<?php global $stF, $st, $FLEETNAMES, $arrIncomingFleets, $showcolors, $g_arrResources; $stF = str_replace('.php', '', basename($_SERVER['SCRIPT_NAME'])); $st = reset(explode(".", $stF)); if (logincheck(false) && '1' === $g_arrUser['oldpwd'] && 'preferences' != $st && $GAMEPREFS['must_change_pwd']) { Save_Msg('<b>YOU MUST CHANGE YOUR PASSWORD BEFORE STARTING THE GAME!!', 'red'); Go("preferences.php"); } ?> <!doctype html> <html> <head> <meta charset="utf-8" /> <link rel="shortcut icon" href="/favicon.ico" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title><?php echo $GAMEPREFS['gamename']; ?> </title> <link type="text/css" rel="stylesheet" href="css/styles.css" /> <script src="general_1_2_6.js"></script> <script src="ajax_1_3_1.js"></script> <script> function TD(o) { var d = $(o).style; d.display = d.display != 'none' ? 'none' : ''; } function R(o) { new Ajax(o.href, {
<?php require_once 'inc.config.php'; logincheck(); if (!empty($_POST['message']) && (!empty($_POST['parent_thread_id']) || !empty($_POST['title']))) { $arrInsert = array('parent_thread_id' => !empty($_POST['parent_thread_id']) ? (int) $_POST['parent_thread_id'] : null, 'galaxy_id' => $g_arrUser['galaxy_id'], 'utc_time' => time(), 'title' => !empty($_POST['title']) ? trim($_POST['title']) : null, 'message' => $_POST['message'], 'creator_planet_id' => PLANET_ID); if (!db_insert('politics', $arrInsert)) { Save_Msg('Could not save topic!', 'red'); } $iThreadId = !empty($_POST['parent_thread_id']) ? $_POST['parent_thread_id'] : db_insert_id(); Go('?id=' . (int) $iThreadId); } /*else if ( isset($_GET['delete_id']) && $g_arrUser['moc_planet_id'] === PLANET_ID ) { $q = db_query("SELECT threadid FROM $TABLE[politics] WHERE id='".$_GET['tid']."' AND deleted='0';"); if (!mysql_num_rows($q)) { Save_Msg("This message does not exist!"); Go(); } if (mysql_result($q,0,'threadid')>0) { // Bericht is een antwoord, geen Thread (OF bestaat niet) db_query("UPDATE $TABLE[politics] SET deleted='1' WHERE id='".$_GET['tid']."';"); Go("?id=".mysql_result($q,0,'threadid')); } else { // Bericht is Thread, dus alle antwoorden ook weggooien! db_query("UPDATE $TABLE[politics] SET deleted='1' WHERE (id='".$_GET['tid']."' OR threadid='".$_GET['tid']."');");
Go(); } if (db_update('planets', 'password = MD5(CONCAT(id,\':' . addslashes($_POST['newpassword']) . '\'))', '') && db_affected_rows()) { db_update('planets', 'oldpwd = \'0\'', 'id = ' . PLANET_ID); } Save_Msg("Password changed!", "lime"); Go(); } else { if (isset($_POST['sleep'])) { if (time() > $g_arrUser['nextsleep']) { db_update('planets', 'sleep = ' . (time() + $_POST['sleep']) . ', nextsleep = ' . (time() + $_POST['sleep'] + 14 * 3600), 'id = ' . PLANET_ID); Go('logout.php'); } $h = floor(($g_arrUser['nextsleep'] - time()) / 3600); $m = ceil(($g_arrUser['nextsleep'] - time() - $h * 3600) / 60); Save_Msg('You cannot go into sleepmode yet. You have to wait ' . $h . ' hours and ' . $m . ' minutes'); Go(); } } _header(); ?> <div class="header">Preferences</div> <br /> <br /> <form method="post" action=""> <table border="0" cellpadding="3" cellspacing="0"> <tr> <td width="130" align="right">Race</td>
