Файл: sumergame.ru/lambard.php
Строк: 279
<?
define('PROTECTOR', 1);
$headmod = 'lambard';//фикс. места
$textl='Продажа барахла';
include('files/path.php');
include('files/gzips.php');
include($path.'files/db.php');
include($path.'files/auth.php');
include($path.'files/func.php');
going();
ryd();
place_okr();
place_tower();
place_zamok();
include($path.'files/core.php');
include($path.'files/head.php');
include($path.'files/zag.php');
switch($_GET[mod]){
default:
echo"<img src='pic/main/torg.gif'/> <font color="yellow">Что ты можешь мне продать?</font><br/><br/>";
echo"» <a href="lambard.php?mod=item">Продать вещи</a><br/>";
echo"» <a href="lambard.php?mod=res">Продать ресурсы</a><br/>";
echo"» <a href="lambard.php?mod=shems">Продать cхемы</a><br/>";
echo"» <a href="lambard.php?mod=rec">Продать рецепты</a>";
break;
case 'rec':
$aura2 = mysql_result(mysql_query("SELECT COUNT(*) FROM shems WHERE usr='$log' and `bonus` = '2'"),0);
echo"» <a href="lambard.php?mod=rs2">Рецепты магии</a> ($aura2)<br/>";
$aura = mysql_result(mysql_query("SELECT COUNT(*) FROM shems WHERE usr='$log' and `bonus` = '1'"),0);
echo"» <a href="lambard.php?mod=rs1">Продать жизни</a> ($aura)";
echo'<hr>';
echo "» <a href="lambard.php?"> Вернуться</a><br>";
break;
case 'rs2':
if ($_GET[page] == "" || $_GET[page] < 0 || $_GET[page] == "0")
{
$_GET[page] = 0;
}
$next = $_GET[page] + 1;
$back = $_GET[page] - 1;
$num = $_GET[page] * 5;
if($_GET[page] == "0")
{$i = 1;}
else{$i = ($_GET[page]*5)+1;}
$viso = mysql_num_rows(mysql_query("SELECT usr FROM shems"));
$puslap = floor($viso/5);
$times = date("H:i");
$req = mysql_query("SELECT * FROM `shems` WHERE `usr` = '$log' and `bonus`='2' ORDER BY id DESC LIMIT $num,5");
////////////////////////////
$avto=mysql_num_rows($req);
if(empty($_GET[id])){
if($avto>=1){
While($mag = mysql_fetch_array($req))
{
if($mag['unknow']=='0'){$mag['name']='Схема скрыта';}
$cena=round($mag[cena]/3);
$w=explode("*",$mag[name]);
echo"<img src="pic/tip/$w[0].gif" height=32 width=32> <a href="lambard.php?mod=rs2&id=$mag[id]">$mag[name]</a> ($mag[kol] штук, цена за 1, $cena серебра)<br/>";
}
echo'<hr>';
if ($_GET[page] > 0)
{
echo "<a href="lambard.php?mod=rs2&page=$back">назад</a>";
}
elseif ($_GET[page] == 0)
{
echo "назад";
}
echo"|";
if($_GET[page] < $puslap || $_GET[page] == "" || $_GET[page] == 0)
{echo "<a href="lambard.php?mod=rs2&page=$next">дальше</a>";}
else
{echo "дальше";}
}else{
echo"Нет рецептов!<br/>";
echo'<hr>';
if ($_GET[page] > 0)
{
echo "<a href="lambard.php?mod=rs2&page=$back">назад</a>";
}
elseif ($_GET[page] == 0)
{
echo "назад";
}
}
}else{
if(empty($_POST[num])){
echo" <form action="lambard.php?mod=rs2&id=".mysql_real_escape_string($_GET[id])."" method="post">";
echo 'Сколько?<br/>';
echo '<input name="num"/><br/>';
echo '<input type="submit" value="Продолжить"/></form>';
}else{
if($_POST[num]<=0){
echo"Ошибка!";
include($path.'files/down.php');
include($path.'files/meny.php');
exit;
}
$req = mysql_query("SELECT * FROM `shems` WHERE `usr` = '$log' and `id`='".mysql_real_escape_string($_GET['id'])."'");
////////////////////////////
$avto=mysql_num_rows($req);
if($avto==1){
$res = mysql_fetch_array($req);
/////////////////////
if($res[kol]-$_POST[num]<=0){
mysql_query("DELETE FROM `shems` WHERE usr='$log' and `id`='".mysql_real_escape_string($_GET['id'])."'");
$nkol=$res[kol];
}else{
$res[kol]=$res[kol]-$_POST[num];
mysql_query("UPDATE `shems` SET `kol` = '$res[kol]' WHERE `usr` = '$log' and `id`='".mysql_real_escape_string($_GET['id'])."'");
