Файл: phpfile/vstavit.php
Строк: 132
<?php
$query = "SELECT *
FROM `rukzak`WHERE `name`='" . mysql_real_escape_string($opredelenie) .
"' and `odeto`='0' and `jad`='0' and `idrukzak`='" . mysql_real_escape_string($_GET['vesh']) .
"' and `vstavlen`='0'
LIMIT 1" ;
$sql = mysql_query($query) or die(mysql_error()) ;
$k = mysql_num_rows($sql) ;
if ($k == 0)
{
print no."Ошибка запроса!".d ;
exitt($row,$opredelenie) ;
}
$row = mysql_fetch_assoc($sql) ;
$query00 = "SELECT *
FROM `rukzak`WHERE `name`='" . mysql_real_escape_string($opredelenie) .
"' and `odeto`='0' and `idrukzak`='" . mysql_real_escape_string($_POST['sex1']) .
"' and `vstavlen3`='0'
LIMIT 1" ;
$sql00 = mysql_query($query00) or die(mysql_error()) ;
$k = mysql_num_rows($sql00) ;
if ($k == 0)
{
print no."Ошибка запроса!".d ;
exitt($row,$opredelenie) ;
}
$row00 = mysql_fetch_assoc($sql00) ;
$lvl = round($row00['lvl']) ;
$query0 = "SELECT *
FROM `rukzak` WHERE `name`='" . mysql_real_escape_string($opredelenie) .
"' and `odeto`='0' and `idrukzak`='" . mysql_real_escape_string($_POST['sex1']) .
"'
LIMIT 1" ;
$sql0 = mysql_query($query0) or die(mysql_error()) ;
$k = mysql_num_rows($sql0) ;
if ($k == 0)
{
print no."Ошибка 4запроса!".d ;
exitt($row,$opredelenie) ;
}
$row0 = mysql_fetch_assoc($sql0) ;
$lvl = round($row00['lvl']) ;
if($lvl<=0){$lvl=1;}
$query66 = "SELECT * FROM `table1` WHERE `name`='" . mysql_real_escape_string($opredelenie) .
"'" ;
$sql66 = mysql_query($query66) or die(mysql_error()) ;
$k = mysql_num_rows($sql66) ;
if ($k == 0)
{
print no."Ошибка 3запроса!".d ;
exitt($row,$opredelenie) ;
}
$row66 = mysql_fetch_assoc($sql66) ;
$bonus = 0 ;
if ($row66['polog'] == 'zamok')
{
$queryz = "SELECT * FROM `zamki` WHERE `klan`='" . mysql_real_escape_string($row66['klan']) .
"' and `sewer`='" . mysql_real_escape_string($row66['sevgorod']) .
"' and `wostok`='" . mysql_real_escape_string($row66['wostokgorod']) . "' " ;
$sqlz = mysql_query($queryz) or die(mysql_error()) ;
if (mysql_num_rows($sqlz) == 1)
{
$rowz = mysql_fetch_assoc($sqlz) ;
$bonus = $rowz['uvelir'] ;
}
}
$x=1; $lvl = round($row00['lvl']) ;
if($row00['vstavlen']==1){$x=2;}if($row00['vstavlen2']==1){$x=3;}
$tz = mt_rand(1, 100) ;
$r = round((($row66['enchayz'] + $bonus) / sqrt($lvl))/$x) ;
if($pers_info['all_kraft']>time()){$r=$r*($pers_info['all_kraft_par']/100+1);};
if ($r >= mt_rand(1, 100))
{
$query0 = "SELECT *
FROM `rukzak` WHERE `name`='" . mysql_real_escape_string($opredelenie) .
"' and `odeto`='0' and `idrukzak`='" . mysql_real_escape_string($_POST['sex1']) .
