<?
function Show65kStats($stat_value)
{
if ($stat_value < 0)
{
$stat_value = $stat_value + 65536;
return $stat_value;
}
return $stat_value;
}
if($_SESSION['user_login'] != 'ok'){ header('Location: index.html'); exit(); }else{ if(read_module(3) == 0){ echo locked(''.for_themoment_closed.'','370'); }else{ global $db_primary,$db_secondary; $char = '
<table width="530" align="center" border="0" cellspacing="0" cellpadding="0">
<tr><td width="250">
<table width="250" align="center" border="0" cellspacing="0" cellpadding="0">
<tr><td align="center" class="full_title"><em>'.game_options.'</em></td></tr>
</table>
<table width="235" align="center" border="0" cellspacing="2" cellpadding="0">
<tr><td align="left"><ul>
<li><a href="'.$muweb['servername'].'-Characters-Reset.html">'.reset_character.'</a></li>
<li><a href="'.$muweb['servername'].'-Characters-GrandReset.html">Grand Reset Character</a></li>
<li><a href="'.$muweb['servername'].'-Characters-AddStats.html">'.add_stats.'</a></li>
<li><a href="'.$muweb['servername'].'-Characters-Clear.html">'.clear_pk_status.'</a></li>
<li><a href="'.$muweb['servername'].'-Characters-Warp.html">'.warp_maps.'</a></li>
<li><a href="'.$muweb['servername'].'-Characters-Unban.html">'.unban.'</a></li>
<li><a href="'.$muweb['servername'].'-Characters-Cinv.html">'.clear_inv.'</a></li>
<li><a href="'.$muweb['servername'].'-Characters-Info.html">'.character_info.'</a></li>
</td></tr>
</table></td>
<td align="center" valign="top" width="390"><em>'.htmlentities(display_m_c(2)).'</em></td></tr>
</table>'; echo html($char); $sub_page = $_GET['op2']; $sub_page = clean_variable($sub_page); switch (@$_GET['op2']){ case "Reset": if(read_module(31) == 0){ echo locked(''.for_themoment_closed.'','370'); }else{ $t__R = file("sys_/muweb_db/".cpanel_tDB.""); foreach ($t__R as $TR){ $TR = explode("|",$TR); if($TR[0] == 14464){ break; } } if(isset($_GET['op3']) && check_c($_GET['op3'],$_SESSION['user_login_name']) == true){ $ss = $db_secondary->Execute("Select connectstat from memb_stat where memb___id=?",array(clean_variable($_SESSION['user_login_name']))); if($ss){ $ss = $ss->fetchrow(); $ss[0] == 1 ? $ss_s = true : $ss_s = false; }else{ $error=1; } $get_v = $db_primary->Execute("Select clevel,resets,money,leveluppoint from character where accountid=? and mu_id=?",array(clean_variable($_SESSION['user_login_name']),clean_variable($_GET['op3']))); if($get_v){ $dat = $get_v->fetchrow(); $dat[0] >= $TR[1] ? $h_l = true : $h_l=false; $dat[1] >= $TR[8] ? $e_l = true : $e_l=false; $dat[2] >= $TR[2] ? $h_z = true : $h_z=false; }else{ $error=1; } if($ss_s == true || $h_l == false || $e_l == true || $h_z == false){ echo alert('Some requirements are not respected','warning'); $error=1; } if($error!=1){ $ex_l = $TR[3] * ($dat[1]+1); $nr_l = ($TR[3] + $dat[3]); if($TR[5] == 1 && $TR[4] == 1){ $j_43_k = "Update character set [strength]='25',[dexterity]='25',[vitality]='25',[energy]='25',[clevel]='1',[experience]='0',[money]=?,[LevelUpPoint]='$ex_l',[resets]=? where mu_id=?"; } elseif ($TR[5] == 0 && $TR[4] == 1){ $j_43_k = "Update character set [clevel]='1',[experience]='0',[money]=?,[LevelUpPoint]='$ex_l',[resets]=? where mu_id=?"; } elseif ($TR[5] == 0 && $TR[4] == 0){ $j_43_k = "Update character set [clevel]='1',[experience]='0',[money]=?,[LevelUpPoint]='$nr_l',[resets]=? where mu_id=?"; } elseif ($TR[5] == 1 && $TR[4] == 0){ $j_43_k = "Update character set [strength]='25',[dexterity]='25',[vitality]='25',[energy]='25',[clevel]='1',[experience]='0',[money]=?,[LevelUpPoint]='$nr_l',[resets]=? where mu_id=?"; } $rr_t_f_s = $db_primary->Execute($j_43_k,array(($dat[2]-$TR[2]),($dat[1]+1),clean_variable($_GET['op3']))); if($TR[6] == 1){ $rr_t_f_s = $db_primary->Execute("UPDATE character Set [inventory]=CONVERT(varbinary(1080), null) Where mu_id=?",array(clean_variable($_GET['op3']))); } if($TR[7] == 1){ $rr_t_f_s = $db_primary->Execute("UPDATE character Set [magiclist]=CONVERT(varbinary(180), null) Where mu_id=?",array(clean_variable($_GET['op3']))); } echo alert('Character have been successfully reseted'); } }else{ if(isset($_GET['op3'])){ echo alert('There was a problem with your request','warning'); } } $res_con .= '<br><br><table class="rankings-table" width="550" border="0" cellspacing="0" cellpadding="0" align="center">
<thead>
<tr>
<td align="left">#</td>
<td align="left">'.character_name.'</td>
<td align="center">LvL '.$TR[1].'</td>
<td align="center">'.number_format($TR[2]).' Zen</td>
<td align="center">'.reset_limit.' '.$TR[8].'</td>
<td align="center">'.status.'</td>
