Файл: data/u_vstavit.dat.php
Строк: 87
<?
if ((isset($_POST['sex1'])) && (isset($_GET['vesh'])))
{
include "./phpfile/vstavit.php" ;
exitt($row, $opredelenie) ;
}
///////////////////////////////////////////////
$bonus = 0 ;
if ($row['polog'] == 'zamok')
{
$queryz = "SELECT * FROM `zamki` WHERE `klan`='" . mysql_real_escape_string($row['klan']) .
"' and `sewer`='" . mysql_real_escape_string($row['sevgorod']) .
"' and `wostok`='" . mysql_real_escape_string($row['wostokgorod']) . "' " ;
$sqlz = mysql_query($queryz) or die(mysql_error()) ;
if (mysql_num_rows($sqlz) == 1)
{
$rowz = mysql_fetch_assoc($sqlz) ;
$bonus = $rowz['uvelir'] ;
}
}
if (isset($_POST['sex']))
{
print cat."Вы выбрали " ;
$query = "SELECT *
FROM `rukzak` WHERE `name`='" . mysql_real_escape_string($opredelenie) .
"' and `odeto`='0'and `tipvesh`='0' and `jad`='0' and `idrukzak`='" . mysql_real_escape_string($_POST['sex']) .
"'ORDER BY `time` DESC LIMIT 1 " ;
$sql = mysql_query($query) or die(mysql_error()) ;
while ($row = mysql_fetch_assoc($sql))
{
echo "" . htmlspecialchars($row['nazvanie']) . " +" . htmlspecialchars($row['try']) .
"
<br>Теперь выберите Криссталл:".d ;
$query66 = "SELECT * FROM `table1` WHERE `name`='" . mysql_real_escape_string($opredelenie) .
"'" ;
$sql66 = mysql_query($query66) or die(mysql_error()) ;
$row66 = mysql_fetch_assoc($sql66) ;
$query1 = "SELECT *
FROM `rukzak`WHERE `name`='" . mysql_real_escape_string($opredelenie) .
"' and `odeto`='0' and `tipvesh`='0' and `chit`='gem' ORDER BY `time` DESC
" ;
print "<form action=88.php?go=uvelir&plavit=1&vesh=" .
htmlspecialchars($row['idrukzak']) . " method=post> " ;
$sql1 = mysql_query($query1) or die(mysql_error()) ;
$n = mysql_num_rows($sql1) ;
if ($n == 0)
{
print no."У вас нет кристаллов!".d ;
exitt($row, $opredelenie) ;
}
$ii = 1 ;
while ($row1 = mysql_fetch_assoc($sql1))
{
if($row1['lvl']<=0){$row1['lvl']=1;}
$r = round($row66['enchayz'] / sqrt($row1['lvl'])) ;
$ii++ ;
$x=1;
if($row1['vstavlen']==1){$x=2;}if($row1['vstavlen2']==1){$x=3;}
echo "
<li><b> <input class=x_radio type=radio name=sex1 value=" . htmlspecialchars($row1['idrukzak']) .
" >" . htmlspecialchars($row1['nazvanie']) . " </b><a href=88.php?go=info&info=" .
htmlspecialchars($row1['idrukzak']) . ">[info]</a> (шанс " ;
$r = round((($row66['enchayz'] + $bonus) / sqrt($row1['lvl']))/$x) ;
if ($r > 90)
{
$r = 90 ;
}
$rt='';
if($bonus>0){ $rt= "(+ $bonus)" ;
}
print "$r $rt" ;
print "%)
</li>" ;
}
;
print "<input class=select type=submit value=Вставить>
</form>" ;
}
;
exitt($row, $opredelenie) ;
}
///////////////////////////////////////////////////////////////////////////////////////////////////////
print cat."Выберите вещь:".d ;
$query1 = "SELECT *
FROM `rukzak`WHERE `name`='" . mysql_real_escape_string($opredelenie) .
"' and `odeto`='0' and `vstavlen`='0'
" ;
print "<form action=88.php?go=uvelir&plavit=1 method=post>" ;
$sql1 = mysql_query($query1) or die(mysql_error()) ;
$n = mysql_num_rows($sql1) ;
if ($n == 0)
{
print no."У вас нет доступных вещей!".d ;
exitt($row, $opredelenie) ;
}
$ii = 1 ;
while ($row1 = mysql_fetch_assoc($sql1))
{
$ii++ ;
if (($row1['chit'] == 'or') || ($row1['chit'] == 'dos') || ($row1['chit'] ==
'shit') || ($row1['chit'] == 'perchi') || ($row1['chit'] == 'plash') || ($row1['chit'] ==
'sapogi') || ($row1['chit'] == 'shapka'))
{
echo "
<li><b><input class=x_radio type=radio name=sex value=" .htmlspecialchars( $row1['idrukzak']) . " >" . htmlspecialchars($row1['nazvanie']) .
"</b> <a href=88.php?go=info&info=" . htmlspecialchars($row1['idrukzak']) . ">[info]</a>
</li>" ;
}
;
}
;
print "<input class=select type=submit value=Вставить>
</form>" ;
// далее нам надо прицепить листалку
exitt($row,$opredelenie);
?>