$nkol=$_POST[num];
}
///////////////////////
$cena=round($res[cena]/3);
////////////////////////
$udata[money]=round($udata[money]+$cena*$nkol);
$cena=round($cena*$nkol);
/////////////////////
mysql_query("UPDATE `users` SET `money` = '$udata[money]' WHERE `usr` = '$log'");
//////////////////////////////////////
echo"Рецепт продан: [$nkol штук] за $cena серебра!<br/>";
}else{
echo"Нет рецептов!<br/>";
}
}
}
echo'<hr>';
echo "» <a href="lambard.php?"> Вернуться</a><br>";
break;
case 'rs1':
if ($_GET[page] == "" || $_GET[page] < 0 || $_GET[page] == "0")
{
$_GET[page] = 0;
}
$next = $_GET[page] + 1;
$back = $_GET[page] - 1;
$num = $_GET[page] * 5;
if($_GET[page] == "0")
{$i = 1;}
else{$i = ($_GET[page]*5)+1;}
$viso = mysql_num_rows(mysql_query("SELECT usr FROM shems"));
$puslap = floor($viso/5);
$times = date("H:i");
$req = mysql_query("SELECT * FROM `shems` WHERE `usr` = '$log' and `bonus`='1' ORDER BY id DESC LIMIT $num,5");
////////////////////////////
$avto=mysql_num_rows($req);
if(empty($_GET[id])){
if($avto>=1){
While($mag = mysql_fetch_array($req))
{
if($mag['unknow']=='0'){$mag['name']='Схема скрыта';}
$cena=round($mag[cena]/3);
$w=explode("*",$mag[name]);
echo"<img src="pic/tip/$w[0].gif" height=32 width=32> <a href="lambard.php?mod=rs1&id=$mag[id]">$mag[name]</a> ($mag[kol] штук, цена за 1, $cena серебра)<br/>";
}
echo'<hr>';
if ($_GET[page] > 0)
{
echo "<a href="lambard.php?mod=rs1&page=$back">назад</a>";
}
elseif ($_GET[page] == 0)
{
echo "назад";
}
echo"|";
if($_GET[page] < $puslap || $_GET[page] == "" || $_GET[page] == 0)
{echo "<a href="lambard.php?mod=rs1&page=$next">дальше</a>";}
else
{echo "дальше";}
}else{
echo"Нет рецептов!<br/>";
echo'<hr>';
if ($_GET[page] > 0)
{
echo "<a href="lambard.php?mod=rs1&page=$back">назад</a>";
}
elseif ($_GET[page] == 0)
{
echo "назад";
}
}
}else{
if(empty($_POST[num])){
echo" <form action="lambard.php?mod=rs1&id=".mysql_real_escape_string($_GET[id])."" method="post">";
echo 'Сколько?<br/>';
echo '<input name="num"/><br/>';
echo '<input type="submit" value="Продолжить"/></form>';
}else{
if($_POST[num]<=0){
echo"Ошибка!";
include($path.'files/down.php');
include($path.'files/meny.php');
exit;
}
$req = mysql_query("SELECT * FROM `shems` WHERE `usr` = '$log' and `id`='".mysql_real_escape_string($_GET['id'])."'");
////////////////////////////
$avto=mysql_num_rows($req);
if($avto==1){
$res = mysql_fetch_array($req);
/////////////////////
if($res[kol]-$_POST[num]<=0){
mysql_query("DELETE FROM `shems` WHERE usr='$log' and `id`='".mysql_real_escape_string($_GET['id'])."'");
$nkol=$res[kol];
}else{
$res[kol]=$res[kol]-$_POST[num];
mysql_query("UPDATE `shems` SET `kol` = '$res[kol]' WHERE `usr` = '$log' and `id`='".mysql_real_escape_string($_GET['id'])."'");
$nkol=$_POST[num];
}
///////////////////////
$cena=round($res[cena]/3);
////////////////////////
$udata[money]=round($udata[money]+$cena*$nkol);
$cena=round($cena*$nkol);
/////////////////////
mysql_query("UPDATE `users` SET `money` = '$udata[money]' WHERE `usr` = '$log'");
//////////////////////////////////////
echo"Рецепт продан: [$nkol штук] за $cena серебра!<br/>";
}else{
echo"Нет рецептов!<br/>";
}
}
}
echo'<hr>';
echo "» <a href="lambard.php?"> Вернуться</a><br>";
break;
case 'shems':
if ($_GET[page] == "" || $_GET[page] < 0 || $_GET[page] == "0")
{
$_GET[page] = 0;
}
$next = $_GET[page] + 1;
$back = $_GET[page] - 1;
$num = $_GET[page] * 5;
if($_GET[page] == "0")
{$i = 1;}
else{$i = ($_GET[page]*5)+1;}
$viso = mysql_num_rows(mysql_query("SELECT usr FROM shems"));
