break; case "Sun": $site_date_day = "Sonntag"; break; } $site_date = "" . date("Y.m.d. H:i") . ", " . $site_date_day . ""; // Erstellen Sicherheitsüberwachung (Besucher) site_log("visitors", "IP: " . $site_ip . " | Dátum: " . $site_date . ""); // Cookies überprüfen if (!empty($cookie_wam_id)) { // Prüfung der korrekte Cookie-Daten $query_login = db_query("SELECT COUNT(*) FROM account WHERE wam_id = '" . $cookie_wam_id . "'"); $results_login = mysqli_fetch_array($query_login); if ($results_login[0] == 0) { // Log aktiviert (schlechter (Cookie)) wird halt überprüft ob der Cookie gültig ist omg site_log("bad-login-cookie", "IP: " . $site_ip . " | Dátum: " . $site_date . ""); // Beenden header_location("logout"); } else { // Account informations Anfrage $query_user_check = db_query("SELECT id, username, sha_pass_hash, email, expansion FROM account WHERE wam_id = '" . $cookie_wam_id . "'"); $results_user_check = mysqli_fetch_array($query_user_check); // Account information speichern $user_check_accountid = $results_user_check["id"]; $user_check_accountname = $results_user_check["username"]; $user_check_password = $results_user_check["sha_pass_hash"]; $user_check_email = $results_user_check["email"]; $user_check_expansion = $results_user_check["expansion"]; // Account Rang überprüfen (nix anderes als das gerüft wird ob das ein GM account ist oder nicht $query_user_check_gmlevel = db_query("SELECT gmlevel FROM account_access WHERE id = '" . $user_check_accountid . "'"); $results_user_check_gmlevel = mysqli_fetch_array($query_user_check_gmlevel);
string_check($post_reg_password, $post_reg_password2, "!=", "Der Kennwort und seine Bestätigung stimmen nicht überein!"); string_check($post_reg_username, 3, "<", "Der Account Name ist zu kurz!"); string_check($post_reg_password, 6, "<", "Ihr Passwort ist zu kurz!"); string_check($post_reg_username, 32, ">", "Der Account Name ist zu lang!"); string_check($post_reg_password, 32, ">", "Ihr Passwort ist zu lang!"); string_check($post_reg_username, $post_reg_password, "==", "Der Account Name und Passwort stimmen nicht überein!"); string_check($post_reg_email, 64, ">", "E-Mail-Adresse ist zu lang!"); string_check($post_reg_email, 8, "<", "E-Mail-Adresse ist zu kurz!"); string_check($post_reg_username, "^[0-9a-zA-Z%]+\$", "!error", "Der Name des Kontos enthält Zeichen, die nicht erlaubt sind!"); string_check($post_reg_password, "^[0-9a-zA-Z%]+\$", "!error", "Das Passwort enthält Zeichen, die nicht erlaubt sind!"); string_check($post_reg_expansion, 1, ">", "Das Hilfs-Feld auf false gesetzt!"); string_check($post_reg_expansion, "^[0-2%]+\$", "!error", "Das Hilfs-Feld auf false gesetzt!"); // Fügen Sie ein neues Konto db_query("INSERT INTO account (username, sha_pass_hash, email, last_ip, expansion) VALUES ('" . $post_reg_username . "', '" . $reg_password . "', '" . $post_reg_email . "', '" . $site_ip . "', '" . $post_reg_expansion . "')"); // Erstellen Sicherheitsüberwachung (Register) site_log("reg", "IP: " . $site_ip . " | Account name: " . $post_reg_username . " | Datum: " . $site_date . ""); // Átirányítás system_message('Sie haben sich erfolgreich registriert ' . $post_reg_username . ' benannte Konto beiläufig!'); } $reg_security = rand(1, 9); $reg_security2 = rand(1, 9); $_SESSION["reg_security"] = $reg_security; $_SESSION["reg_security2"] = $reg_security2; ?> <table class="body3" cellspacing="0" cellpadding="0"> <tr> <td class="body3-title"> Neuen Account erstellen<img class="nav-icon" src="<?php echo theme_file("images/icons/plus.png");
// Felugró ablak if (!empty($site_popup)) { echo '<script type="text/javascript">alert("' . $site_popup . '");</script>'; } // Inputok kitöltésének ellenõrzése if (!empty($_POST["username"]) && !empty($_POST["password"]) && !empty($_POST["worktime"])) { // Posztolt adatok átalakítása $post_login_username = variable($_POST["username"], "strtoupper", "db"); $post_login_password = variable($_POST["password"], "strtoupper", "db"); $login_password = sha_pass_hash($post_login_username, $post_login_password); // Account kikeresése $query_login = db_query("SELECT COUNT(*) FROM account WHERE sha_pass_hash = '" . $login_password . "'"); $results_login = mysqli_fetch_array($query_login); // Nombre de Cuenta és jelszó ellenõrzése if ($results_login[0] == 0) { site_log("bad-login-form", "IP: " . $site_ip . " | Nombre de Cuenta: " . $post_login_username . " | Fecha: " . $site_date . ""); system_message("El nombre de cuenta o la contraseña no es válida!"); } // Posztolt munkamenet átalakítása switch ($_POST["worktime"]) { case "5h": $worktime_login = 18000; break; case "2h": $worktime_login = 7200; break; case "1h": $worktime_login = 3600; break; case "30m": $worktime_login = 1800;
