Файл: stalkerus.tk/changeavatars.php
Строк: 314
<?php
require_once('conf/dbc.php');
require_once('conf/session_start.php');
require_once('conf/ban.php');
if ((!isset($_SESSION['id'])) or (!isset($_SESSION['nick']))) {
?>
<script type="text/javascript">
document.location.href = "reg.php?err_login=1";
</script>
<?php
exit();
}
$log_id = $_SESSION['id'];
$query_ch = "Select money from users where id = '$log_id'";
$result_ch = mysqli_query($dbc, $query_ch) or die ('Ошибка передачи запроса к БД');
$row_ch = mysqli_fetch_array($result_ch);
$clan_ch = $row_ch['clan'];
$money = $row_ch['money'];
if ($money<1000) {
header ('Location: settings.php?error=1');
exit();
}
if (!empty($_POST['change'])) {
$group=$_POST['group'];
if ((isset($group)) and (!empty($group))) {
if (($group != 'grex') and
($group != 'dolg') and
($group != 'odinochki') and
($group != 'svoboda') and
($group != 'chistoenebo') and
($group != 'naemniky') and
($group != 'slizni') and
($group != 'yshenue') and
($group != 'iskately') and
($group != 'lastday')) {
$err=1;
}
}
else {
$err=2;
}
if ($err==0) {
if ($group == 'odinochki') {
$group = 'naemniki';
}
$query = "update users set gruppa = '$group', money=money-1000, clan='' where id = '$log_id' limit 1";
$result = mysqli_query($dbc, $query) or die ('Ошибка передачи запроса к БД');
header ('Location: settings.php?error=3');
exit();
}
}
$page_title = 'Сменить группировку';
require_once('conf/head.php');
require_once('conf/top.php');
?>
<?php if(!empty($err)) {?><div id="error">
<?php if ($err==1) {echo 'Подмена данных';}?>
<?php if ($err==2) {echo 'Вы не выбрали группировку';}?>
</div><?php } ?>
<div class="stats">
<form enctype="multipart/form-data" method="post" action="<? $_SERVER['PHP_SELF']; ?>">
<label for="group">Группировка:</label><br />
<select name="group" class="input" size="1">
<option value="dolg" <? if ($_POST['group'] == dolg) {?>selected="selected"<?php }?>>Долг</option>
<option value="odinochki" <? if ($_POST['group'] == odinochki) {?>selected="selected"<?php }?>>Одиночки</option>
<option value="svoboda" <? if ($_POST['group'] == svoboda) {?>selected="selected"<?php }?>>Свобода</option>
</select>
<div class="knopka">
<input type="submit" class="input" value="Сменить" name="change"/>
</div>
</form>
<p><span class="bonus">Стоимость:<img src="img/ico/money.png" width="12" height="12"/> 1000 RUB</span></p>
</div>
<?php
require_once('conf/navig.php');
require_once('conf/foot.php');
mysqli_close($dbc);
?>
case'addava1':
echo "Аватар изменен!<br/><a href="settings.php?mod=addava">Далее</a></div>";
break;
case'addava':
if (isset($_FILES['file']))
{
if (eregi('.jpe?g$',$_FILES['file']['name']) && $imgc=@imagecreatefromjpeg($_FILES['file']['tmp_name']))
{
if (imagesx($imgc)>240 || imagesy($imgc)>320)
{
$img_x=imagesx($imgc);
$img_y=imagesy($imgc);
if ($img_x==$img_y)
{
$dstW=240; // ширина
$dstH=320; // высота
}
elseif ($img_x>$img_y)
{
$prop=$img_x/$img_y;
$dstW=240;
$dstH=ceil($dstW/$prop);
}
else
{
$prop=$img_y/$img_x;
$dstH=320;
$dstW=ceil($dstH/$prop);
}
$screen=imagecreatetruecolor($dstW, $dstH);
imagecopyresampled($screen, $imgc, 0, 0, 0, 0, $dstW, $dstH, $img_x, $img_y);
imagedestroy($imgc);
@chmod("pic/avatar/userava/$udata[id].jpg",0777);
@chmod("pic/avatar/userava/$udata[id].gif",0777);
@chmod("pic/avatar/userava/$udata[id].png",0777);
@unlink("pic/avatar/userava/$udata[id].jpg");
@unlink("pic/avatar/userava/$udata[id].gif");
@unlink("pic/avatar/userava/$udata[id].png");
imagejpeg($screen,"pic/avatar/userava/$udata[id].jpg",80);
