Файл: vfermu.ru/sys/collective/hangar/buy_place.php
Строк: 36
<?
if(isset($_GET['buy_place']) && in_array(intval($_GET['buy_place']),array(1,10)) && $_GET['buy_place']!=0 && isset($mc) && $mc['id']==$ct['id'] && $mcu['status']==1){
$i=0;
$type= intval($_GET['buy_place']);
if($type==1){$cena=1000000;$is = 1;}
if($type==10){$cena=10000000;$is = 10;}
if($type==50){$cena=50000000;$is = 50;}
if(isset($_GET['ok'])){
if($type==1){$time_guest = $time+10;}
if($type==10){$time_guest = $time+60;}
if($type==50){$time_guest = $time+120;}
$buy_time = (isset($_SESSION['buy_time_sec']) ? $_SESSION['buy_time_sec'] : $time); //подсчет времени
if($buy_time>$time){$_SESSION['msg']="Подождите ".time_left($buy_time-$time)."...";}else{
if($ct['money']>=$cena){
if($type==1){mysql_query("INSERT INTO `farm_collective_heli` SET `id_collective` = '$ct[id]', `id_user` = '$ku[id]', `time` = '$time', `heli` = '0'");}
if($type==10){mysql_query("INSERT INTO `farm_collective_heli` SET `id_collective` = '$ct[id]', `id_user` = '$ku[id]', `time` = '$time', `heli` = '0'");
mysql_query("INSERT INTO `farm_collective_heli` SET `id_collective` = '$ct[id]', `id_user` = '$ku[id]', `time` = '$time', `heli` = '0'");
mysql_query("INSERT INTO `farm_collective_heli` SET `id_collective` = '$ct[id]', `id_user` = '$ku[id]', `time` = '$time', `heli` = '0'");
mysql_query("INSERT INTO `farm_collective_heli` SET `id_collective` = '$ct[id]', `id_user` = '$ku[id]', `time` = '$time', `heli` = '0'");
mysql_query("INSERT INTO `farm_collective_heli` SET `id_collective` = '$ct[id]', `id_user` = '$ku[id]', `time` = '$time', `heli` = '0'");
mysql_query("INSERT INTO `farm_collective_heli` SET `id_collective` = '$ct[id]', `id_user` = '$ku[id]', `time` = '$time', `heli` = '0'");
mysql_query("INSERT INTO `farm_collective_heli` SET `id_collective` = '$ct[id]', `id_user` = '$ku[id]', `time` = '$time', `heli` = '0'");
mysql_query("INSERT INTO `farm_collective_heli` SET `id_collective` = '$ct[id]', `id_user` = '$ku[id]', `time` = '$time', `heli` = '0'");
mysql_query("INSERT INTO `farm_collective_heli` SET `id_collective` = '$ct[id]', `id_user` = '$ku[id]', `time` = '$time', `heli` = '0'");
mysql_query("INSERT INTO `farm_collective_heli` SET `id_collective` = '$ct[id]', `id_user` = '$ku[id]', `time` = '$time', `heli` = '0'");}
mysql_query("UPDATE `farm_collective` SET `money` = '".($ct['money']-$cena)."' WHERE `id` = '$ct[id]'");
$_SESSION['buy_time']=$time_guest;
$_SESSION['msg']="Успешно куплено";
}else{$_SESSION['no_money_ct']="".($cena-$ct['money'])."";}}
header("Location:/?collective=$ct[id]&hangar&".passgen());}else{
echo '<div class="event"><h1>Подтверждение</h1></div><div class="content"><ul class="block"><li><span class="title">Вы уверены?</span></li><li class="pt"><img alt="" width="16" height="16" src="/images/icons/tick.png"> <a href="/?collective='.$ct['id'].'&hangar&buy_place='.$type.'&ok"><span>Да, подтверждаю</span></a></li><li><img alt="" width="16" height="16" src="/images/icons/cross.png"> <a href="/?collective='.$ct['id'].'&hangar"><span>
Нет, отказываюсь</span></a></li></ul>';
include_once 'sys/other/foot.php';}}
?>