Файл: msarena/msattack.php
Строк: 90
<?php
$msarena = mysql_fetch_array(mysql_query("SELECT * FROM `ms_arena` WHERE `user` = '".num($user['id'])."' LIMIT 1"));
if($msarena['who'] == 1){
$msarena_who_info = mysql_fetch_array(mysql_query("SELECT * FROM `ms_arena` WHERE `who` = '".num(2)."' AND `type` = '".$msarena['type']."' LIMIT 1"));
}else{
$msarena_who_info = mysql_fetch_array(mysql_query("SELECT * FROM `ms_arena` WHERE `who` = '".num(1)."' AND `type` = '".$msarena['type']."' LIMIT 1"));
}
$msarena_who = mysql_fetch_array(mysql_query("SELECT * FROM `ms_user` WHERE `id` = '".$msarena_who_info['user']."' LIMIT 1"));
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `ms_arena_end` WHERE `user` = '".$user['id']."' LIMIT 1"),0)!=0){
header("Location: ../Link:ILinkListener-MsArena;Battle;End;");
exit;
}elseif(mysql_result(mysql_query("SELECT COUNT(*) FROM `ms_arena` WHERE `confirm` = '".num(1)."' AND `type` = '".$msarena['type']."' AND `user` = '".$user['id']."' LIMIT 1"),0)!=0){
include_once("msarena_include.php");
if($msuserhy < 1){
$mspoint1 = 5;
$mspoint2 = 1;
mysql_query("UPDATE `ms_user` SET `arena_defeat` = '".($msarena_who['arena_defeat']+1)."', `minuslife` = '".num(0)."', `life` = '".$msarena_who['life']."' WHERE `id` = '".$msarena_who['id']."' LIMIT 1");
mysql_query("UPDATE `ms_user` SET `arena_victory` = '".($user['arena_victory']+1)."', `minuslife` = '".num(0)."', `life` = '".$user['life']."' WHERE `id` = '".$user['id']."' LIMIT 1");
mysql_query("INSERT INTO `ms_arena_end` SET `point_arena` = '".num($mspoint1)."', `victory` = '".num(1)."', `type` = '".$msarena['type']."', `time` = '".time()."', `user` = '".$user['id']."'");
mysql_query("INSERT INTO `ms_arena_end` SET `point_arena` = '".num($mspoint2)."', `victory` = '".num(0)."', `type` = '".$msarena['type']."', `time` = '".time()."', `user` = '".$msarena_who['id']."'");
mysql_query("DELETE FROM `ms_arena` WHERE `type` = '".$msarena['type']."'");
$text = 'Вы выиграли';
$_SESSION['msg'] = $text;
header("Location: ../Link:ILinkListener-MsArena;Battle;End;");
exit;
}else{
mysql_query("UPDATE `ms_user` SET `minuslife` = '".$msuser."', `life` = '".($msarena_who['life']-$msuser)."' WHERE `id` = '".$msarena_who['id']."' LIMIT 1");
//// Лог боя
$msmssages_log = 'Удар в '.rating($msuser).' ур. по '.$msarena_who['name'].' ';
mysql_query("INSERT INTO `ms_arena_log` SET `user` = '".$user['id']."', `msg` = '".$msmssages_log."', `time` = '".time()."', `type` = '".$msarena['type']."'");
////////////
$text = 'Бой продалжается';
$_SESSION['msg'] = $text;
header("Location: ../Link:ILinkListener-MsArena;Battle;");
exit;
}
}else{
header("Location: ../Link:ILinkListener-MsArena;");
exit;
}
?>