@chmod("pic/avatar/userava/$udata[id].jpg",0777);
imagedestroy($screen);
}
else
{
copy($_FILES['file']['tmp_name'], "pic/avatar/userava/$udata[id].jpg");
}
if($udata[money]<"4000"){
$ne=4000-$udata[money];
echo"У вас нехватает <img src='/pic/money_gold.png' alt='*'/> $ne золота!"; include($path.'files/down.php'); exit;}
$p=$udata[money]-4000;
mysql_query("UPDATE `users` SET `avatar` = 'userava/$udata[id].jpg', `money` = '$p' WHERE `usr` = '$log'");
echo"<font color='#FF0000'>Аватар успешно установлен</font>";
echo'<script type="text/javascript">window.location = "settings.php?mod=addava1"</script>';
}
elseif (eregi('.png$',$_FILES['file']['name']) && $imgc=@imagecreatefrompng($_FILES['file']['tmp_name']))
{
if (imagesx($imgc)>240 || imagesy($imgc)>320)
{
$img_x=imagesx($imgc);
$img_y=imagesy($imgc);
if ($img_x==$img_y)
{
$dstW=240; // ширина
$dstH=320; // высота
}
elseif ($img_x>$img_y)
{
$prop=$img_x/$img_y;
$dstW=240;
$dstH=ceil($dstW/$prop);
}
else
{
$prop=$img_y/$img_x;
$dstH=320;
$dstW=ceil($dstH/$prop);
}
$screen=ImageCreate($dstW, $dstH);
imagecopyresampled($screen, $imgc, 0, 0, 0, 0, $dstW, $dstH, $img_x, $img_y);
imagedestroy($imgc);
@chmod("pic/avatar/userava/$udata[id].jpg",0777);
@chmod("pic/avatar/userava/$udata[id].gif",0777);
@chmod("pic/avatar/userava/$udata[id].png",0777);
@unlink("pic/avatar/userava/$udata[id].jpg");
@unlink("pic/avatar/userava/$udata[id].gif");
@unlink("pic/avatar/userava/$udata[id].png");
imagepng($screen,"pic/avatar/userava/$udata[id].png");
@chmod("pic/avatar/userava/$udata[id].png",0777);
imagedestroy($screen);
}
else
{
copy($_FILES['file']['tmp_name'], "pic/avatar/userava/$udata[id].png");
}
if($udata[money]<"4000"){
$ne=4000-$udata[money];
echo"У вас нехватает <img src='/pic/money_gold.png' alt='*'/> $ne золота!"; include($path.'files/down.php'); exit;}
$p=$udata[money]-4000;
mysql_query("UPDATE `users` SET `avatar` = 'userava/$udata[id].png', `money` = '$p' WHERE `usr` = '$log'");
echo"<font color='#FF0000'>Аватар успешно установлен</font>";
echo'<script type="text/javascript">window.location = "settings.php?mod=addava1"</script>';
}
else
{
$err='<div class="darkred">Неверный формат файла</div>';
}
}
err();
echo "<form method='post' enctype='multipart/form-data' action='/settings.php?mod=addava'>";
echo "Ваш текущий аватар";
if($udata[avatar]==""){
echo"<br/><img src='pic/avatar/$udata[pol].png' alt='.' width='60'/><br/>";
}else{
echo"<br/><img src='pic/avatar/$udata[avatar]' alt='.' width='60'/><br/>";
}
echo "Можно загружать картинки форматов: JPG, PNG<br />При большом размере картинки качество не гарантируется!";
echo "<br /><br />";
echo "<input type='file' name='file' accept='image/*,image/gif,image/png,image/jpeg' />";
echo "<br/><input value='Заменить' type='submit' />";
echo "</form>";
break;
case'ava':
echo"<a href="settings.php?mod=addava">Загрузить аватар</a> <img src='/pic/money_gold.png' alt='*'/> 4000<br/>";
echo"<a href="settings.php?mod=ava200">Аватары</a> по <img src='/pic/money_gold.png' alt='*'/> 200<br/>";
echo"<a href="settings.php?mod=ava400">Аватары</a> по <img src='/pic/money_gold.png' alt='*'/> 400<br/>";
echo"<a href="settings.php?mod=ava600">Аватары</a> по <img src='/pic/money_gold.png' alt='*'/> 600<br/>";
echo"<a href="settings.php?mod=ava1000">Аватары</a> по <img src='/pic/money_gold.png' alt='*'/> 1000<br/>";
break;
case'ava200':
if(empty($_GET[name])){
$dira = opendir ("pic/avatar/ava200/$udata[pol]");
while ($filea = readdir ($dira))
{if (( $filea != ".") && ($filea != ".."))