$s = db_query("UPDATE {$TABLE['users']} SET activationcode='',lastaction='" . time() . "' WHERE email='" . trim($_POST['email']) . "' AND activationcode='" . trim($_POST['activationcode']) . "';"); if (mysql_affected_rows()) { Save_Msg("Your account has been activated. You can now proceed to login", "green"); Go("./?changepage=login"); } else { Save_Msg("Your account has either already been activated, or the data your sent was not correct!", "red"); Go(); } } else { if (isset($_POST['action']) && $_POST['action'] == "new_email" && isset($_POST['new_email_code']) && isset($_POST['old_email']) && isset($_POST['new_email']) && isset($_POST['pwd'])) { $s = db_query("UPDATE {$TABLE['users']} SET email=new_email,new_email='',new_email_code='',lastaction='" . time() . "' WHERE email='" . trim($_POST['old_email']) . "' AND new_email='" . trim($_POST['new_email']) . "' AND new_email_code='" . trim($_POST['new_email_code']) . "' AND password='******'pwd']) . "';"); if (mysql_affected_rows()) { Save_Msg("Your E-mail address has been updated! You can proceed to login or continue your old session.", "green"); Go("./?changepage=login"); } else { Save_Msg("There was no request found for a new e-mail address (WRONG_DATA?). Contact the Site Admin or try again in the Preferences!", "red"); Go(); } } } } ?> <html> <head> <title><?php echo $GAMENAME; ?> </title> <link rel=stylesheet href="css/styles.css"> </head>
if (isset($_POST['resend_code'])) { $szUserEmail = db_select_one('planets', 'email', "email = '" . addslashes($_POST['resend_code']) . "'"); if ($szUserEmail) { $szActivationCode = md5(microtime()); db_update('planets', "activationcode = '" . $szActivationCode . "'", "email = '" . addslashes($szUserEmail) . "'"); $szGameHost = str_replace('www.', '', $_SERVER['HTTP_HOST']); $headers = "From: PORNSTARS <pornstars@" . $szGameHost . ">\r\n"; $headers .= "Return-Path: <pornstars@" . $szGameHost . ">\r\n"; $headers .= "X-Sender: <pornstars@" . $szGameHost . ">\r\n"; if (mail($szUserEmail, 'PORNSTARS - ACTIVATION CODE', 'Your new activationcode = ' . $szActivationCode, $headers)) { Save_Msg('E-mail sent!', 'lime'); } else { Save_Msg('E-mail not sent :( Try again soon!', 'red'); } } else { Save_Msg('No e-mail found!', 'red'); } Go(); } } ?> <html> <head> <title><?php echo $GAMENAME; ?> </title> <link rel=stylesheet href="css/styles.css" /> </head>
$r = db_query("SELECT * FROM {$TABLE['alliances']} WHERE pwd='" . trim($_POST['pwd']) . "';"); if (mysql_num_rows($r)) { $i = mysql_fetch_assoc($r); if ($i['leader_id'] == $UID) { Save_Msg("You cannot join your own alliance again!", "red"); Go(); } db_query("UPDATE {$TABLE['users']} SET tag='" . $i['tag'] . "' WHERE id='{$UID}'"); $garbage = "tag" . substr(md5(time()), 0, 7); db_query("UPDATE {$TABLE['alliances']} SET pwd='{$garbage}' WHERE leader_id='" . $i['leader_id'] . "' AND tag='" . $i['tag'] . "';"); AddNews("Alliance", "<b>" . $USER['rulername'] . " of " . $USER['planetname'] . " (" . $USER['x'] . ":" . $USER['y'] . ")</b> has joined your Alliance.<br>The new password = <b>{$garbage}</b>.", $i['leader_id']); Logbook("alliance", "Just joined <b>" . $i['tag'] . "</b>], pwd = " . $_POST['pwd']); Save_Msg("You have joined an Alliance (<b>" . $i['tag'] . "</b>)!", "green"); Go(); } Save_Msg("Wrong Password!"); Go(); } _header(); ?