Файл: phpfile/personag.php
Строк: 11
<?php
htmlspecialchars($_GET['row']) ;
$query = "SELECT * FROM `table1` WHERE `name`='" . mysql_real_escape_string($_GET['row']) .
"'" ;
$sqlp = mysql_query($query) or die(mysql_error()) ;
$row = mysql_fetch_assoc($sqlp) ;
$b=mysql_query("select* from baff where id='".$row['ID']."'");
$baff=mysql_fetch_array($b);
if($baff['time']>time()){
$kok=1+ $baff['par']/100;
$row[$baff['table']]*= $kok;
if($baff['table']=='intelekt')
{ $row['razum']*= $kok;
;}
if($baff['table']=='sila')
{ $row['ataka']*= $kok;
;}
if($baff['table']=='lovkost')
{ $row['zashita']*= $kok;
;}
;}
//BAFF end AND start KLEYMo
$kl=mysql_query("select*from `shmot_kl`where `status`='1'
and `id_rukzak` IN('".$row['orugie']."','".$row['rukavici']."','".$row['shlem']."',
'".$row['sapogi']."','".$row['shit']."', '".$row['brohja']."','".$row['plash']."')")or die(mysql_error());
while($kleimo=mysql_fetch_array($kl)){
$kik=1+$kleimo['par']/1000;
$row[$kleimo['table']]*= $kik;
$row[$kleimo['table']]=round($row[$kleimo['table']]);
;}
;
$kli=mysql_query("select*from `klad_otkrit` where `id_pers`='".$row['ID']."'");
$klik=mysql_fetch_array($kli);
$row['hpall']+=($klik['hpall']*3);
$row['mpall']+=($klik['mpall']*3);
$row['tpall']+=($klik['tpall']*3);
$row['ataka']+=($klik['ataka']*3);
$row['zashita']+=($klik['zashita']*3);
$row['sila']+=($klik['sila']*3);
$row['lovkost']+=($klik['lovkost']*3);
$row['intelekt']+=($klik['intelekt']*3);
$row['razum']+=($klik['razum']*3);
include "./data/pessonag2.dat.php" ;
?>