<td align="center">'.add_reset.'</td>
</tr>
</thead>'; $count = 0; $tr_color_2 = "even"; $tr_color_1 = ""; $take_my_chr = $db_primary->Execute("Select name,resets,clevel,money,mu_id from character where AccountID=?",array(clean_variable($_SESSION['user_login_name']))); $take_my_offline = $db_secondary->Execute("Select connectstat from memb_stat where memb___id=?",array(clean_variable($_SESSION['user_login_name']))); $take_my_offline = $take_my_offline->fetchrow(); foreach ($take_my_chr->GetArray() as $HHFW => $chr_zz) { $count++; $tr_color = ($count % 2) ? $tr_color_1 : $tr_color_2; $take_my_offline[0] == 0 ? $o="<img src=\"".$muweb['images']."/allow.gif\">" : $o = "<img src=\"".$muweb['images']."/deny.gif\">"; $chr_zz[2] >= $TR[1] ? $r = "<img src=\"".$muweb['images']."/allow.gif\">" : $r="<img src=\"".$muweb['images']."/deny.gif\">"; $chr_zz[3] >= $TR[2] ? $z = "<img src=\"".$muweb['images']."/allow.gif\">" : $z="<img src=\"".$muweb['images']."/deny.gif\">"; $chr_zz[1] < $TR[8] ? $rl = "<img src=\"".$muweb['images']."/allow.gif\">" : $rl="<img src=\"".$muweb['images']."/deny.gif\">"; $take_my_offline[0] == 0 ? $on=1 : $on=0; $chr_zz[2] >= $TR[1] ? $level=1 : $level=0; $chr_zz[3] >= $TR[2] ? $zen=1 : $zen=0; $chr_zz[1] < $TR[8] ? $limit=1 : $limit=0; if($on==1 && $level==1 && $zen==1 && $limit==1){ $reset = '<span class="medium_link"><a href="javascript
:void(0)" OnClick="ask_url(\''.are_you_sure.'\ - '.reset_character.' '.htmlentities($chr_zz[0]).'\',\''.$muweb['servername'].'-Characters-Reset-'.$chr_zz[4].'.html\')">'.reset_now.'</a></span>'; }else{ $reset = "N/A"; } $res_con .='<tbody><tr class="'.$tr_color.'">
<td width="3">'.$count.'</td>
<td align="left" width="50">'.htmlentities($chr_zz[0]).'</td>
<td align="center" width="50">'.$r.'</td>
<td align="center" width="100">'.$z.'</td>
<td align="center" width="100">'.$rl.'</td>
<td align="center" width="40">'.$o.'</td>
<td align="center" width="80">'.$reset.'</td>
</tr></tbody>'; } $res_con .='</table><br>'; } break; case "AddStats": if(read_module(32) == 0){ echo locked(''.for_themoment_closed.'','370'); }
else{
if(isset($_GET['op3']) && check_c($_GET['op3'],$_SESSION['user_login_name']) == true){
if(isset($_POST['add'])){
$lvlup = clean_variable($_POST['str']) + clean_variable($_POST['agi']) + clean_variable($_POST['vit']) + clean_variable($_POST['eng']);
if (isset($_POST['cmd'])){
$lvlup += clean_variable($_POST['cmd']); }
$ss = $db_secondary->Execute("Select connectstat from memb_stat where memb___id=?",array(clean_variable($_SESSION['user_login_name'])));
if($ss){
$ss = $ss->fetchrow();
$ss[0] == 1 ? $ss_s = true : $ss_s = false;
}
else{
$error=1;
}
$get_v = $db_primary->Execute("Select leveluppoint,strength,dexterity,vitality,energy,leadership from character where accountid=? and mu_id=?",array(clean_variable($_SESSION['user_login_name']),clean_variable($_GET['op3'])));
if($get_v){
$dat = $get_v->fetchrow();
$total_left = $dat[0]-$lvlup;
$dat[0] <= 0 ? $no_p = true : $no_p=false;
$total_left < 0 ? $no_p = true : $no_p=false;
}
else{
$error=1;
}
if(isset($_POST['cmd'])){
if ($_POST['str'] < 0 || $_POST['dex'] < 0 || $_POST['ener'] < 0 || $_POST['vit'] < 0 || $_POST['cmd'] < 0) { $null_points = true; }
}
else{
if ($_POST['str'] < 0 || $_POST['dex'] < 0 || $_POST['ener'] < 0 || $_POST['vit'] < 0 ) { $null_points = true; }
}
//fix only positive values by neo6
if(isset($_POST['cmd'])){
if(!preg_match("/^\d*$/",$_POST['str']) || !preg_match("/^\d*$/",$_POST['dex']) || !preg_match("/^\d*$/",$_POST['ener']) || !preg_match("/^\d*$/",$_POST['vit']) || !preg_match("/^\d*$/",$_POST['cmd']))
echo alert('Only Positive Values Allowed','warning');
$null_points = true;
}
else{
if(!preg_match("/^\d*$/",$_POST['str']) || !preg_match("/^\d*$/",$_POST['dex']) || !preg_match("/^\d*$/",$_POST['ener']) || !preg_match("/^\d*$/",$_POST['vit'])){
echo alert('Only Positive Values Allowed','warning');
$null_points = true;
}
}
