- Joined
- Apr 30, 2005
- Messages
- 289
- Reaction score
- 0
Here is my script for clear items. I tested and works. If you wanna add something or if you have a problem post it here.
I maked a new code.
HOW TO CONFIG::
Search Line:
Enjoy ^^:robot:
PHP:
<style type="text/css">
<!--
.Estilo1 {font-size: 14px}
-->
</style>
<title>Clear Items By DaRIo</title><table width="332" height="110" border="4" align="center" bordercolor="#CCCCCC">
<?php
$mssql_user = "";
$mssql_pass = "";
$mssql_database = "GunZDB";
$mssql_host = "";
$conn = mssql_connect($mssql_host, $mssql_user, $mssql_pass) or die("Cannot connect host.");
mssql_select_db($mssql_database) or die("Cannot connect database.");
?>
<tr>
<td height="23"><div align="center" class="Estilo1">Clear Items Form by DaRIo</div></td>
</tr>
<tr>
<td height="23"><FORM METHOD=POST ACTION="<?php echo $_SERVER['PHP_SELF']; ?>?do=lol">
<table width="321" border="0">
<tr>
<td width="71" class="Estilo1">Username</td>
<td width="240"><label>
<input name="user" type="text" id="user">
</label></td>
</tr>
<tr>
<td class="Estilo1">Password</td>
<td><label>
<input name="pass" type="password" id="pass">
</label></td>
</tr>
<tr>
<td class="Estilo1">Character</td>
<td><input name="char" type="text" id="char"></td>
</tr>
<tr>
<td class="Estilo1">Item Part </td>
<td><label>
<select name="part" id="part">
<option value="head_itemid">Head</option>
<option value="chest_itemid">Chest</option>
<option value="hands_itemid">Hands</option>
<option value="legs_itemid">Legs</option>
<option value="feet_itemid">Feet</option>
</select>
</label></td>
</tr>
</table>
<tr>
<td height="23"><div align="center">
<input type="submit" name="Submit" value="Clear Items">
</td>
</tr>
<tr>
<td height="23"><div align="center">
<label></label><?php
if ($_GET['do'] == 'lol')
{
$user = anti_injection($_POST['user']);
$pass = anti_injection($_POST['pass']);
$char = anti_injection($_POST['char']);
$part = anti_injection($_POST['part']);
if (valida(Array($user,$pass,$char)) == true) {
$query = mssql_query("SELECT * FROM Accounts WHERE UserID='$user' AND Password='$pass'");
$rows = mssql_num_rows($query);
if ($rows != 1) { echo "User/Pass Incorrect."; } else {
$query1 = mssql_query("SELECT * FROM Character WHERE Name='$char'");
$rows1 = mssql_num_rows($query1);
if ($rows1 != 1) { echo "Char Incorrect."; } else {
$queryx = mssql_query("SELECT AID FROM Character WHERE Name='$char'");
while($myrow = mssql_fetch_array($queryx))
{
$PJAID = $myrow['AID'];
}
$queryxy = mssql_query("SELECT AID FROM Accounts WHERE UserID='$user'");
while($myrow1 = mssql_fetch_array($queryxy))
{
$CUENTAPJ = $myrow1['AID'];
}
if ($PJAID != $CUENTAPJ) { echo "That Isnt Your char."; } else {
$query2 = mssql_query("UPDATE Character SET $part='0' WHERE Name='$char'");
if (!$query2) { echo "Error, try again later"; } else { echo "Items cleaned!";
}
}
}
}
}
}
function anti_injection($sql)
{
$sql = preg_replace(sql_regcase("/(from|select|insert|delete|where|drop table|show tables|#|\*|--|\\\\)/"),"",$sql);
$sql = trim($sql);
$sql = strip_tags($sql);
$sql = addslashes($sql);
return $sql;
}
function valida($campos){
foreach($campos as $c){
if(empty($c)){
echo "All Fields are need.";
return false;
}else{
return true;
}
}
}
?></form>
</div></td>
</tr>
</table>HOW TO CONFIG::
Search Line:
PHP:
$mssql_user = ""; << MSSQL USER
$mssql_pass = ""; << MSSSQL PASS
$mssql_database = "GunZDB"; << DATABASE
$mssql_host = ""; << MSSQL HOST
![fsadario - [RELEASE] Clear Items Page - RaGEZONE Forums](https://forum.ragezone.com/images/404_image.png "fsadario - [RELEASE] Clear Items Page - RaGEZONE Forums")
.