$puslap = floor($viso/5);
$times = date("H:i");
$req = mysql_query("SELECT * FROM `shems` WHERE `usr` = '$log' and `bonus`='0' ORDER BY id DESC LIMIT $num,5");
////////////////////////////
$avto=mysql_num_rows($req);
if(empty($_GET[id])){
if($avto>=1){
While($mag = mysql_fetch_array($req))
{
if($mag['unknow']=='0'){$mag['name']='Схема скрыта';}
$cena=round($mag[cena]/3);
echo"<a href="lambard.php?mod=shems&id=$mag[id]">$mag[name]</a> ($mag[kol] штук, цена за 1, $cena серебра)<br/>";
}
echo'<hr>';
if ($_GET[page] > 0)
{
echo "<a href="lambard.php?mod=shems&page=$back">назад</a>";
}
elseif ($_GET[page] == 0)
{
echo "назад";
}
echo"|";
if($_GET[page] < $puslap || $_GET[page] == "" || $_GET[page] == 0)
{echo "<a href="lambard.php?mod=shems&page=$next">дальше</a>";}
else
{echo "дальше";}
}else{
echo"Нет cхем!<br/>";
echo'<hr>';
if ($_GET[page] > 0)
{
echo "<a href="lambard.php?mod=shems&page=$back">назад</a>";
}
elseif ($_GET[page] == 0)
{
echo "назад";
}
}
}else{
if(empty($_POST[num])){
echo" <form action="lambard.php?mod=shems&id=".mysql_real_escape_string($_GET[id])."" method="post">";
echo 'Сколько?<br/>';
echo '<input name="num"/><br/>';
echo '<input type="submit" value="Продолжить"/></form>';
}else{
if($_POST[num]<=0){
echo"Ошибка!";
include($path.'files/down.php');
include($path.'files/meny.php');
exit;
}
$req = mysql_query("SELECT * FROM `shems` WHERE `usr` = '$log' and `id`='".mysql_real_escape_string($_GET['id'])."'");
////////////////////////////
$avto=mysql_num_rows($req);
if($avto==1){
$res = mysql_fetch_array($req);
/////////////////////
if($res[kol]-$_POST[num]<=0){
mysql_query("DELETE FROM `shems` WHERE usr='$log' and `id`='".mysql_real_escape_string($_GET['id'])."'");
$nkol=$res[kol];
}else{
$res[kol]=$res[kol]-$_POST[num];
mysql_query("UPDATE `shems` SET `kol` = '$res[kol]' WHERE `usr` = '$log' and `id`='".mysql_real_escape_string($_GET['id'])."'");
$nkol=$_POST[num];
}
///////////////////////
$cena=round($res[cena]/3);
////////////////////////
$udata[money]=round($udata[money]+$cena*$nkol);
$cena=round($cena*$nkol);
/////////////////////
mysql_query("UPDATE `users` SET `money` = '$udata[money]' WHERE `usr` = '$log'");
//////////////////////////////////////
echo"Схема: [$nkol штук] продана за $cena серебра!<br/>";
}else{
echo"Нет схем!<br/>";
}
}
}
echo'<hr>';
echo "» <a href="lambard.php?"> Вернуться</a><br>";
break;
case 'item':
if ($_GET[page] == "" || $_GET[page] < 0 || $_GET[page] == "0")
{
$_GET[page] = 0;
}
$next = $_GET[page] + 1;
$back = $_GET[page] - 1;
$num = $_GET[page] * 5;
if($_GET[page] == "0")
{$i = 1;}
else{$i = ($_GET[page]*5)+1;}
$viso = mysql_num_rows(mysql_query("SELECT usr FROM item"));
$puslap = floor($viso/5);
$times = date("H:i");
$req = mysql_query("SELECT * FROM `item` WHERE `usr` = '$log' and `image`='not' ORDER BY id DESC LIMIT $num,5");
////////////////////////////
$avto=mysql_num_rows($req);
if(empty($_GET[id])){
if($avto>=1){
While($mag = mysql_fetch_array($req))
{
$cena=round($mag[cena]/3);
$w=explode("*",$mag[name]);
echo"<img src="pic/tip/$w[0].gif" height=32 width=32>"; echo" <a href="lambard.php?mod=item&id=$mag[id]">$mag[name]</a> (Цена $cena серебра)<br/>";
}
echo'<hr>';
if ($_GET[page] > 0)
{
echo "<a href="lambard.php?mod=item&page=$back">назад</a>";
}
elseif ($_GET[page] == 0)
{
echo "назад";
}
echo"|";
if($_GET[page] < $puslap || $_GET[page] == "" || $_GET[page] == 0)
{echo "<a href="lambard.php?mod=item&page=$next">дальше</a>";}
else
{echo "дальше";}
}else{
echo"Нет вещей<br/>";
echo'<hr>';
