] = 'Email'; } if (count($champ_censure) > 0) { $temoignage_MsgErreur .= 'Ces champs ont été censurés : ' . implode(', ', $champ_censure) . '<br />'; } // champs obligatoires $champ_obligatoire = array(); if ($temoignage_nom == '' || $newnom == '') { $temoignage_validForm = false; $champ_obligatoire[] = 'Nom'; } if ($temoignage_message == '' || $newmessage == '') { $temoignage_validForm = false; $champ_obligatoire[] = 'Message'; } if (count($champ_obligatoire) > 0) { $temoignage_MsgErreur .= 'Remplissez tous les champs obligatoires : ' . implode(', ', $champ_obligatoire) . '<br />'; } // ----------------------- // Vérification du format de l'Email if ($temoignage_mail != '' && !filter_var($temoignage_mail, FILTER_VALIDATE_EMAIL)) { $temoignage_validForm = false; $temoignage_MsgErreur .= 'Invalide Email !<br />'; } // ----------------------- // OK SI PAS D'ERREUR if ($temoignage_validForm === true) { // --------------------- if ($newnom != '' && $newmessage != '') { // ECRITURE dans le GESTBOOK //Ouverture du fichier en écriture $fp = fopen($temoignage_file, 'a'); // 'a' : à la fin du fichier $line = $newnom . $temoignage_delimit . $newmessage . $temoignage_delimit . $newmail . $temoignage_delimit . $date . $temoignage_delimit . $temoignage_ipvisiteur . "\n"; //On rajoute le message fwrite($fp, $line, strlen($line)); //fermeture du fichier fclose($fp); // --------------------- } // --------------------- // On vide $temoignage_nom = ''; $temoignage_message = ''; $temoignage_mail = ''; } } } // --------------------- //unset($_POST); // anti-F5 (évite de re-poster le formulaire en cas de F5 ("Actualiser la page") //$_SESSION['antiF5'] = rand(100000,999999); // --------------------- load_css('goldbook.css', 'goldbook'); load_js('goldbook.js', 'goldbook'); } }
<?php // l'utilisateur peut ajouter un titre pour chaque module different de Caranille -Accueil $title = "Historique"; $baseline = "vos actes passés"; load_css('corps.css', 'corps'); if (request_confirm('edit-role-play')) { if (verifier_token(600, get_link('diary', 'game'), "editor-role-play-" . request_post('Diary_ID'))) { update_db('Caranille_Diaries', array('Diary_Description' => request_post('roleplay'), 'Diary_ID' => request_post('Diary_ID'))); } } if (request_confirm('remove-role-play')) { if (verifier_token(600, get_link('diary', 'game'), "remover-role-play-" . request_post('Diary_ID'))) { delete_db('Caranille_Diaries', array('Diary_ID' => request_post('Diary_ID'))); } }
//Si l'utilisateur ne possède pas de Guilde if (has_guild()) { if (has_guild_acces('rank')) { $ct = count_db('guild_list_rank', array('Guild_ID' => user_data('Account_Guild_ID'))); if (request_confirm('create_rank')) { if (verifier_token(120, get_link('Rank', 'Guild'), 'guild-rank-create')) { $ct++; insert_db('Caranille_Rank', array('Rank_Name' => request_data('new_rank'), 'Rank_Order' => $ct, 'Rank_Guild_ID' => user_data('Account_Guild_ID'))); } } if (request_confirm('edit_rank')) { if (verifier_token(120, get_link('Rank', 'Guild'), 'guild-rank-edit-' . request_data('rank'))) { update_db('Caranille_Rank', array('Rank_Name' => request_data('new_rank'), 'Rank_ID' => request_data('rank'))); } } } if (has_guild_acces('privilege')) { if (request_confirm('priv_rank')) { if (verifier_token(120, get_link('Rank', 'Guild'), 'guild-rank-priv-' . request_data('rank'))) { delete_db('Caranille_Privileges', array('Privilege_Rank_ID' => request_data('rank'))); foreach ($_POST['priv'] as $e => $priv) { insert_db('Caranille_Privileges', array('Privilege_Rank_ID' => request_data('rank'), 'Privilege_Access' => $priv)); } } } } if (request_confirm('show_rank')) { $_rank['Rank_ID'] = request_data('rank'); } } }