Файл: slando.icu/modules/flot/chatsend.php
Строк: 52
<?php
require '../../system/func_for_game2.inc.php';
$clan=mysqli_fetch_array(mysqli_query($link,"SELECT * FROM `clans` WHERE `id`='".num($user['clan'])."'"));
if($clan['id']>0){
if (isset($_GET['id'])) {$nid=num($_GET['id']);} else {$nid="1";}
$search_user = mysqli_fetch_array(mysqli_query($link,"SELECT * FROM `users` WHERE `id`='$nid' limit 1 "));
if(empty($_POST['submit']))
{
head3(''.vivod($search_user['login']).'');
echo'<div class="block1 center">
<form action="/flot/chat/send?id='.$nid.'" method="post">
<div class="razrivt"></div>
<textarea class="textarea" rows="3" style="width: 80%; min-width: 180px;margin:0 auto;" name="text" type="text"></textarea>
<input type="hidden" name="clogin" value="'.vivod($search_user['login']).'">
<input type="submit" name="submit" class="submit2" value="Отправить" />
</form>
<a class="ssilki3" href="/flot/chat">Назад</a> ';
}
else
{
if (isset($_POST['text']) and !empty($_POST['text'])) {$text=$_POST['text'];} else
{
go("/flot/chat/send?id=$nid");
}
$user_whom=mysqli_fetch_array(mysqli_query($link,"SELECT * FROM `users` WHERE `login`='".vvod($_POST['clogin'])."' limit 1 "));
if (!isset($_POST['clogin']) or empty($_POST['clogin']) or empty($user_whom['id']))
{
go("/flot/chat?&err=".md5(4)."");
}
if(mb_strlen($text,'utf-8') < 1 or mb_strlen($text,'utf-8') > 500)
{
go("/flot/chat/send?id=$nid&err=".md5(2)."");
}
$text=vvod($_POST['text']);
/*** запись лога ***/
logi_users(6,num($user['id']),'
Отправил сообщение в чат альянса.
Текст: '.$text.'');
/*** запись лога ***/
mysqli_query($link,"INSERT INTO `clans_chat` (`id`,`id_clan`,`id_add`,`id_whom`,`date`,`text`,`login`,`sex`,`adm`)VALUES ('','".num($clan['id'])."','".num($user['id'])."','".num($user_whom['id'])."','".time()."','$text','".vvod($user['login'])."','".num($user['sex'])."','".vvod($user['adm'])."')");
go("/flot/chat");
}
}else{
go("/flot");}
foot();
?>