if($ss_s == true || $no_p == true || $null_points == true){ echo alert('Some requirements are not respected','warning'); $error=1; } if($error!=1){ if(isset($_POST['cmd'])){ $update_stats = $db_primary->Execute("Update character set strength=?,dexterity=?,vitality=?,energy=?,leadership=?,leveluppoint=? where mu_id=?" ,array(clean_variable(Show65kStats($dat[1])+$_POST['str']),clean_variable(Show65kStats($dat[2])+$_POST['agi']),clean_variable(Show65kStats($dat[3])+$_POST['vit']),clean_variable(Show65kStats($dat[4])+$_POST['eng']),clean_variable(Show65kStats($dat[5])+$_POST['cmd']),$total_left,clean_variable($_GET['op3']))); }else{ $update_stats = $db_primary->Execute("Update character set strength=?,dexterity=?,vitality=?,energy=?,leveluppoint=? where mu_id=?" ,array(clean_variable(Show65kStats($dat[1])+$_POST['str']),clean_variable(Show65kStats($dat[2])+$_POST['agi']),clean_variable(Show65kStats($dat[3])+$_POST['vit']),clean_variable(Show65kStats($dat[4])+$_POST['eng']),$total_left,clean_variable($_GET['op3']))); } if($update_stats){ echo alert('Points successfully added','success'); }else{ echo alert('Some requirements are not respected','warning'); } } } $no_command = 0; $take_my_pp = $db_primary->Execute("Select class,strength,dexterity,vitality,energy,leadership,leveluppoint,name from character where mu_id=?",array(clean_variable($_GET['op3']))); if(!$take_my_pp){ $take_my_pp = $db_primary->Execute("Select class,strength,dexterity,vitality,energy,clevel,leveluppoint,name from character where mu_id=?",array(clean_variable($_GET['op3']))); $no_command = 1; } if($take_my_pp){ $some_pp = $take_my_pp->fetchrow(); } $res_con .='<br><table class="rankings-table" width="250" border="0" cellspacing="0" cellpadding="0" align="center">
<thead><tr><td align="center" colspan="2">Add Stats :: '.htmlentities($some_pp[7]).'</td></tr></thead>
<tbody><tr><td class="even"><form action="" name="add_stats" method="POST">
<table width="250" border="0" cellspacing="0" cellpadding="0" align="center">
<tr><td width="125" align="center" colspan="2">Level up points '.number_format($some_pp[6]).'<input type="hidden" name="add"></td></tr>
<tr><td width="125" align="right">Strength ['.number_format(Show65kStats($some_pp[1])).']</td><td width="125"><input type="text" class="field" name="str" size="10"></td></tr>
<tr><td width="125" align="right">Agility ['.number_format(Show65kStats($some_pp[2])).']</td><td width="125"><input type="text" class="field" name="agi" size="10"></td></tr>
<tr><td width="125" align="right">Vitality ['.number_format(Show65kStats($some_pp[3])).']</td><td width="125"><input type="text" class="field" name="vit" size="10"></td></tr>
<tr><td width="125" align="right">Energy ['.number_format(Show65kStats($some_pp[4])).']</td><td width="125"><input type="text" class="field" name="eng" size="10"></td></tr>'; if($some_pp[0] == 64 || $some_pp[0] == 65){ if($no_command != 1){ $res_con .='<tr><td width="125" align="right">Command ['.number_format(Show65kStats($some_pp[5])).']</td><td width="125"><input type="text" class="field" name="cmd" size="10"></td></tr>'; } } $res_con .='</td></tr></table></form><table align="center" border="0" cellspacing="0" cellpadding="0"><tr><td align="right"><br><div id="add_content"><input type="button" class="button" value="'.add_statss.'" onclick="send_data(\'add_stats\',\'add_content\',\''.pleas_wait.'\',\'200\')"></div><br></td></tr></table></tbody></table>'; }else{ if(isset($_GET['op3'])){ echo alert('There was a problem with your request','warning'); } } $t__R = file("sys_/muweb_db/".cpanel_tDB.""); foreach ($t__R as $TR){ $TR = explode("|",$TR); if($TR[0] == 14464){ break; } } $res_con .= '<br><br><table class="rankings-table" id="table-1" width="500" border="0" cellspacing="0" cellpadding="0" align="center">
<thead>
<tr>
<td align="left">#</td>
<td align="left">'.character_name.'</td>
<td align="center">'.level_up_points_to_add.'</td>
<td align="center">'.status.'</td>
<td align="center">'.add_stats.'</td>
</tr>
</thead>'; $count = 0; $tr_color_2 = "even"; $tr_color_1 = ""; $take_my_chr = $db_primary->Execute("Select mu_id,leveluppoint,name from character where AccountID=?",array(clean_variable($_SESSION['user_login_name']))); $take_my_offline = $db_secondary->Execute("Select connectstat from memb_stat where memb___id=?",array(clean_variable($_SESSION['user_login_name']))); $take_my_offline = $take_my_offline->fetchrow(); foreach ($take_my_chr->GetArray() as $HHFW => $chr_zz) { $count++; $tr_color = ($count % 2) ? $tr_color_1 : $tr_color_2; $take_my_offline[0] == 1 ? $o="<img src=\"".$muweb['images']."/deny.gif\">" : $o = "<img src=\"".$muweb['images']."/allow.gif\">"; $chr_zz[1] > 0 ? $p = number_format($chr_zz[1]) : $p="<img src=\"".$muweb['images']."/deny.gif\">"; $chr_zz[1] > 0 ? $error=0 : $error=1 ; $take_my_offline[0] == 0 ? $on=1 : $on=0; if($error!=1 && $on==1){ $a2d = '<span class="medium_link"><a href="'.$muweb['servername'].'-Characters-AddStats-'.$chr_zz[0].'.html")">'.add_statss.'</a></span>'; }else{ $a2d = "N/A"; } $res_con .='<tbody><tr class="'.$tr_color.'">
<td width="3">'.$count.'</td>
<td align="left" width="50">'.htmlentities($chr_zz[2]).'</td>