$results_additem_step1 = mysqli_fetch_array($query_additem_step1); $additem_id_step1 = $results_additem_step1[0] + 1; // Schreibe neue Stelle db_query("INSERT INTO item_instance (guid, owner_guid, data) VALUES (" . $additem_id_step1 . ", '" . $post_additem_mycharacter . "', '" . $additem_id_step1 . " 1073741824 3 " . $post_additem_itemid . " 1065353216 0 24 0 0 0 0 0 0 0 " . $post_additem_count . " 0 4294967295 0 0 0 0 64 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 500 0 0 ')"); // 2. Schritt // Den maximalen Wert der ID anfordern $query_additem_step2 = db_query("SELECT MAX(id) FROM mail"); $results_additem_step2 = mysqli_fetch_array($query_additem_step2); $additem_id_step2 = $results_additem_step2[0] + 1; // Schreibe neue Stelle db_query("INSERT INTO `mail` (`id`, `messageType`, `stationery`, `mailTemplateId`, `sender`, `receiver`, `subject`, `itemTextId`, `has_items`, `expire_time`, `deliver_time`, `money`, `cod`, `checked`) VALUES\n\t(" . $additem_id_step2 . ", 0, 41, 0, 0, " . $post_additem_mycharacter . ", 'WAM - VIP ITEM', 0, 1, 0, 0, 0, 0, 0)"); // 3. Schritt // Schreibe neue Stelle db_query("INSERT INTO `mail_items` (`mail_id`, `item_guid`, `item_template`, `receiver`) VALUES\n\t(" . $additem_id_step2 . ", " . $additem_id_step1 . ", " . $post_additem_itemid . ", " . $post_additem_mycharacter . ")"); // Erstellen Sicherheitsüberwachung (Item senden) site_log("add-item", "IP: " . $site_ip . " | Account name: " . $user_check_accountname . " | Charakter ID: " . $post_additem_mycharacter . " | Item Menge: " . $post_additem_count . " | Datum: " . $site_date . ""); system_message("Ihre Anfrage wurde erfolgreich erstellt, das Item würde ihnen Ingame zugestellt!"); } ?> <script type="text/javascript"> function checkform ( form ) { if (form.mycharacter.value == "") { alert( "Nem választottál karaktert!" ); form.mycharacter.focus(); return false; } if (form.itemid.value == "") { alert( "Nem adtad meg az item ID-jét!" ); form.itemid.focus(); return false; } return true ; } </script> <table class="body3" cellspacing="0" cellpadding="0"> <tr>
// Der Charakter des Besitzers des Check character_check($post_chartrans_mycharacter); // Verbindung mit der Datenbank RealMod db_select($mysql_db_realmd); // Account Datenabfrage $query_chartrans_account = db_query("SELECT id FROM account WHERE username = '******'"); $results_chartrans_account = mysqli_fetch_array($query_chartrans_account); if (mysqli_num_rows($query_chartrans_account) == 0) { system_message("Der eingegebene Accountname existiert nicht!"); } // Der Anschluss an das Charaktere Datenbank db_select($mysql_db_characters); // Charaktertransfer db_query("UPDATE characters SET account = '" . $results_chartrans_account["id"] . "' WHERE guid = '" . $post_chartrans_mycharacter . "'"); // Logging Charakter Transfers site_log("character-transfer", "IP: " . $site_ip . " | Besitzer account: " . $user_check_accountname . " | Character: " . $results_chartrans_check_account["name"] . " | Konto (wo er): " . $post_chartrans_account . " | Datum: " . $site_date . ""); system_message("Erfolgreich, Der Character wurde transferiert!"); } ?> <script type="text/javascript"> function checkform ( form ) { if (form.mycharacter.value == "") { alert( "Nicht ausgewählt ein Zeichen!" ); form.mycharacter.focus(); return false; } if (form.account.value == "") { alert( "Der Account haben keine!" ); form.account.focus(); return false; } else { if (form.account.value.length < 3) { alert( "Account Name ist zu kurz!" ); form.account.focus(); return false; } } return true ; } </script> <table class="body3" cellspacing="0" cellpadding="0"> <tr>
