Well guys what Rexo is saying, is kinda true (i am NOT here to help him scam/ i dunnu if he really does) but if u scan the website you'll find some holes, plus mgdmgd when it doesn't show an error that doesn't mean that it's not hackable, eventho it doesn't show, u might find other spots (such as register/login textboxes), and u might find blind SQL as well, be aware some websites are vulnerable in source code(i've tried this once) and some are in item shop, or you can exploit to delete dbo.Login table !
U can fix it alone or let someone else do it for you..
Basics for anti sql injection is like that (I mean the idea is like that)
Code:
if(strstr(" ' "))
return;
If anyone wants any help with it post here and people will help, so good luck