Skip to content
Snippets Groups Projects
Commit b436f496 authored by Henoch Einbier's avatar Henoch Einbier
Browse files

Update topframe_forced.php

-fixed errors
parent 9e5caba2
Branches
Tags
2 merge requests!46Release 3.0,!33Update topframe_forced.php
......@@ -17,9 +17,6 @@ if (!isset($forced['tan'])) $forced['tan'] = "";
// Nur weiter wenn eingeloggt
if (!is_user()) die('Bitte einloggen!');
// Tan sichern
$_GET['tan'] = mysql_real_escape_string ($_GET['tan']);
// Werbedaten auslesen! Fixed
$sql = sql::$db->prepare ("SELECT `t1`.* FROM `" . _VMS_ . "_gebuchte_werbung` AS `t1`
LEFT JOIN `" . _VMS_ . "_reloads` AS `t2` ON (`t1`.`tan` = `t2`.`tan` AND (`t2`.`uid` = ? or `t2`.`ip` = ? ) AND `t2`.`bis` > ?)
......@@ -42,8 +39,8 @@ if ($sql -> rowCount()) {
// User bezahlen und Reload schreiben
if ($_GET['auszahlen'] == 'true' && $force_error != 'true' && $_GET['puk'] == md5($_SESSION['uid'] . $forced['aufendhalt'] . date("d.m.Y", time()) . $system['percode']) && time() >= $_SESSION['earlies_payout' . $_GET['tan']]) {
$sql = sql::$db->prepare ("UPDATE `" . _VMS_ . "_kontodaten` SET `klicks` = `klicks` + 1, `kv` = `kv` + :verdienst , `kontostand` = `kontostand` + :verdienst WHERE `uid` = :uid LIMIT 1");
$sql -> execute(array(':verdienst' => $forced['verdienst'], ':uid' => $_SESSION['uid']));
$sql = sql::$db->prepare ("UPDATE `" . _VMS_ . "_kontodaten` SET `klicks` = `klicks` + 1, `kv` = `kv` + :verdienst , `kontostand` = `kontostand` + :verdienst2 WHERE `uid` = :uid LIMIT 1");
$sql -> execute(array(':verdienst' => $forced['verdienst'], ':verdienst2' => $forced['verdienst'], ':uid' => $_SESSION['uid']));
refumsatz ($forced['verdienst'], $_SESSION['uid']);
rallysystem ($_SESSION['uid'], '1', $forced['verdienst']);
......@@ -54,7 +51,7 @@ if ($_GET['auszahlen'] == 'true' && $force_error != 'true' && $_GET['puk'] == md
$sql -> execute(array($system['ip'], $_SESSION['uid'], $forced['tan'], $new_reload));
$sql = sql::$db->prepare ("UPDATE `" . _VMS_ . "_gebuchte_werbung` SET `menge` = `menge` - 1 WHERE `tan` = ?");
$sql -> execute($_GET['tan']);
$sql -> execute(array($_GET['tan']) );
$_SESSION['earlies_payout' . $_GET['tan']] = '';
$headmsg = $forced['verdienst'] . ' ' . $system['waehrung'] . ' erhalten!';
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment