Файл: modules/msg/add.php
Строк: 88
<?php
require '../../system/func_for_game2.inc.php';
if($user['lvl']>0){
if(empty($_POST['submit']))
{
if (isset($_GET['id'])) {$id_poluchat=num($_GET['id']);
$search_user = mysqli_fetch_array(mysqli_query($link,"SELECT * FROM `users` WHERE `id`='$id_poluchat' "));
$dialog=mysqli_fetch_array(mysqli_query($link,"SELECT * FROM `dialog` WHERE `id_add`='$id_poluchat' and `id_poluchat`='".num($user['id'])."' or `id_poluchat`='$id_poluchat' and `id_add`='".num($user['id'])."' "));
if($dialog['id']!=0){go("/msg/history?id=".$dialog['id']."");}
} else {$search_user['login'] = ""; $id_poluchat="0";}
$proverka_ig=mysqli_num_rows(mysqli_query($link,"SELECT * FROM `ignor` WHERE `id_i`='".num($user['id'])."' and `id_add`='$id_poluchat' "));
head('Почта');
/** вывод ошибок **/
if (isset($_GET['err'])) {$err=vvod($_GET['err']);} else {$err="";}
$err_left = '<div class="error">';
$err_left2 = '<div class="no_error">';
$err_right = '</div>';
switch($err)
{
case ''.md5(1).'': echo $err_left.'Необходимо ввести имя!'.$err_right; break;
case ''.md5(2).'': echo $err_left.'Необходимо ввести сообщение!'.$err_right; break;
case ''.md5(3).'': echo $err_left.'Игрок с данным логином не найден!'.$err_right; break;
case ''.md5(4).'': echo $err_left.'Нет смысла писать самому себе!'.$err_right; break;
case ''.md5(5).'': echo $err_left.'Сообщение введено неверно!'.$err_right; break;
}
$proverka_ig=mysqli_num_rows(mysqli_query($link,"SELECT * FROM `ignor` WHERE `id_i`='".num($user['id'])."' and `id_add`='$id_poluchat' "));
if($proverka_ig ==0)
{
echo '<div class="block" >
<div class="block2" ><div class="block3 center" >
<form action="" method="post"><div class="clrt1" >Кому:</div>
<div class="block_text" ><input type="text" class="text" name="mlogin" value="'.vivod($search_user['login']).'" /></div>
<div class="clrt1" >Текст:</div>
<div class="block_text" style="width: 90%;"><textarea class="textarea" rows="3" name="text" type="text" id="text" ></textarea></div>
<div><span class="ssilki2" style="padding:7px 5px 5px 5px;"><img onclick="smiles();return false;" src="/images/smile.png" alt="" /></span> <input type="submit" class="submit2" name="submit" value="Отправить" /></form></div>
<div id="smiles" style="display:none;overflow: auto;max-height: 65px;">
<img onclick="sml('."':)'".')" src="/images/smile/1.gif" alt="" />
<img onclick="sml('."';)'".')" src="/images/smile/2.gif" alt="" />
<img onclick="sml('."':('".')" src="/images/smile/3.gif" alt="" />
<img onclick="sml('."':D'".')" src="/images/smile/4.gif" alt="" />
<img onclick="sml('."':umora:'".')" src="/images/smile/46.gif" alt="" />
<img onclick="sml('."':dum:'".')" src="/images/smile/18.gif" alt="" />
<img onclick="sml('."':kofe:'".')" src="/images/smile/131.gif" alt="" />
<img onclick="sml('."':aga:'".')" src="/images/smile/7.gif" alt="" />
<img onclick="sml('."':hihi:'".')" src="/images/smile/22.gif" alt="" />
<img onclick="sml('."':alk:'".')" src="/images/smile/8.gif" alt="" />
<img onclick="sml('."':dur:'".')" src="/images/smile/19.gif" alt="" />
<img onclick="sml('."':O_O:'".')" src="/images/smile/32.gif" alt="" />
<img onclick="sml('."':chmok:'".')" src="/images/smile/13.gif" alt="" />
