Файл: modules/chat/red_msg.php
Строк: 46
<?php
require '../../system/func_for_game2.inc.php';
/*
$att=70;$hp=70;$deff=70;$lvl=4;
$id_game = mysqli_fetch_array(mysqli_query($link,"SELECT id FROM `users` order by `id` desc limit 1 "));$id_game=$id_game['id']+1;
$login='Странник-'.$id_game.'';
$session=md5(md5(rand(0,99999999).$i));
mysqli_query($link,"INSERT INTO `users` (`id`,`login`,`session`,`pass`,`datereg`,`lvl`)VALUES ('','$login','$session','1212www1212www1212','$time','$lvl')");
$r = mysqli_fetch_array(mysqli_query($link,"SELECT id FROM `users` WHERE `session`='$session' "));
mysqli_query($link,"INSERT INTO `poleuser` ( `id`,`login`,`hp`,`hp_max`,`lvl`,`att`,`deff`,`tip`,`class`)VALUES ('".num($r['id'])."','$login','$hp','$hp','$lvl','$att','$deff','bot','1')");
*/
if(isset($_GET['id'])){$msg=num($_GET['id']);}else{$msg=0;}
$proverka_theme = mysqli_num_rows(mysqli_query($link,"SELECT * FROM `chat` WHERE `id`='$msg'"));
$msgf=mysqli_fetch_array(mysqli_query($link,"SELECT * FROM `chat` WHERE `id`='$msg'"));
if($proverka_theme!=0){
if ($user['adm']== "razrab" or $user['adm'] == "admin" or $user['adm'] == "moder")
{
if (empty($_POST['submit']))
{
head('Чат');
echo '<div class="block center">
<div class="block2" ><div class="block3" >
<form action="/chat/red_msg?id='.$msg.'" method="post">
<div class="block_text" style="width: 90%;"><textarea class="textarea" cols="" style="min-height:20px;" name="text" id="text">'.vivod($msgf['text']).'</textarea></div>
<input type="submit" name="submit" class="submit2" value="Изменить">
</form>
</div></div></div>
<a class="block d_block" href="/chat"><span class="block2 bold c13"><img src="/images/back.png" alt="" /> Назад</span></a>
';
}else{
$msgn=vvod($_POST['text']);
if($msgf['id_add']==1){
if($user['id']==1){
logi_users(2,num($user['id']),'
Отредактировал смс в чате: '.$msgn.'');
mysqli_query($link,"UPDATE `chat` SET `text`='$msgn' WHERE `id`='$msg'");}}elseif($msgf['id_add']==49){
if($user['id']==49 or $user['id']==1){
logi_users(2,num($user['id']),'
Отредактировал смс в чате: '.$msgn.'');
mysqli_query($link,"UPDATE `chat` SET `text`='$msgn' WHERE `id`='$msg'");}}else{
/*** запись лога ***/
logi_users(2,num($user['id']),'
Отредактировал смс в чате: '.$msgn.'');
mysqli_query($link,"UPDATE `chat` SET `text`='$msgn' WHERE `id`='$msg'");}
go("/chat");
}
}else{
go("/chat");
}
}else{
go("/chat");
}
foot();
?>