-
Notifications
You must be signed in to change notification settings - Fork 0
/
globals.php
121 lines (109 loc) · 3.74 KB
/
globals.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
<?php
//error_reporting(-1);
//ini_set('display_errors', 'On');
/**************************************************************************************************
* | Software Name : Ravan Scripts Online Mafia Game
* | Software Author : Ravan Soft Tech
* | Software Version : Version 2.0.1 Build 2101
* | Website : http://www.ravan.info/
* | E-mail : support@ravan.info
* |**************************************************************************************************
* | The files in the package must not be distributed in whole or significant part.
* | All code is copyrighted unless otherwise advised.
* | Do Not Remove Powered By Ravan Scripts without permission .
* |**************************************************************************************************
* | Copyright (c) 2010 Ravan Scripts . All rights reserved.
* |**************************************************************************************************/
session_start();
ob_start();
if (get_magic_quotes_gpc() == 0) {
foreach ($_POST as $k => $v) {
$_POST[$k] = addslashes($v);
}
foreach ($_GET as $k => $v) {
$_GET[$k] = addslashes($v);
}
}
function anti_inject($campo)
{
foreach ($campo as $key => $val) {
//remove words that contains syntax sql
$val = preg_replace(sql_regcase("/(from|select|insert|delete|where|drop table|show tables|#|\*|--|\\\\)/"), "", $val);
//Remove empty spaces
$val = trim($val);
//Removes tags html/php
$val = strip_tags($val);
//Add inverted bars to a string
$val = addslashes($val);
// store it back into the array
$campo[$key] = $val;
}
return $campo; //Returns the the var clean
}
$_GET = anti_inject($_GET);
$_POST = anti_inject($_POST);
require_once "loadLanguage.php";
require "global_func.php";
if ($_SESSION['loggedin'] == 0) {
header("Location: login.php");
exit;
}
$userid = $_SESSION['userid'];
require "header.php";
include "config.php";
include "language.php";
global $_CONFIG;
define("MONO_ON", 1);
require "class/class_db_{$_CONFIG['driver']}.php";
$db = new database;
$db->configure($_CONFIG['hostname'],
$_CONFIG['username'],
$_CONFIG['password'],
$_CONFIG['database'],
$_CONFIG['persistent']);
$db->connect();
$c = $db->connection_id;
$set = array();
$settq = $db->query("SELECT * FROM settings");
while ($r = $db->fetch_row($settq)) {
$set[$r['conf_name']] = $r['conf_value'];
}
$domain = $_SERVER['HTTP_HOST'];
global $jobquery, $housequery;
if ($jobquery) {
$is = $db->query("SELECT u.*,us.*,j.*,jr.* FROM users u LEFT JOIN userstats us ON u.userid=us.userid LEFT JOIN jobs j ON j.jID=u.job LEFT JOIN jobranks jr ON jr.jrID=u.jobrank WHERE u.userid=$userid");
} else if ($housequery) {
$is = $db->query("SELECT u.*,us.*,h.* FROM users u LEFT JOIN userstats us ON u.userid=us.userid LEFT JOIN houses h ON h.hWILL=u.maxwill WHERE u.userid=$userid");
} else {
$is = $db->query("SELECT u.*,us.* FROM users u LEFT JOIN userstats us ON u.userid=us.userid WHERE u.userid=$userid");
}
$ir = $db->fetch_row($is);
if ($ir['force_logout']) {
$db->query("UPDATE users SET force_logout=0 WHERE userid=$userid");
session_unset();
session_destroy();
header("Location: login.php");
exit;
}
global $macropage;
if ($macropage && !$ir['verified'] && $set['validate_on'] == 1) {
header("Location: macro1.php?refer=$macropage");
exit;
}
check_level();
$h = new headers;
$h->startheaders();
$fm = money_formatter($ir['money']);
$cm = money_formatter($ir['crystals'], '');
$lv = date('F j, Y, g:i a', $ir['laston']);
global $atkpage;
if ($atkpage) {
$h->userdata($ir, $lv, $fm, $cm, 0);
} else {
$h->userdata($ir, $lv, $fm, $cm);
}
global $menuhide;
if (!$menuhide) {
$h->menuarea();
}
?>