<td align="center" >'.$p.'</td>
<td align="center" width="40">'.$o.'</td>
<td align="center" width="80">'.$a2d.'</td>
</tr></tbody>'; } $res_con .='</table><br>'; } break; case "Clear": if(read_module(33) == 0){ echo locked(''.for_themoment_closed.'','370'); }else{ $t__R = file("sys_/muweb_db/".cpanel_tDB.""); foreach ($t__R as $TR){ $TR = explode("|",$TR); if($TR[0] == 16240){ break; } } if(isset($_GET['op3']) && check_c($_GET['op3'],$_SESSION['user_login_name']) == true){ $ss = $db_secondary->Execute("Select connectstat from memb_stat where memb___id=?",array(clean_variable($_SESSION['user_login_name']))); if($ss){ $ss = $ss->fetchrow(); $ss[0] == 1 ? $ss_s = true : $ss_s = false; }else{ $error=1; } $get_v = $db_primary->Execute("Select pklevel,money from character where accountid=? and mu_id=?",array(clean_variable($_SESSION['user_login_name']),clean_variable($_GET['op3']))); if($get_v){ $dat = $get_v->fetchrow(); $total_left_z = $dat[1]-$TR[1]; $dat[0] <= 3 ? $no_p = true : $no_p=false; $total_left_z < 0 ? $no_z = true : $no_z=false; }else{ $error=1; } if($ss_s == true || $no_p == true || $no_z == true){ echo alert('Some requirements are not respected','warning'); $error=1; } if($error!=1){ $s_p = $db_primary->Execute("Update character set [pklevel]='3',[pkcount]='0',[pktime]='0',[money]=$total_left_z where mu_id=?",array(clean_variable($_GET['op3']))); if($s_p){ echo alert('PK Status successfully cleared','success'); }else{ echo alert('There was a problem with execution','warning'); } } }else{ if(isset($_GET['op3'])){ echo alert('There was a problem with your request','warning'); } } $res_con .= '<br><br><table class="rankings-table" id="table-1" width="500" border="0" cellspacing="0" cellpadding="0" align="center">
<thead>
<tr>
<td align="left">#</td>
<td align="left">'.character_name.'</td>
<td align="center">'.pk_status.'</td>
<td align="center">'.number_format($TR[1]).' Zen</td>
<td align="center">'.status.'</td>
<td align="center">'.clear_pk.'</td>
</tr>
</thead>'; $count = 0; $tr_color_2 = "even"; $tr_color_1 = ""; $take_my_chr = $db_primary->Execute("Select mu_id,name,pklevel,money from character where AccountID=?",array(clean_variable($_SESSION['user_login_name']))); $take_my_offline = $db_secondary->Execute("Select connectstat from memb_stat where memb___id=?",array(clean_variable($_SESSION['user_login_name']))); $take_my_offline = $take_my_offline->fetchrow(); foreach ($take_my_chr->GetArray() as $HHFW => $chr_zz) { $count++; $tr_color = ($count % 2) ? $tr_color_1 : $tr_color_2; $take_my_offline[0] == 1 ? $error=1 && $o="<img src=\"".$muweb['images']."/deny.gif\">" : $o = "<img src=\"".$muweb['images']."/allow.gif\">"; $chr_zz[2] > 3 ? $p="<img src=\"".$muweb['images']."/allow.gif\">" : $p="<img src=\"".$muweb['images']."/deny.gif\">"; $chr_zz[3] >= $TR[1] ? $z="<img src=\"".$muweb['images']."/allow.gif\">" : $z="<img src=\"".$muweb['images']."/deny.gif\">"; $take_my_offline[0] == 0 ? $on=1 : $on=0; $chr_zz[2] > 3 ? $p_level=1 : $p_level=0; $chr_zz[3] >= $TR[1] ? $zen=1 : $zen=0; if($on == 1 && $zen == 1 && $p_level == 1){ $a2d = '<span class="medium_link"><a href="javascript
:void(0)" OnClick="ask_url(\''.are_you_sure.'\',\''.$muweb['servername'].'-Characters-Clear-'.$chr_zz[0].'.html\')">'.clear_pk.'</a></span>'; }else{ $a2d = "N/A"; } $res_con .='<tbody><tr class="'.$tr_color.'">
<td width="3">'.$count.'</td>
<td align="left" width="50">'.htmlentities($chr_zz[1]).'</td>
<td align="center" width="60">'.$p.'</td>
<td align="center">'.$z.'</td>
<td align="center" width="40">'.$o.'</td>
<td align="center" width="100">'.$a2d.'</td>
</tr></tbody>'; } $res_con .='</table><br>'; } break; case "Warp": if(read_module(34) == 0){ echo locked(''.for_themoment_closed.'','370'); }else{ $t__R = file("sys_/muweb_db/".warpmaps_tDB.""); if(isset($_GET['op3']) && check_c($_GET['op3'],$_SESSION['user_login_name']) == true){ if(isset($_POST['map_id'])){ $map_id = clean_variable($_POST['map_id']); $map_count = 0; foreach ($t__R as $map_info){ $map_info = explode("|",$map_info); if($map_info[0] == $map_id){ $map_count++; break; } } $ss = $db_secondary->Execute("Select connectstat from memb_stat where memb___id=?",array(clean_variable($_SESSION['user_login_name']))); if($ss){ $ss = $ss->fetchrow(); $ss[0] == 1 ? $ss_s = true : $ss_s = false; }else{ $error=1; } $get_v = $db_primary->Execute("Select money from character where accountid=? and mu_id=?",array(clean_variable($_SESSION['user_login_name']),clean_variable($_GET['op3']))); if($get_v){ $dat = $get_v->fetchrow(); $total_left_z = $dat[0]-$map_info[5]; $total_left_z < 0 ? $no_z = true : $no_z=false; }else{ $error=1; } if($no_z == true){ echo alert('Not enough zen to warp','warning'); $error=1; } elseif($ss_s == true || $map_count <= 0){ echo alert('Some requirements are not respected','warning'); $error=1; } if($error != 1){ $up = $db_primary->Execute("Update character set [Mapnumber]=?,[MapPosX]=?,[MapPosY]=?,[Money]=? where [mu_id]=?",array($map_info[1],$map_info[3],$map_info[4],$total_left_z,clean_variable($_GET['op3']))); if($up){ echo alert('Character successfully warped','success'); }else{ echo alert('There was a problem with execution','warning'); } } } $get_name = $db_primary->Execute("Select name,mapnumber,money from character where mu_id=?",array(clean_variable($_GET['op3']))); $get_name = $get_name->fetchrow(); $c_warp = '<br><table class="rankings-table" id="table-1" width="250" border="0" cellspacing="0" cellpadding="0" align="center">
<thead><tr><td align="center" colspan="2">'.warp.' :: '.htmlentities($get_name[0]).'</td></tr></thead>
<tbody><tr><td class="even"><form action="" name="warp" method="POST">
<table width="250" border="0" cellspacing="0" cellpadding="0" align="center">
<tr><td width="125" align="right"> </td><td width="125"> </td></tr>
<tr><td width="125" align="right">'.current_map.'</td><td width="125">'.decode_map($get_name[1]).'</td></tr>
<tr><td width="125" align="right">'.your_zen.'</td><td width="125">'.number_format($get_name[2]).'</td></tr>
<tr><td width="125" align="right">'.warp_to.'</td><td width="125"><select name="map_id" class="field">'; foreach ($t__R as $map){ $map = explode("|",$map); $c_warp .='<option value="'.$map[0].'">'.$map[2].'</option>'; } $c_warp .='</select></td></tr>'; $c_warp .='</td></tr></table></form><table align="center" border="0" cellspacing="0" cellpadding="0"><tr><td align="right"><br><div id="warp_content"><input type="button" class="bt2" value="'.warp.'" onclick="send_data(\'warp\',\'warp_content\',\''.pleas_wait.'\',\'200\')"></div><br></td></tr></table>
<table width="250" border="0" cellspacing="0" cellpadding="0" align="center">
<tr><td colspan="2" align="center"><b><em>'.warp_price.'</em></b></td></tr>'; $count_m = 0; $tr_color_2 = "even2"; $tr_color_1 = ""; foreach ($t__R as $map){ $map = explode("|",$map); $count_m++; $tr_color_m = ($count_m % 2) ? $tr_color_1 : $tr_color_2; $c_warp .='<tr class="'.$tr_color_m.'"><td width="125" align="right">'.$map[2].'</td><td width="125">'.number_format($map[5]).' zen</td></tr>'; } $c_warp .='</table></tbody></table>'; echo html($c_warp); }else{ if(isset($_GET['op3'])){ echo alert('There was a problem with your request','warning'); } } $res_con .= '<br><br><table class="rankings-table" id="table-1" width="500" border="0" cellspacing="0" cellpadding="0" align="center">
<thead>
<tr>
<td align="left">#</td>
<td align="left">'.character_name.'</td>
<td align="center">'.status.'</td>
<td align="center">'.map.'</td>
</tr>
</thead>'; $count = 0; $tr_color_2 = "even"; $tr_color_1 = ""; $take_my_chr = $db_primary->Execute("Select mu_id,name,pklevel,money from character where AccountID=?",array(clean_variable($_SESSION['user_login_name']))); $take_my_offline = $db_secondary->Execute("Select connectstat from memb_stat where memb___id=?",array(clean_variable($_SESSION['user_login_name']))); $take_my_offline = $take_my_offline->fetchrow(); foreach ($take_my_chr->GetArray() as $HHFW => $chr_zz) { $count++; $tr_color = ($count % 2) ? $tr_color_1 : $tr_color_2; $take_my_offline[0] == 1 ? $error=1 && $o="<img src=\"".$muweb['images']."/deny.gif\">" : $o = "<img src=\"".$muweb['images']."/allow.gif\">"; $take_my_offline[0] == 0 ? $on=1 : $on=0; if($on == 1){ $a2d = '<span class="medium_link"><a href="'.$muweb['servername'].'-Characters-Warp-'.$chr_zz[0].'.html">'.select_map.'</a></span>'; }else{ $a2d = "N/A"; } $res_con .='<tbody><tr class="'.$tr_color.'">
<td width="3">'.$count.'</td>
<td align="left" width="70">'.htmlentities($chr_zz[1]).'</td>
<td align="center" >'.$o.'</td>
<td align="center" width="120">'.$a2d.'</td>
</tr></tbody>'; } $res_con .='</table><br>'; } break;
case "Info": if(read_module(35) == 0){ echo locked('For the moment this page is closed...Please try again latter.','370'); }else{ $res_con .= '<br><br><table class="rankings-table" id="table-1" width="500" border="0" cellspacing="0" cellpadding="0" align="center">
<thead>
<tr>
<td align="left">#</td>
<td align="left">'.character_name.'</td>
<td align="left">'.classe.'</td>
<td align="left">LvL</td>