"'
LIMIT 1" ;
$sql0 = mysql_query($query0) or die(mysql_error()) ;
$k = mysql_num_rows($sql0) ;
if ($k == 0)
{
print no."Ошибка 4запроса!".d ;
exitt($row,$opredelenie) ;
}
$row0 = mysql_fetch_assoc($sql0) ;
$t = $row['nazvanie'] ;
$naz = "$t" . "*" ;
$titm = $row0['tip'] . $row['tip'] ;
mysql_query("UPDATE `rukzak` SET `vstavlen` = '1',`nazvanie`='" .mysql_real_escape_string($naz) . "'
,`par`='".mysql_real_escape_string($row0['try'])."',`table_gen`='".mysql_real_escape_string($row0['table'])."',
`rus_tip_gem`= '" . mysql_real_escape_string($row0['rus_tip']) . "', `rus_tip_par` = '" . mysql_real_escape_string($row0['rus_par']) . "'
,`time`='" . time() .
"',`master`='" . mysql_real_escape_string($opredelenie) . "',`gemnaz`='" .
mysql_real_escape_string($row0['nazvanie']) . "',`vstavlen2`='".$row0['vstavlen']."',
`par3`='".$row0['par']."', `tip3`='".$row0['table_gen']."',`rus_par3`='".$row0['rus_tip_par']."'
,`vstavlen3`='".$row0['vstavlen2']."',
`par4`='".$row0['par3']."', `tip4`='".$row0['tip3']."',`rus_par4`='".$row0['rus_par3']."' WHERE `name` ='" .
mysql_real_escape_string($opredelenie) . "' and `idrukzak`='" .
mysql_real_escape_string($row['idrukzak']) . "' LIMIT 1 ;") or die(mysql_error()) ;
$querypp = "SELECT * FROM `table1` WHERE `name`='" . mysql_real_escape_string($opredelenie) .
"'" ;
$sqlpp = mysql_query($querypp) or die(mysql_error()) ;
$rowpp = mysql_fetch_assoc($sqlpp) ;
$r1 = $rowpp['enchayz'] / $lvl;
if($r1<10){$r1=10;}
if($_SESSION['uvelir']==1){$r1=$r1/2;}
if (1==rand(1,$r1))
{
$r1 = $rowpp['enchayz'] / $lvl;
$text = "".$rowpp['enchayz']."-".$row00['lvl']."-$r1";
mysql_query("INSERT INTO `log_1` (
`id` ,
`name` ,
`s` ,
`w` ,
`text`
)
VALUES (
'', '$opredelenie', '999', '999', '$text'
);") or die(mysql_error());
$opitstar = $rowpp['enchayz'] * 100 ;
$obshopit = $rowpp['obshopit'] + $opitstar ;
$tekopit = $rowpp['tekopit'] + $opitstar ;
print y."Вы повысили ваш навык <br><font color=red><b>Ювелира! Вы получили $opitstar опыта!</b></font>".d ;
$rowpp['enchayz']++ ;
$query = "UPDATE `table1` SET `obshopit`='$obshopit',`tekopit`='$tekopit',`enchayz`='" .
$rowpp['enchayz'] . "' WHERE `name`='" . mysql_real_escape_string($opredelenie) .
"' LIMIT 1 ;" ;
mysql_query($query) ;
$sql = mysql_query($query) or die(mysql_error()) ;
}
print y."Вы удачно вставили кристалл!<br>
<a href=88.php?go=uvelir&plavit=01 style=color:#CC3333>Ювелирная мастерская</a>".d ;
}
else
{
print no."Вы не смогли вставить кристалл!<br>
<a href=88.php?go=uvelir&plavit=01 style=color:#CC3333>Ювелирная мастерская</a>".d ;
;
}
mysql_query("DELETE FROM `rukzak` WHERE `idrukzak` = '" .
mysql_real_escape_string($_POST['sex1']) . "' and `name`='" .
mysql_real_escape_string($opredelenie) . "' and `odeto`='0' LIMIT 1 ;") or die(mysql_error
()) ;
?>