{$aa[]=$filea;}}
closedir ($dira);
$totala = count($aa);
for ($ia = 0; $ia < $totala; $ia++){
$data_namea[]=$aa[$ia];
}
foreach($data_namea as $ka=>$va)
{
$dat_screena[]="<img src="pic/avatar/ava200/$udata[pol]/$data_namea[$ka]" alt="ava" width='60' /><br/>
<a href="settings.php?name=$data_namea[$ka]&mod=ava200">Купить</a>
<img src='/pic/money_gold.png' alt='*'/> 200
<div class='hr'></div>";
}
$totala = count($dat_screena);
if (empty($_GET['logs'])) $logs = 0;
else $logs = $_GET['logs'];
if ($totala < $logs + 10){ $end = $totala; }
else {$end = $logs + 10; }
for ($ia = $logs; $ia < $end; $ia++){
echo"$dat_screena[$ia]";
}
if ($logs != 0) {echo '<a href="settings.php?mod=logs='.($logs - 10).'&mod=ava200">Назад</a> ';}
if ($totala > $logs + 10) {echo ' <a href="settings.php?logs='.($logs + 10).'&mod=ava200">Далее</a>';}
echo"<br/>Всего: $totala аватаров.<br/>";
}else{
$name = htmlspecialchars(stripslashes(addslashes($_GET[name])));
if(!@file("pic/avatar/ava200/$udata[pol]/$name")){echo"Такой эмблемы не существует."; include($path.'files/down.php'); exit;}
if($udata[money]<"200"){
$ne=200-$udata[money];
echo"У вас нехватает <img src='/pic/money_gold.png' alt='*'/> $ne золота!"; include($path.'files/down.php'); exit;}
$p=$udata[money]-200;
mysql_query("UPDATE `users` SET `avatar` = 'ava200/$udata[pol]/$name', `money` = '$p' WHERE `usr` = '$log'");
echo"Аватар установлен!<br/>";
echo"<a href="pers.php?">Двлее</a>";
}
break;
case'ava400':
if(empty($_GET[name])){
$dira = opendir ("pic/avatar/ava400/$udata[pol]");
while ($filea = readdir ($dira))
{if (( $filea != ".") && ($filea != ".."))
{$aa[]=$filea;}}
closedir ($dira);
$totala = count($aa);
for ($ia = 0; $ia < $totala; $ia++){
$data_namea[]=$aa[$ia];
}
foreach($data_namea as $ka=>$va)
{
$dat_screena[]="<img src="pic/avatar/ava400/$udata[pol]/$data_namea[$ka]" alt="ava" width='60' /><br/>
<a href="settings.php?name=$data_namea[$ka]&mod=ava400">Купить</a>
<img src='/pic/money_gold.png' alt='*'/> 400
<div class='hr'></div>";
}
$totala = count($dat_screena);
if (empty($_GET['logs'])) $logs = 0;
else $logs = $_GET['logs'];
if ($totala < $logs + 10){ $end = $totala; }
else {$end = $logs + 10; }
for ($ia = $logs; $ia < $end; $ia++){
echo"$dat_screena[$ia]";
}
if ($logs != 0) {echo '<a href="settings.php?mod=logs='.($logs - 10).'&mod=ava400">Назад</a> ';}
if ($totala > $logs + 10) {echo ' <a href="settings.php?logs='.($logs + 10).'&mod=ava400">Далее</a>';}
echo"<br/>Всего: $totala аватаров.<br/>";
}else{
$name = htmlspecialchars(stripslashes(addslashes($_GET[name])));
if(!@file("pic/avatar/ava400/$udata[pol]/$name")){echo"Такой эмблемы не существует."; include($path.'files/down.php'); exit;}
if($udata[money]<"400"){
$ne=400-$udata[money];
echo"У вас нехватает <img src='/pic/money_gold.png' alt='*'/> $ne золота!"; include($path.'files/down.php'); exit;}
$p=$udata[money]-400;
mysql_query("UPDATE `users` SET `avatar` = 'ava400/$udata[pol]/$name', `money` = '$p' WHERE `usr` = '$log'");
echo"Аватар установлен!<br/>";
echo"<a href="pers.php?">Двлее</a>";
}
break;
case'ava600':
if(empty($_GET[name])){
$dira = opendir ("pic/avatar/ava600/$udata[pol]");
while ($filea = readdir ($dira))
{if (( $filea != ".") && ($filea != ".."))