> <center> <table border=0 cellpadding=2 cellspacing=0 width="100%"> <tr><td class=header>Alliance Page</td></tr> </table> </center><br> <?php if (strlen($USER['tag']) >= 2) { $ai = mysql_fetch_assoc(db_query("SELECT * FROM {$TABLE['alliances']} WHERE tag='" . $USER['tag'] . "';")); $members = db_query("SELECT id,x,y,rulername,planetname,tag FROM {$TABLE['users']} WHERE tag='" . $USER['tag'] . "';"); $members2 = db_query("SELECT id,x,y,rulername,planetname,tag FROM {$TABLE['users']} WHERE tag='" . $USER['tag'] . "';"); $nm = mysql_num_rows($members);
db_query("UPDATE planets SET password ='******'id'] . ':' . $newpwd) . "' WHERE id = " . (int) $i['id'] . ";"); logbook('pwd_reminder', 'email=' . $i['email'] . '&new=' . $newpwd, (int) $i['id']); $gameaddress = str_replace("index.php", "misc.php", $_SERVER['HTTP_HOST'] . $_SERVER['SCRIPT_NAME']); $gamename0 = str_replace("www.", "", $_SERVER['HTTP_HOST']); $gamename = "PS " . $gamename0 . " LOGIN"; $headers = "From: PornStarS PASSWORD <pornstars@" . $gamename0 . ">\r\n"; $headers .= "Return-Path: <pornstars@" . $gamename0 . ">\r\n"; $headers .= "X-Sender: <pornstars@" . $gamename0 . ">\r\n"; $headers .= "Content-type: text/html; charset=iso-8859-1\r\n"; $mailed = mail($i['email'], "PORNSTARS - Forgotten Password", "Your new password: "******"Your password has been sent to \"<b>" . htmlspecialchars($i['email']) . "\"" : "We have failed in sending you your password. Wrong e-mail server"; $color = $mailed ? "green" : "red"; Save_Msg($msg, $color); Go(); } Save_Msg("Cant find the emailaddress \"<b>" . htmlspecialchars($_POST['email']) . "</b>\"", "red"); Go(); } } ?> <html> <head> <title><?php echo $GAMENAME; ?> </title> <script type="text/javascript" src="general_1_2_6.js"></script> <script type="text/javascript" src="ajax_1_3_1.js"></script> <link rel="stylesheet" type="text/css" href="css/styles.css" /> <script type="text/javascript">
<?php require_once 'inc.config.php'; if (logincheck(false)) { Go('./'); } if (!$GAMEPREFS['general_signup'] && !$_SESSION[$sessionname . '_ADMIN']) { $tickerstatus = $GAMEPREFS['ticker_on'] ? "ON" : "OFF"; $loginstatus = $GAMEPREFS['general_login'] ? "" : "NOT"; Save_Msg("<b>Signup is closed for the moment.</b><br>Ticker is <b>{$tickerstatus}</b>!<br>To login is <b>{$loginstatus} possible</b>!", "red"); Go("?changepage=index"); } if (isset($_POST['email'], $_POST['rulername'], $_POST['planetname'], $_POST['password'], $_POST['password2'], $_POST['race_id'])) { if (4 > strlen($_POST['rulername'])) { exit('Rulername too short!'); } else { if (4 > strlen($_POST['planetname'])) { exit('Planetname too short!'); } else { if (md5($_POST['password']) !== md5($_POST['password2'])) { exit('Passwords don\'t match!'); } else { if (db_count('planets', "rulername = '" . addslashes($_POST['rulername']) . "'")) { exit('Rulername taken!'); } else { if (db_count('planets', "planetname = '" . addslashes($_POST['planetname']) . "'")) { exit('Planetname taken!'); } else { if (db_count('planets', "email = '" . addslashes($_POST['email']) . "'")) { exit('E-mail address taken!'); } else {