Файл: core/Administration/userrecz.php
Строк: 21
<?
require_once '../core/system.php';
if($user[prava] < 245345){
header('Location: /');
$_SESSION['err'] = 'Вы не Админ!';
exit();
}else{
if (isset($_GET['id']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `user` WHERE `id` = '".intval($_GET['id'])."'"),0) == true){
$ank = mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = '".intval($_GET['id'])."'"));
}
$header = 'Редактор Игрока';
require_once H.'core/head.php';
if(isset($_POST['nick']) && isset($_POST['pass']) && isset($_POST['gold']) && isset($_POST['silver']) && isset($_POST['prava']) && isset($_POST['almaz']) && isset($_POST['kris']) && isset($_POST['trava']) && isset($_POST['oves']) && isset($_POST['ban'])) {
$nick = $_POST['nick'];
$pass = $_POST['pass'];
$gold = $_POST['gold'];
$silver = $_POST['silver'];
$prava = $_POST['prava'];
$almaz = $_POST['almaz'];
$kris = $_POST['kris'];
$trava = $_POST['trava'];
$oves = $_POST['oves'];
$ban = $_POST['ban'];
if(!isset($err)) {
mysql_query("UPDATE `user` SET `ban` = '$ban', `nick` = '$nick', `pass` = '$pass', `gold` = '$gold', `silver` = '$silver', `prava` = '$prava', `almaz` = '$almaz', `kris` = '$kris', `trava` = '$trava', `oves` = '$oves' WHERE `id` = '$ank[id]' LIMIT 1");
header('Location: userrec.php');
$_SESSION['message'] = 'Игрок изменен!';
exit();
}else{
header('Location: userrec.php');
$_SESSION['err'] = $err;
// Вывод ошибки
exit();
}
}
}
require_once H.'core/foot.php';?>