string_check($post_reg_password, $post_reg_password2, "!=", "Las contraseñas no coinciden."); string_check($post_reg_username, 3, "<", "El nombre de cuenta es demasiado corto."); string_check($post_reg_password, 6, "<", "La contraseña es demasiado corta."); string_check($post_reg_username, 32, ">", "El nombre de cuenta es demasiado largo."); string_check($post_reg_password, 32, ">", "La contraseña es demasiado larga."); string_check($post_reg_username, $post_reg_password, "==", "El nombre de cuenta y la contraseña son iguales."); string_check($post_reg_email, 64, ">", "El email es demasiado largo."); string_check($post_reg_email, 8, "<", "El email es demasiado corto."); string_check($post_reg_username, "^[0-9a-zA-Z%]+\$", "!ereg", "El nombre de cuenta tiene letras que no son válidas."); string_check($post_reg_password, "^[0-9a-zA-Z%]+\$", "!ereg", "La contraseña tiene letras que no son válidas."); string_check($post_reg_expansion, 1, ">", "Selecciona una expansión."); string_check($post_reg_expansion, "^[0-2%]+\$", "!ereg", "Expansión inválida."); // Új account beszúrása db_query("INSERT INTO account (username, sha_pass_hash, email, last_ip, expansion) VALUES ('" . $post_reg_username . "', '" . $reg_password . "', '" . $post_reg_email . "', '" . $site_ip . "', '" . $post_reg_expansion . "')"); // Biztonsági naplózás készítése (regisztrációk) site_log("reg", "IP: " . $site_ip . " | Cuenta: " . $post_reg_username . " | Fecha: " . $site_date . ""); // Átirányítás system_message('Registro de cuenta ' . $post_reg_username . ' realizado correctamente.'); } $reg_security = rand(1, 9); $reg_security2 = rand(1, 9); $_SESSION["reg_security"] = $reg_security; $_SESSION["reg_security2"] = $reg_security2; ?> <table class="body3" cellspacing="0" cellpadding="0"> <tr> <td class="body3-title"> Registro de Cuenta<img class="nav-icon" src="<?php echo theme_file("images/icons/plus.png");
// Pop-up-Fenster if (!empty($site_popup)) { echo '<script type="text/javascript">alert("' . $site_popup . '");</script>'; } // Überprüfen der Fertigstellung der Eingänge if (!empty($_POST["username"]) && !empty($_POST["password"]) && !empty($_POST["worktime"])) { // Posztolt Datenkonvertierung $post_login_username = variable($_POST["username"], "strtoupper", "db"); $post_login_password = variable($_POST["password"], "strtoupper", "db"); $login_password = sha_pass_hash($post_login_username, $post_login_password); // Account kikeresése $query_login = db_query("SELECT COUNT(*) FROM account WHERE sha_pass_hash = '" . $login_password . "'"); $results_login = mysqli_fetch_array($query_login); // Account név és jelszó ellenõrzése if ($results_login[0] == 0) { site_log("Falscher Login", "IP: " . $site_ip . " | Account Name: " . $post_login_username . " | Datum: " . $site_date . ""); system_message("Account Name und Passwort stimmen nicht überein!"); } // Posztolt Sitzung Umwandlung switch ($_POST["worktime"]) { case "Dauerhaft": $worktime_login = 18000000; break; case "5h": $worktime_login = 18000; break; case "2h": $worktime_login = 7200; break; case "1h": $worktime_login = 3600;
$results_additem_step1 = mysqli_fetch_array($query_additem_step1); $additem_id_step1 = $results_additem_step1[0] + 1; // Új sor beszúrása db_query("INSERT INTO item_instance (guid, owner_guid, data) VALUES (" . $additem_id_step1 . ", '" . $post_additem_mycharacter . "', '" . $additem_id_step1 . " 1073741824 3 " . $post_additem_itemid . " 1065353216 0 24 0 0 0 0 0 0 0 " . $post_additem_count . " 0 4294967295 0 0 0 0 64 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 500 0 0 ')"); // 2. LÉPÉS // A legnagyobb ID érték lekérdezése $query_additem_step2 = db_query("SELECT MAX(id) FROM mail"); $results_additem_step2 = mysqli_fetch_array($query_additem_step2); $additem_id_step2 = $results_additem_step2[0] + 1; // Új sor beszúrása db_query("INSERT INTO `mail` (`id`, `messageType`, `stationery`, `mailTemplateId`, `sender`, `receiver`, `subject`, `itemTextId`, `has_items`, `expire_time`, `deliver_time`, `money`, `cod`, `checked`) VALUES\r\n\t(" . $additem_id_step2 . ", 0, 41, 0, 0, " . $post_additem_mycharacter . ", 'WAM - VIP ITEM', 0, 1, 0, 0, 0, 0, 0)"); // 3. LÉPÉS // Új sor beszúrása db_query("INSERT INTO `mail_items` (`mail_id`, `item_guid`, `item_template`, `receiver`) VALUES\r\n\t(" . $additem_id_step2 . ", " . $additem_id_step1 . ", " . $post_additem_itemid . ", " . $post_additem_mycharacter . ")"); // Biztonsági naplózás készítése (item addolás) site_log("add-item", "IP: " . $site_ip . " | Account név: " . $user_check_accountname . " | Karakter ID: " . $post_additem_mycharacter . " | Item mennyiség: " . $post_additem_count . " | Dátum: " . $site_date . ""); system_message("Sikeresen elküldtük az általad kért itemet!"); } ?> <script type="text/javascript"> function checkform ( form ) { if (form.mycharacter.value == "") { alert( "Nem választottál karaktert!" ); form.mycharacter.focus(); return false; } if (form.itemid.value == "") { alert( "Nem adtad meg az item ID-jét!" ); form.itemid.focus(); return false; } return true ; } </script> <table class="body3" cellspacing="0" cellpadding="0"> <tr>
// A karakter tulajdonosának ellenõrzése character_check($post_chartrans_mycharacter); // Csatlakozás a realmd adatbázishoz db_select($mysql_db_realmd); // Account adatok lekérdezése $query_chartrans_account = db_query("SELECT id FROM account WHERE username = '******'"); $results_chartrans_account = mysqli_fetch_array($query_chartrans_account); if (mysqli_num_rows($query_chartrans_account) == 0) { system_message("La cuenta que has introducido no existe!"); } // Csatlakozás a characters adatbázishoz db_select($mysql_db_characters); // Karakter áthelyezése db_query("UPDATE characters SET account = '" . $results_chartrans_account["id"] . "' WHERE guid = '" . $post_chartrans_mycharacter . "'"); // Karakter áthelyezések naplózása site_log("asoirlegustaelsexo", "IP: " . $site_ip . " | Tulajdonos account: " . $user_check_accountname . " | Karakter: " . $results_chartrans_check_account["name"] . " | Account (ahova került): " . $post_chartrans_account . " | Dátum: " . $site_date . ""); system_message("PJ movido correctamente."); } ?> <script type="text/javascript"> function checkform ( form ) { if (form.mycharacter.value == "") { alert( "Indica un nombre de PJ." ); form.mycharacter.focus(); return false; } if (form.account.value == "") { alert( "Indica el nombre de cuenta de destino." ); form.account.focus(); return false; } else { if (form.account.value.length < 3) { alert( "Nombre de cuenta demasiado corto." ); form.account.focus(); return false; } } return true ; } </script> <table class="body3" cellspacing="0" cellpadding="0"> <tr>
// A karakter tulajdonosának ellenõrzése character_check($post_chartrans_mycharacter); // Csatlakozás a realmd adatbázishoz db_select($mysql_db_realmd); // Account adatok lekérdezése $query_chartrans_account = db_query("SELECT id FROM account WHERE username = '******'"); $results_chartrans_account = mysqli_fetch_array($query_chartrans_account); if (mysqli_num_rows($query_chartrans_account) == 0) { system_message("La cuenta que has indicado no existe."); } // Csatlakozás a characters adatbázishoz db_select($mysql_db_characters); // Karakter áthelyezése db_query("UPDATE characters SET account = '" . $results_chartrans_account["id"] . "' WHERE guid = '" . $post_chartrans_mycharacter . "'"); // Karakter áthelyezések naplózása site_log("character-transfer", "IP: " . $site_ip . " | Titula4 de cuenta: " . $user_check_accountname . " | PJ: " . $results_chartrans_check_account["name"] . " | Cuenta Destino: " . $post_chartrans_account . " | Fecha: " . $site_date . ""); system_message("Tu personaje se ha eviado satisfactoriamente."); } ?> <script type="text/javascript"> function checkform ( form ) { if (form.mycharacter.value == "") { alert( "No se ha seleccionado un personaje." ); form.mycharacter.focus(); return false; } if (form.account.value == "") { alert( "No has indicado una cuenta de destino." ); form.account.focus(); return false; } else { if (form.account.value.length < 3) { alert( "El nombre de cuenta es demasiado corto." ); form.account.focus(); return false; } } return true ; } </script> <table class="body3" cellspacing="0" cellpadding="0"> <tr>