<img onclick="sml('."':diablo:'".')" src="/images/smile/16.gif" alt="" />
<img onclick="sml('."':gg:'".')" src="/images/smile/20.gif" alt="" />
<img onclick="sml('."':help:'".')" src="/images/smile/21.gif" alt="" />
<img onclick="sml('."':music:'".')" src="/images/smile/28.gif" alt="" />
<img onclick="sml('."':nea:'".')" src="/images/smile/29.gif" alt="" />
<img onclick="sml('."':kissed:'".')" src="/images/smile/25.gif" alt="" />
<img onclick="sml('."':ura:'".')" src="/images/smile/47.gif" alt="" />
</div>
</div></div></div>';}else{
echo '<div class="block" >
<div class="block2" ><div class="block3 center" >'.vivod($search_user['login']).' добавил вас в игнор лист.</div></div></div>';}
}
else
{
if (isset($_POST['mlogin']) and !empty($_POST['mlogin'])) {$id_poluchat=vvod($_POST['mlogin']);} else
{
go("/msg/add?err=".md5(1)."");
}
if (isset($_POST['text']) and !empty($_POST['text'])) {$text_msg=vvod($_POST['text']);} else
{
if (isset($_GET['id'])) {$id_poluchat=num($_GET['id']); go("/msg/add?id=$id_poluchat&err=".md5(2).""); } else {go("/msg/add?err=".md5(2).""); }
}
$search_user = mysqli_fetch_array(mysqli_query($link,"SELECT * FROM `users` WHERE `login`='$id_poluchat'"));
if (empty($search_user))
{
go("/msg/add?err=".md5(3)."");
}
if(mb_strlen($text_msg,'utf-8') < 1 or mb_strlen($text_msg,'utf-8') > 1000)
{
if (isset($_GET['id'])) {$id_poluchat=num($_GET['id']); go("?id=$id_poluchat&err=".md5(5).""); } else {go("/msg/add?err=".md5(5).""); }
}
$msg=vvod($text_msg);
$msg=str_ireplace(
array(
'Я','Ю','В','Г','Д',
'Е','Ё','Ж','З','И',
'Й','К','Л','М','Н',
'О','П','Р','С','Т',
'У','Ф','Х','Ц','Ч',
'Ш','Ш','Ъ','Ы','Ь',
'А','Б','Я'),
array(
"e'",'ju','w','g','d',
'e','q','zh','z','i',
'j','k','l','m','n',
'o','p','r','s','t',
'u','f','h','c','ch',
'w','sq','y','x',"'",
'a','b','ya'),$msg);
$msg=str_ireplace(
array(
'э','ю','в','г','д',
'е','ё','ж','з','и',
'й','к','л','м','н',
'о','п','р','с','т',
'у','ф','х','ц','ч',
'ш','щ','ъ','ы','ь',
'а','б','я'),
array(
"e'",'ju','w','g','d',
'e','q','zh','z','i',
'j','k','l','m','n',
'o','p','r','s','t',
'u','f','h','c','ch',
'w','sq','y','x',"'",
'a','b','ya'),$msg);
$msg = preg_replace('#(,|@|*|&|$|=|-|^|.|~|`|?|!|(|)){0,}#', '', $msg);
$msg= str_replace('#','',''.$msg.'');
$msg= str_replace('/','',''.$msg.'');
$msg= str_replace('n','',''.$msg.'');
$msg= str_replace('r','',''.$msg.'');
$msg= str_replace(' ','',''.$msg.'');
if (preg_match("/ELEMWAR/i", "'.$msg.'") ) {
go("/msg?err=".md5(1)."");
} else {
$proverka_ig=mysqli_num_rows(mysqli_query($link,"SELECT * FROM `ignor` WHERE `id_i`='".num($user['id'])."' and `id_add`='".num($search_user['id'])."' "));
if($proverka_ig =="0")
{
/*** запись лога ***/
logi_users(6,num($user['id']),'
Отправил сообщение в личку.
Получатель: '.vvod($search_user['login']).'
Текст: '.$text_msg.'');
/*** запись лога ***/
send_mess(num($user['id']), num($search_user['id']), $text_msg);}
go("/msg?err=".md5(1)."");}}
}else{
head('Почта');
echo'<div class="block" >
<div class="block2" ><div class="block3 block_bg_blue center" ><div class="clrt6">Почта будет доступна с 5 уровня.</div></div></div></div>';
}
/** выводим низ страниы **/
foot();
?>