{$aa[]=$filea;}}
closedir ($dira);
$totala = count($aa);
for ($ia = 0; $ia < $totala; $ia++){
$data_namea[]=$aa[$ia];
}
foreach($data_namea as $ka=>$va)
{
$dat_screena[]="<img src="pic/avatar/ava600/$udata[pol]/$data_namea[$ka]" alt="ava" width='60' /><br/>
<a href="settings.php?name=$data_namea[$ka]&mod=ava600">Купить</a>
<img src='/pic/money_gold.png' alt='*'/> 600
<div class='hr'></div>";
}
$totala = count($dat_screena);
if (empty($_GET['logs'])) $logs = 0;
else $logs = $_GET['logs'];
if ($totala < $logs + 10){ $end = $totala; }
else {$end = $logs + 10; }
for ($ia = $logs; $ia < $end; $ia++){
echo"$dat_screena[$ia]";
}
if ($logs != 0) {echo '<a href="settings.php?mod=logs='.($logs - 10).'&mod=ava600">Назад</a> ';}
if ($totala > $logs + 10) {echo ' <a href="settings.php?logs='.($logs + 10).'&mod=ava600">Далее</a>';}
echo"<br/>Всего: $totala аватаров.<br/>";
}else{
$name = htmlspecialchars(stripslashes(addslashes($_GET[name])));
if(!@file("pic/avatar/ava600/$udata[pol]/$name")){echo"Такой эмблемы не существует."; include($path.'files/down.php'); exit;}
if($udata[money]<"600"){
$ne=600-$udata[money];
echo"У вас нехватает <img src='/pic/money_gold.png' alt='*'/> $ne золота!"; include($path.'files/down.php'); exit;}
$p=$udata[money]-600;
mysql_query("UPDATE `users` SET `avatar` = 'ava600/$udata[pol]/$name', `money` = '$p' WHERE `usr` = '$log'");
echo"Аватар установлен!<br/>";
echo"<a href="pers.php?">Двлее</a>";
}
break;
case'ava1000':
if(empty($_GET[name])){
$dira = opendir ("pic/avatar/ava1000/$udata[pol]");
while ($filea = readdir ($dira))
{if (( $filea != ".") && ($filea != ".."))
{$aa[]=$filea;}}
closedir ($dira);
$totala = count($aa);
for ($ia = 0; $ia < $totala; $ia++){
$data_namea[]=$aa[$ia];
}
foreach($data_namea as $ka=>$va)
{
$dat_screena[]="<img src="pic/avatar/ava1000/$udata[pol]/$data_namea[$ka]" alt="ava" width='60' /><br/>
<a href="settings.php?name=$data_namea[$ka]&mod=ava1000">Купить</a>
<img src='/pic/money_gold.png' alt='*'/> 1000
<div class='hr'></div>";
}
$totala = count($dat_screena);
if (empty($_GET['logs'])) $logs = 0;
else $logs = $_GET['logs'];
if ($totala < $logs + 10){ $end = $totala; }
else {$end = $logs + 10; }
for ($ia = $logs; $ia < $end; $ia++){
echo"$dat_screena[$ia]";
}
if ($logs != 0) {echo '<a href="settings.php?mod=logs='.($logs - 10).'&mod=ava1000">Назад</a> ';}
if ($totala > $logs + 10) {echo ' <a href="settings.php?logs='.($logs + 10).'&mod=ava1000">Далее</a>';}
echo"<br/>Всего: $totala аватаров.<br/>";
}else{
$name = htmlspecialchars(stripslashes(addslashes($_GET[name])));
if(!@file("pic/avatar/ava1000/$udata[pol]/$name")){echo"Такой эмблемы не существует."; include($path.'files/down.php'); exit;}
if($udata[money]<"1000"){
$ne=1000-$udata[money];
echo"У вас нехватает <img src='/pic/money_gold.png' alt='*'/> $ne золота!"; include($path.'files/down.php'); exit;}
$p=$udata[money]-1000;
mysql_query("UPDATE `users` SET `avatar` = 'ava1000/$udata[pol]/$name', `money` = '$p' WHERE `usr` = '$log'");
echo"Аватар установлен!<br/>";
echo"<a href="pers.php?">Двлее</a>";
}
break;
}
include($path.'files/down.php');
?>