<td align="left">'.map.'</td>
<td align="center">STR</td>
<td align="center">AGI</td>
<td align="center">VIT</td>
<td align="center">ENG</td>
<td align="center">COM</td>
</tr>
</thead>';
$count = 0; $tr_color_2 = "even"; $tr_color_1 = ""; $take_my_chr = $db_primary->Execute("Select mu_id,name,class,clevel,resets,mapnumber,strength,dexterity,vitality,energy,leadership from character where AccountID=?",array(clean_variable($_SESSION['user_login_name']))); if(!$take_my_chr){ $take_my_chr = $db_primary->Execute("Select mu_id,name,class,clevel,resets,mapnumber,strength,dexterity,vitality,energy from character where AccountID=?",array(clean_variable($_SESSION['user_login_name']))); } foreach ($take_my_chr->GetArray() as $HHFW => $chr_zz) { $count++; switch ($chr_zz[10]){ case 0: $chr_zz[10] = "--"; break; } $tr_color = ($count % 2) ? $tr_color_1 : $tr_color_2; $res_con .='<tbody><tr class="'.$tr_color.'">
<td width="3">'.$count.'</td>
<td align="left" width="50"><a href='.$muweb['servername'].'-Character-'.htmlentities($chr_zz[0]).'.html>'.htmlentities($chr_zz[1]).'</a></td>
<td align="left">'.class_list($chr_zz[2],'short').'</td>
<td align="left">'.($chr_zz[3]).'[<span class="rankings_text_reset">'.$chr_zz[4].'</span>]</td>
<td align="left">'.decode_map($chr_zz[5]).'</td>
<td align="center">'.number_format(Show65kStats($chr_zz[6])).'</td>
<td align="center">'.number_format(Show65kStats($chr_zz[7])).'</td>
<td align="center">'.number_format(Show65kStats($chr_zz[8])).'</td>
<td align="center">'.number_format(Show65kStats($chr_zz[9])).'</td>
<td align="center">'.number_format(Show65kStats($chr_zz[10])).'</td>
</tr></tbody>'; } $res_con .='</table><br>'; } break;
case "Dc":
if(read_module(36) == 0){ echo locked(''.for_themoment_closed.'','370'); }else{
if (isset($_POST['dc_start'])){
$user = $_SESSION['user_login_name'];
$conn = mssql_connect($muweb['db_host'],$muweb['db_user'],$muweb['db_password'])
or die ("<h1>Can't connect to database</h1>");
$selected=mssql_select_db($muweb['db_name'], $conn);
mssql_close($conn);
function ascii2hex($ascii) {
$hex = '';
for ($i = 0; $i < strlen($ascii); $i++) {
$byte = strtoupper(dechex(ord($ascii{$i})));
$byte = str_repeat('0', 2 - strlen($byte)).$byte;
$hex.=$byte." ";
}
$hex=str_replace(" ", "", $hex);
return $hex;
}
function hex2ascii($hex){
$ascii='';
$hex=str_replace(" ", "", $hex);
for($i=0; $i<strlen($hex); $i=$i+2) {
$ascii.=chr(hexdec(substr($hex, $i, 2)));
}
return($ascii);
}
function dc_user($host, $port, $user)
{
$mystring = "C11405"; // Header packet. I used a packet sniffer to get this packet.It could be different for every gameserver.
$mystring .= ascii2hex($user); // Insert into the packet the username after you convert it to hex first.
$zeros = strlen($mystring);
for ($i;$i<=39-$zeros;$i++){
$mystring .="0"; // The packets must be 40 bits long so we fill the rest of the packet with zeros.
}
$packet = hex2ascii($mystring); // Convert the whole string to ascii
$socket = socket_create(AF_INET, SOCK_STREAM, SOL_TCP);
if (!$x = @socket_connect($socket, $host, $port)) // attempt to connect
{
echo "<table width=\"320\" height=\"44\" border=\"0\" cellpadding=\"0\" cellspacing=\"0\" background=\"".$muweb['images']."/alert_w.png\" align=\"center\"<tr>
<td width=\"16\" rowspan=\"2\"> </td>
<td width=\"304\" height=\"24\"> </td>
</tr>
<tr>
<td height=\"26\" valign=\"top\" class=\"normal_text_white\" align=\"left\">Cant connect to server. Its offline</td> </tr> </table>
";
}
else
{
socket_write($socket, $packet, strlen($packet)); // Send the dc packet
socket_close($socket); // Close connection
print "
<table width=\"320\" height=\"44\" border=\"0\" cellpadding=\"0\" cellspacing=\"0\" background=\"".$muweb['images']."/alert_s.png\" align=\"center\"<tr>
<td width=\"16\" rowspan=\"2\"> </td>
<td width=\"304\" height=\"24\"> </td>
</tr>
<tr>
<td height=\"26\" valign=\"top\" class=\"normal_text_white\" align=\"left\">Approximately in 10 seconds you can login</td> </tr> </table>
";
}
/////////////////////////////////////////////////////////
// This will also delete the entry from the database //
/////////////////////////////////////////////////////////
$conn = mssql_connect($muweb['db_host'],$muweb['db_user'],$muweb['db_password'])
or die ("Can't connect to database");
$selected=mssql_select_db($muweb['db_name'], $conn);
$sql = mssql_query("UPDATE MEMB_STAT SET ConnectStat ='0' WHERE memb___id='$user'");
mssql_close($conn);
/////////////////////////////////////////////////////////
}
