Файл: public_html/bashni/socc.php
Строк: 27
<?
include_once '../core/system.php';
echo only_reg();
if (isset($_GET['id']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `bashni` WHERE `id` = '".intval($_GET['id'])."'"),0) == true){
$bashnay = mysql_fetch_assoc(mysql_query("SELECT * FROM `bashni` WHERE `id` = '".intval($_GET['id'])."'"));
$bkris = $bashnay[almaz];
}else{
$_SESSION['err'] = "Нет такой крепости!";
header('Location: index.php');
exit();
}
$ank = mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = '".$bashnay[id_user]."'"));
if($user[id] == $ank[id]){
if($bashnay[almaz] > 499){
mysql_query("UPDATE `user` SET `almaz` = '".($user[almaz]+$bkris)."' WHERE `id` = '$user[id]' LIMIT 1");
mysql_query("UPDATE `bashni` SET `almaz` = '".($bashnay[almaz]=0)."' WHERE `id` = '$_GET[id]' LIMIT 1");
header("Location: bashnya.php?id=$bashnay[id]");
$_SESSION['message'] = 'Вы успешно перевели алмазы!';
exit();
}else{
header("Location: bashnya.php?id=$bashnay[id]");
$_SESSION['err'] = 'Минимальный сбор 500 алмазов!';
exit();
}
}else{
header("Location: bashnya.php?id=$bashnay[id]");
$_SESSION['err'] = 'Ээээ не лезь в чужую крепость!';
exit();
}
?>