Файл: plen/shop.php
Строк: 60
<?php
include_once '../sys/inc/start.php';
include_once '../sys/inc/compress.php';
include_once '../sys/inc/sess.php';
include_once '../sys/inc/home.php';
include_once '../sys/inc/settings.php';
include_once '../sys/inc/db_connect.php';
include_once '../sys/inc/ipua.php';
include_once '../sys/inc/fnc.php';
include_once '../sys/inc/user.php';
if (isset($user))$ank['id']=$user['id'];
if (isset($_GET['id']))$ank['id']=intval($_GET['id']);
$ank = get_user($ank['id']);
$set['title'] = 'Купить ключ | '.$ank['nick'].'';
include_once '../sys/inc/thead.php';
title();
aut();
if(isset($_GET['id'])){
$result = mysql_result(mysql_query("SELECT COUNT(*) FROM `grey_plen` WHERE `id_kto` = '".intval($_GET['id'])."' AND `id_kogo` = '$user[id]' "));
if($result != 0)
{
$err[] = 'Ошибка,вы не можете купить ключ';
}
if(!isset($err)){
$msg = "Я купил у тебя ключ за 500 баллов";
mysql_query("DELETE FROM `grey_plen` WHERE `id_kogo` = '".$user['id']."' AND `id_kto` = '".intval($_GET['id'])."'");
mysql_query("UPDATE `user` SET `money` = '".($user['money']-50)."' WHERE `id` = '".$user['id']."' ");
mysql_query("UPDATE `user` SET `money` = '".($user['money']+50)."' WHERE `id` = '".$ank['id']."' ");
mysql_query("INSERT INTO `mail` (`id_user`, `id_kont`, `msg`, `time`) values('$ank[id]', '$user[id]', '".my_esc($msg)."', '$time')");
$_SESSION['message'] = 'Ключ успешно куплен у - <b>'.$ank['nick'].'</b>';
header ("Location: /plen/" . SID);
exit;
}
}
err();
include_once '../sys/inc/tfoot.php';
?>