dc_user($muweb['db_host'], "55970", $user); // Run the function: Connect to port 55970 (Joinserver port) and dc the user. Where $user=username
}
else{
$res_con = "
<table class=\"rankings-table\" width=\"500\" border=\"0\" cellspacing=\"0\" cellpadding=\"0\" align=\"center\">
<thead><tr> <td class=\"left\">".dc_accountt."</td></tr></thead>
<tbody><tr> <td class=\"even\" align=\"center\"><form name=\"form1\" method=\"post\"><br>
<table width=\"400\" border=\"0\" align=\"center\" cellpadding=\"0\" cellspacing=\"0\">
<tr align=\"center\">
<td width=\"100%\">
<INPUT type=hidden value=1 name=dc_start><input class=\"button\" type=\"submit\" name=\"Submit\" value=\"".dc."\"></td> </tr>
</table> </form><br></td> </tr></tbody></table>
";
}
}
break;
case "Unban":
if(read_module(37) == 0){ echo locked(''.for_themoment_closed.'','370'); }else{
if (isset($_POST['unban'])){
$user = $_SESSION['user_login_name']; //Username
$cost['credits'] = 4750; //Unban cost Credits
$name = stripslashes($_POST['name']);
$Time['format']="d-m-Y H:i";
$pm_send_time=date($Time['format'], time());
$msconnect=mssql_connect($muweb['db_host'],$muweb['db_user'],$muweb['db_password']); //Connect To database
if (!mssql_connect($muweb['db_host'],$muweb['db_user'],$muweb['db_password'])) die("<center>Can't Connect to DB</center>");
else
{
$msdb=mssql_select_db("MuOnline",$msconnect);
if (eregi("[^a-zA-Z0-9_-]", $name))
{
echo("SQL Injection Detected");
header('Location: index.html');
exit();
}
$sql_name_check = mssql_query("SELECT Name FROM Character WHERE Name='$name' and AccountID = '$user'");
$name_check = mssql_num_rows($sql_name_check);
$sql_ban_check = mssql_query("SELECT Name FROM Character WHERE Name='$name' and ctlcode = '1' and AccountID = '$user'");
$ban_check = mssql_num_rows($sql_ban_check);
$sql_cred_count = mssql_query("SELECT Credits FROM MEMB_CREDITS WHERE memb___id='$user'");
$cred_count = mssql_fetch_row($sql_cred_count);
$credits = $cred_count[0];
$need_credits = $cost['credits'];
$new_credits = $credits - $need_credits;
if (empty($name))
{ print "Error: ";
if (empty($name) || ($name_check <= 0))
print "Some fields were left blank. Please go back and try again.";}
elseif ($name_check <= 0){
print "Your Character does not exist in your account and / or in our database. Please go back and try again.<br>"; }
elseif ($ban_check <= 0){
print alert("$name is not banned", "warning");
}
elseif ($credits < $need_credits){
print "Not enough credits, unban cost ".$cost['credits']." credits";
}
else {
$msquery = "UPDATE Character SET ctlcode=0 WHERE AccountID = '$user' AND Name = '$name' ";
$msquery1 = "UPDATE MEMB_CREDITS SET credits=$new_credits WHERE memb___id = '$user'";
$msquery2 = "INSERT INTO unban_log (character_name,date) VALUES ('$name','$pm_send_time')";
$msresults = mssql_query($msquery);
$msresults1 = mssql_query($msquery1);
$msresults2 = mssql_query($msquery2);
print "<table width=\"320\" height=\"44\" border=\"0\" cellpadding=\"0\" cellspacing=\"0\" background=\"".$muweb['images']."/alert_s.png\" align=\"center\"<tr>
<td width=\"16\" rowspan=\"2\"> </td>
<td width=\"304\" height=\"24\"> </td>
</tr>
<tr>
<td height=\"26\" valign=\"top\" class=\"normal_text_white\" align=\"left\">$name's succesfuly unbaned.</td> </tr> </table>
";}
}
}
else
{
$res_con = "
<table class=\"rankings-table\" width=\"500\" border=\"0\" cellspacing=\"0\" cellpadding=\"0\" align=\"center\">
<thead><tr> <td class=\"left\">Unban Cost <font color=red>4750</font> Credits</td></tr></thead>
<tbody><tr> <td class=\"even\" align=\"center\"><form name=\"form1\" method=\"post\"><br>
<table width=\"400\" border=\"0\" align=\"center\" cellpadding=\"0\" cellspacing=\"0\">
<tr> <td><div align=\"right\">".character_name."</div></td>
<td><div align=\"left\"><input name=\"name\" class=\"field\" type=\"text\" id=\"name\" maxlength=\"10\">
<INPUT type=hidden value=1 name=unban><input class=\"button\" type=\"submit\" name=\"Submit\" value=\"".unbann."\"></div></td> </tr>
</table> </form><br> <div align=\"center\" id=\"search_cc_content\"></div><br> </td> </tr></tbody></table>";
}
}
break;
case "Cinv":
if(read_module(38) == 0){ echo locked(''.for_themoment_closed.'','370'); }else{
if (isset($_POST['clearinv'])){
$user = $_SESSION['user_login_name']; //Username
$name = stripslashes($_POST['name']);
$msconnect=mssql_connect($muweb['db_host'],$muweb['db_user'],$muweb['db_password']);
if (!mssql_connect($muweb['db_host'],$muweb['db_user'],$muweb['db_password'])) die("<center>Can't Connect to DB</center>");
else
{
$msdb=mssql_select_db("MuOnline",$msconnect);
if (eregi("[^a-zA-Z0-9_-]", $name))
