Файл: mssms/mssunduk.php
Строк: 77
<?php
echo '<div class="content">
<img src="/img/pattern-left.png" width="48" height="18" alt="" />
<span>Покупка <img src="/img/chest48.png" width="24" height="24" alt="Ларцы" /> через Смс</span>
<img src="/img/pattern-right.png" width="48" height="18" alt="" />
</div>';
include_once 'mssms/mspayment.php';
$smsbill = new SMSBill_getpassword();
$smsbill->setServiceId(12513);
$smsbill->useEncoding('UTF-8');
$smsbill->useHeader('no');
$smsbill->useCSS('no');
$smsbill->useLang('ru');
if (isset($_REQUEST['smsbill_password'])) {
if (!$smsbill->checkPassword($_REQUEST['smsbill_password'])) {
echo '<div class="err">Введенный пароль не верный вернитесь назад и попробуйте еще раз</div>';
}else{
$msmsg = 'Оплата выполнена успешно!<br />
ID игрока: '.$user['id'].'<br />
Зачислено <img src="/img/chest48.png" width="24" height="24" alt="Ларцы" /> + 10 шт. <img width="24" height="24" src="/img/key48.png" alt=""/> + 5 ';
mysql_query("INSERT INTO `ms_sms_log` SET `user` = '".$user['id']."', `msg` = '".$msmsg."', `time` = '".time()."'");
mysql_query("INSERT INTO `ms_chestsandkeys` SET `user` = '".num($user['id'])."', `act` = '".num(1)."', `time` = '".(time()+259200)."'");
mysql_query("INSERT INTO `ms_chestsandkeys` SET `user` = '".num($user['id'])."', `act` = '".num(1)."', `time` = '".(time()+259200)."'");
mysql_query("INSERT INTO `ms_chestsandkeys` SET `user` = '".num($user['id'])."', `act` = '".num(1)."', `time` = '".(time()+259200)."'");
mysql_query("INSERT INTO `ms_chestsandkeys` SET `user` = '".num($user['id'])."', `act` = '".num(1)."', `time` = '".(time()+259200)."'");
mysql_query("INSERT INTO `ms_chestsandkeys` SET `user` = '".num($user['id'])."', `act` = '".num(1)."', `time` = '".(time()+259200)."'");
mysql_query("INSERT INTO `ms_chestsandkeys` SET `user` = '".num($user['id'])."', `act` = '".num(1)."', `time` = '".(time()+259200)."'");
mysql_query("INSERT INTO `ms_chestsandkeys` SET `user` = '".num($user['id'])."', `act` = '".num(1)."', `time` = '".(time()+259200)."'");
mysql_query("INSERT INTO `ms_chestsandkeys` SET `user` = '".num($user['id'])."', `act` = '".num(1)."', `time` = '".(time()+259200)."'");
mysql_query("INSERT INTO `ms_chestsandkeys` SET `user` = '".num($user['id'])."', `act` = '".num(1)."', `time` = '".(time()+259200)."'");
mysql_query("INSERT INTO `ms_chestsandkeys` SET `user` = '".num($user['id'])."', `act` = '".num(1)."', `time` = '".(time()+259200)."'");
mysql_query("INSERT INTO `ms_chestsandkeys` SET `user` = '".num($user['id'])."', `act` = '".num(2)."', `time` = '".(time()+259200)."'");
mysql_query("INSERT INTO `ms_chestsandkeys` SET `user` = '".num($user['id'])."', `act` = '".num(2)."', `time` = '".(time()+259200)."'");
mysql_query("INSERT INTO `ms_chestsandkeys` SET `user` = '".num($user['id'])."', `act` = '".num(2)."', `time` = '".(time()+259200)."'");
mysql_query("INSERT INTO `ms_chestsandkeys` SET `user` = '".num($user['id'])."', `act` = '".num(2)."', `time` = '".(time()+259200)."'");
mysql_query("INSERT INTO `ms_chestsandkeys` SET `user` = '".num($user['id'])."', `act` = '".num(2)."', `time` = '".(time()+259200)."'");
$_SESSION['msg'] = 'Зачислено <img src="/img/chest48.png" width="24" height="24" alt="Ларцы" /> 10 шт 5 <img width="24" height="24" src="/img/key48.png" alt=""/>';
header("Location: ../Link:ILinkListener-MsSms;");
exit;
}
}else{
echo $smsbill->getForm();
}
echo '<a class="btnl" href="../Link:ILinkListener-MsSms;">
<img width="24" height="24" alt="" src="/img/home.png"/>
Назад
</a>';
?>