if ($_GET[page] > 0)
{
echo "<a href="lambard.php?mod=item&page=$back">назад</a>";
}
elseif ($_GET[page] == 0)
{
echo "назад";
}
}
}else{
$req = mysql_query("SELECT * FROM `item` WHERE `usr` = '$log' and `image`='not' and `id`='".mysql_real_escape_string($_GET['id'])."'");
////////////////////////////
$avto=mysql_num_rows($req);
if($avto==1){
$item = mysql_fetch_array($req);
$cena=round($item[cena]/3);
$udata[money]=$udata[money]+$cena;
mysql_query("UPDATE `users` SET `money` = '$udata[money]' WHERE `usr` = '$log'");
mysql_query("DELETE FROM `item` WHERE usr='$log' and `image`='not' and `id`='".mysql_real_escape_string($_GET['id'])."'");
echo"Вещь $item[name] продана за $cena серебра!<br/>";
}else{
echo"Нет такой вещи<br/>";
}
}
echo'<hr>';
echo "» <a href="lambard.php?"> Вернуться</a><br>";
break;
case 'res':
if ($_GET[page] == "" || $_GET[page] < 0 || $_GET[page] == "0")
{
$_GET[page] = 0;
}
$next = $_GET[page] + 1;
$back = $_GET[page] - 1;
$num = $_GET[page] * 5;
if($_GET[page] == "0")
{$i = 1;}
else{$i = ($_GET[page]*10)+1;}
$viso = mysql_num_rows(mysql_query("SELECT usr FROM res"));
$puslap = floor($viso/5);
$times = date("H:i");
$req = mysql_query("SELECT * FROM `res` WHERE `usr` = '$log' ORDER BY id DESC LIMIT $num,5");
////////////////////////////
$avto=mysql_num_rows($req);
if(empty($_GET[id])){
if($avto>=1){
While($mag = mysql_fetch_array($req))
{
$cena=round($mag[cena]/3);
echo"<img src="pic/tip/$mag[name].gif" height=32 width=32> <a href="lambard.php?mod=res&id=$mag[id]">$mag[name]</a> ($mag[kol] штук, цена за 1, $cena серебра)<br/>";
}
echo'<hr>';
if ($_GET[page] > 0)
{
echo "<a href="lambard.php?mod=res&page=$back">назад</a>";
}
elseif ($_GET[page] == 0)
{
echo "назад";
}
echo"|";
if($_GET[page] < $puslap || $_GET[page] == "" || $_GET[page] == 0)
{echo "<a href="lambard.php?mod=res&page=$next">дальше</a>";}
else
{echo "дальше";}
}else{
echo"Нет ресурсов!<br/>";
echo'<hr>';
if ($_GET[page] > 0)
{
echo "<a href="lambard.php?mod=res&page=$back">назад</a>";
}
elseif ($_GET[page] == 0)
{
echo "назад";
}
}
}else{
if(empty($_POST[num])){
echo" <form action="lambard.php?mod=res&id=".mysql_real_escape_string($_GET[id])."" method="post">";
echo 'Сколько?<br/>';
echo '<input name="num"/><br/>';
echo '<input type="submit" value="Продолжить"/></form>';
}else{
if($_POST[num]<=0){
echo"Ошибка!";
include($path.'files/down.php');
include($path.'files/meny.php');
exit;
}
$req = mysql_query("SELECT * FROM `res` WHERE `usr` = '$log' and `id`='".mysql_real_escape_string($_GET['id'])."'");
////////////////////////////
$avto=mysql_num_rows($req);
if($avto==1){
$res = mysql_fetch_array($req);
/////////////////////
if($res[kol]-$_POST[num]<=0){
mysql_query("DELETE FROM `res` WHERE usr='$log' and `id`='".mysql_real_escape_string($_GET['id'])."'");
$nkol=$res[kol];
}else{
$res[kol]=$res[kol]-$_POST[num];
mysql_query("UPDATE `res` SET `kol` = '$res[kol]' WHERE `usr` = '$log' and `id`='".mysql_real_escape_string($_GET['id'])."'");
$nkol=$_POST[num];
}
///////////////////////
$cena=round($res[cena]/3);
////////////////////////
$udata[money]=round($udata[money]+$cena*$nkol);
$cena=round($cena*$nkol);
/////////////////////
mysql_query("UPDATE `users` SET `money` = '$udata[money]' WHERE `usr` = '$log'");
//////////////////////////////////////
echo"$res[name] [$nkol штук] продано за $cena серебра!<br/>";
}else{
echo"Нет ресурсов!<br/>";
}
}
}
echo'<hr>';
echo "» <a href="lambard.php?"> Вернуться</a><br>";
break;
}
include($path.'files/down.php');
include($path.'files/meny.php');
?>