{
echo("SQL Injection Detected<br>");
header('Location: index.html');
exit();
}
$sql_name_check = mssql_query("SELECT Name FROM Character WHERE Name='$name' and AccountID = '$user'");
$name_check = mssql_num_rows($sql_name_check);
$memb_stat = mssql_query("SELECT ConnectStat from MEMB_STAT where memb___id = '$user'");
$memb_stat = mssql_fetch_array($memb_stat);
if (empty($name))
{ echo "Error: ";
if (empty($name) || ($name_check <= 0))
echo "Some fields were left blank. Please go back and try again.<br>";}
elseif ($name_check <= 0){
echo "Your Character does not exist in your account and / or in our database. Please go back and try again.<br>"; }
elseif ($memb_stat <= 0){
print alert( "Character is online, editing stopped", "warning" );
}
else {
$msquery = "UPDATE Character SET Inventory=NULL WHERE AccountID = '$user' AND Name = '$name' ";
$msresults= mssql_query($msquery);
echo "<table width=\"320\" height=\"44\" border=\"0\" cellpadding=\"0\" cellspacing=\"0\" background=\"".$muweb['images']."/alert_s.png\" align=\"center\"<tr>
<td width=\"16\" rowspan=\"2\"> </td>
<td width=\"304\" height=\"24\"> </td>
</tr>
<tr>
<td height=\"26\" valign=\"top\" class=\"normal_text_white\" align=\"left\">$name's inventory successfully cleared.</td> </tr> </table>
";}
}
}
else {
$res_con = "
<table class=\"rankings-table\" width=\"500\" border=\"0\" cellspacing=\"0\" cellpadding=\"0\" align=\"center\">
<thead><tr> <td class=\"left\">".clear_menu."</td></tr></thead>
<tbody><tr> <td class=\"even\" align=\"center\"><form name=\"form1\" method=\"post\"><br>
<table width=\"400\" border=\"0\" align=\"center\" cellpadding=\"0\" cellspacing=\"0\">
<tr> <td><div align=\"right\">".character_name."</div></td>
<td><div align=\"left\"><input name=\"name\" class=\"field\" type=\"text\" id=\"name\" maxlength=\"10\">
<INPUT type=hidden value=1 name=clearinv><input class=\"button\" type=\"submit\" name=\"Submit\" value=\"Clear\"></div></td> </tr>
</table> </form><br> <div align=\"center\" id=\"search_cc_content\"></div><br> </td> </tr></tbody></table>
";
}
}
break;
case "GrandReset":
if(read_module(39) == 0){ echo locked(''.for_themoment_closed.'','370'); }else{
$get_acc_muidd = $db_primary->Execute("SELECT resets,name,GR, mu_id from character where accountid=?", array(clean_variable($_SESSION['user_login_name'])));
echo '<table class="rankings-table" width="550" border="0" cellspacing="0" cellpadding="0" align="center">
<thead>
<tr>
<td align="left">#</td>
<td align="left">'.character_name.'</td>
<td align="center">Resets</td>
<td align="center">G Resets</td>
<td align="center">Reward</td>
<td align="center">'.add_reset.'</td>
</tr></thead>';
$i = 1;
$tr_color_1 = "even";
$tr_color_2 = "even2";
while($row = $get_acc_muidd->fetchrow()){
$tr_color = ($i % 2) ? $tr_color_1 : $tr_color_2;
if($row[0] >= $muweb['min_resets']){
$reset = '<span class="medium_link"><a href="javascript
:void(0)" OnClick="ask_url(\''.are_you_sure.'\ - '.reset_character.' '.htmlentities($row[1]).'\',\''.$muweb['servername'].'-Characters-GrandReset-'.$row[3].'.html\')">'.reset_now.'</a></span>';
}
else{
$reset = '<img src="'.$muweb['images'].'/deny.gif">';
}
echo '<tr class="'.$tr_color.'">
<td align="left">'.$i.'</td>
<td align="left">'.$row[1].'</td>
<td align="center">'.$row[0].'/'.$muweb['min_resets'].'</td>
<td align="center">'.$row[2].'</td>
<td align="center">'.$muweb['reward'].' credits</td>
<td align="center">'.$reset.'</td>
</tr>';
$i++;
}
echo '</table>';
if(isset($_GET['op3'])){
$cha_id = clean_variable($_GET['op3']);
$get_info = $db_primary->Execute("SELECT resets, AccountId FROM Character WHERE mu_id = ?", array($cha_id));
$get_info = $get_info->fetchrow();
if($get_info[1] !== $_SESSION['user_login_name']){
echo alert('Wrong character selected.','warning');
}
else{
if($get_info[0] < $muweb['min_resets']){
echo alert('Character resets too low.','warning');
}
else{
$upd_char = $db_primary->Execute("UPDATE Character set resets = 0, GR = GR + 1, Strength = 1500, Vitality = 1500, Energy = 1500, Dexterity = 1500, Leadership = CASE WHEN Class = 64 or class = 65 THEN 1500 ELSE Leadership END WHERE mu_id = ? AND AccountId = ?", array($cha_id,''.clean_variable($_SESSION['user_login_name'].'')));
$add_credits = $db_primary->Execute("UPDATE MEMB_CREDITS set credits = credits + ? WHERE memb___id = ?", array((int)$muweb['reward'],''.clean_variable($_SESSION['user_login_name'].'')));
echo alert('Character successfully reseted','success');
}
}
}
break;
}
} echo html($res_con); } } ?>
Originally Posted by master800ve
