Файл: phpfile/svalka_2.php
Строк: 65
<?php
if (isset($_POST['him'])) //////блок самой алхимии
{
$count = sizeof($_POST) ;
$a = 0 ;
$g = time() ;
$r = array_values($_POST) ;
$ataka = 0 ;
while ($a <= $count)
{
if (isset($r[$a]))
{
if (is_numeric($r[$a]))
{
$query1 = "SELECT * FROM `rukzak` WHERE `name`='" . mysql_real_escape_string($opredelenie) .
"' AND `idrukzak`='" . mysql_real_escape_string($r[$a]) . "' and `odeto`='0' and chit IN ('chasi','ruda','metal','sfera','kamen','gem') " ;
$sql1 = mysql_query($query1) or die(mysql_error()) ;
$row1 = mysql_fetch_assoc($sql1) ;
mysql_query("DELETE FROM `rukzak` WHERE `idrukzak` = '" . mysql_real_escape_string($r[$a]) .
"' and `odeto`='0' and `name`='" . mysql_real_escape_string($opredelenie) .
"' LIMIT 1") or die(mysql_error()) ;
if($row1['chit']=='metal'){$sk=1;}
if($row1['chit']=='chasi'){$sk=1;}
if($row1['chit']=='ruda'){$sk=2;}
if($row1['chit']=='sfera'){$sk=3;}
if($row1['chit']=='kamen'){$sk=4;}
if($row1['chit']=='gem'){$sk=2;}
$ataka+=$sk;
}
;
}
;
$a++ ;
$query = "SELECT * FROM `table1` WHERE `name`='$opredelenie'" ;
$sql1 = mysql_query($query) or die(mysql_error()) ;
$row = mysql_fetch_assoc($sql1);
}
print "<div class="style_mess_yes">Вы сдали вещи на $ataka ресурсов!</div>" ;
$razvalini['resurs']+=$ataka;
mysql_query("update razvalini set resurs='".$razvalini['resurs']."' where klan='" . $row['klan'] .
"' and id='" . $row['gorodnum'] . "' ");
exitt($row,$opredelenie) ;
}
else
{
$count = sizeof($_POST) ;
if (($count - 1) > 80)
{
print "<div class="style_mess_no">Вы выбрали 80 вещей!<br><a href=88.php?go=krepost style=color:#CC3333>Центральная башня</a></div>" ;
exitt($row,$opredelenie) ;
}
if ($count <= 1)
{
print "div class="style_mess_no">Вы нечего не выбрали!<br><a href=88.php?go=krepost style=color:#CC3333>Центральная башня</a></div>" ;
exitt($row,$opredelenie) ;
}
print "<div class="chat_conteiner">Вы собираетесь сдать, после сдачи данные вещи невозможно будет восстановить:<br>" ;
//////////////////////////////////////////////////////////
$a = 0 ;
$r = array_values($_POST) ;
print "<form name=form1 action=88.php?go=krepost&if=3 method=post>" ;
while ($a <= $count)
{
if (isset($r[$a]))
{
if (is_numeric($r[$a]))
{
$query8 = "SELECT * FROM `rukzak` WHERE `name`='" . mysql_real_escape_string($opredelenie) .
"' and `idrukzak`='" . mysql_real_escape_string($r[$a]) . "' and `odeto`='0'
and chit IN ('chasi','ruda','metal','sfera','kamen','gem') " ;
$sql8 = mysql_query($query8) or die(mysql_error()) ;
$row8 = mysql_fetch_assoc($sql8) ;
print "<input type=hidden name=$a value=" . htmlspecialchars($r[$a]) .
" /> <font color=red>" . htmlspecialchars($row8['nazvanie']) . "</font>," ;
}
;
}
;
$a++ ;
}
print "</div><li><input class=select name=him type=submit value=Сдать?><li>" ;
;
}
?>