Habe die include/admin/wars.php um ein paar Einträge erweitert.
Jetzt hab ich das Problem, dass mir immer wenn ich etwas in die Felder eintrage und dann speichern will die Meldung
Warning: strip_tags() expects parameter 1 to be string, array given in /Applications/XAMPP/xamppfiles/htdocs/include/includes/func/escape.php on line 24
Ich steh hier total an. Habe schon alles Mögliche versucht und mich auch schon hier im Forum und im Inet umgesehen, aber keine Lösung gefunden.
Die Erweiterungen die Probleme machen sind | es,gs,score,auf,hs,dis |
Hab auch im MySQL Handbuch nachgesehen, aber ich Blick da einfach nicht durch.
Vielleicht kann sich einer von Euch erweichen und mir den/die Fehler nennen. Hänge da schon 2 Tage dran und bin keinen Schritt weiter gekommen.
Danke
humpti
Hier mal meine wars.php
<?php
# Copyright by: Manuel
# Support: www.ilch.de
defined ('main') or die ( 'no direct access' );
defined ('admin') or die ( 'only admin access' );
$um = $menu->get(1);
$_REQUEST['mid'] = escape($_REQUEST['mid'], 'integer');
$_REQUEST['wid'] = escape($_REQUEST['wid'], 'integer');
$_POST['add_uid'] = escape($_POST['add_uid'], 'integer');
$_GET['delete_uid'] = escape($_GET['delete_uid'], 'integer');
$_GET['delete'] = escape($_GET['delete'], 'integer');
$_GET['pkey'] = escape($_GET['pkey'], 'integer');
# get Flag list
# 1 akt flag
function get_wlp_array () {
$ar = array (
1 => 'gewonnen',
2 => 'verloren',
3 => 'unentschieden'
);
return ($ar);
}
function get_datime() {
$own = true;
$_POST['day'] = escape($_POST['day'],'integer');
$_POST['mon'] = escape($_POST['mon'],'integer');
$_POST['jahr'] = escape($_POST['jahr'],'integer');
$_POST['stu'] = escape($_POST['stu'],'integer');
$_POST['min'] = escape($_POST['min'],'integer');
$_POST['sek'] = escape($_POST['sek'],'integer');
if ( checkdate ($_POST['mon'], $_POST['day'] , $_POST['jahr']) == FALSE ) {
$own = false;
} elseif ( $_POST['stu'] > 24 OR $_POST['min'] > 60 OR $_POST['sek'] > 60 ) {
$own = false;
}
if ( $own ) {
return ( $_POST['jahr'].'-'.$_POST['mon'].'-'.$_POST['day'].' '.$_POST['stu'].':'.$_POST['min'].':'.$_POST['sek'] );
} else {
return ( date('Y-m-d H:i:s' ) );
}
}
switch ( $um ) {
default :
$design = new design ( 'Admins Area', 'Admins Area', 2 );
$design->header();
?>
Folgende Auswahlmöglichkeiten:
<ul>
<li><a href="admin.php?wars-last">Letzte Ligaspiele</a></li>
<li><a href="admin.php?wars-next">Nächste Ligaspiele</a></li>
</ul>
<?php
$design->footer();
break;
# last wars
case 'last' :
# image upload
if ( $menu->get(2) == 'upload' ) {
$tpl = new tpl ( 'wars/upload', 1 );
$msg = '';
# aktion
if ( isset ($_FILES['f']['name']) ) {
$tmp = explode('.',$_FILES['f']['name']);
if ( $tmp[1] == 'gif' OR $tmp[1] == 'png' OR $tmp[1] == 'jpg' OR $tmp[1] == 'jpeg') {
$nname = $_REQUEST['wid'].'_'.$_REQUEST['mid'].'.'.$tmp[1];
if ( move_uploaded_file ( $_FILES['f']['tmp_name'], 'include/images/ligaspiele/'.$nname) ) {
@chmod('include/images/Ligaspiele/'.$nname, 0777);
$ar = array ( 'gif'=>'gif','png'=>'png','jpg'=>'jpg','jpeg'=>'jpeg' );
unset($ar[$tmp[1]]);
foreach($ar as $v) {
@unlink ( 'include/images/ligaspiele/'.$_REQUEST['wid'].'_'.$_REQUEST['mid'].'.'.$v );
}
$msg = 'Datei ('.$_FILES['f']['name'].' ) <font color="#00FF00">erfolgreich hochgeladen</font><br />';
} else {
$msg = 'Datei ( '.$_FILES['f']['name'].' ) <font color="#FF0000">nicht erfolgreich hochgeladen</font><br />';
}
} else {
$msg = 'Bitte nur Bilder mit der Endung: .gif, .png, .jpg oder .jpeg!';
}
}
if ( isset($_GET['d']) ) {
if ( @unlink ( 'include/images/ligaspiele/'.$_GET['d'] ) ) {
$msg = 'Datei <font color="#00FF00">erfolgreich gelöscht</font><br />';
} else {
$msg = 'Datei <font color="#FF0000">konnte nicht gelöscht werden</font><br />';
}
}
# anzeigen
if ( !is_writeable ( 'include/images/ligaspiele' ) ) {
$msg = 'Bitte erst dem Ordner "images/ligaspiele" Schreibrechte (chmod 777) geben.';
}
$mid = $_REQUEST['mid'];
$wid = $_REQUEST['wid'];
$file = 'Noch kein Bild hochgeladen... ';
$ar = array ( 'gif','png','jpg','jpeg' );
foreach($ar as $v) {
if ( file_exists ( 'include/images/ligaspiele/'.$wid.'_'.$mid.'.'.$v ) ) {
$size=getimagesize('include/images/ligaspiele/'.$wid.'_'.$mid.'.'.$v);
$breite=$size[0];
$hoehe=$size[1];
$file = '<a href="javascript:openImgWindow(\''.$v.'\','.$hoehe.','.$breite.')">include/images/ligaspiele/'.$wid.'_'.$mid.'.'.$v.'</a>';
$file .= ' <a href="javascript:deleteMap(\''.$v.'\')"><img src="include/images/icons/del.gif" border="0" title="löschen" /></a>';
break;
}
}
$tpl->set('wid' ,$wid);
$tpl->set('mid' ,$mid);
$tpl->set('file', $file );
$tpl->set('msg' ,$msg);
$tpl->out(0);
exit ();
}
# manag member for war...
if ( $menu->get(2) == 'members' ) {
$tpl = new tpl ( 'wars/last_member', 1 );
$msg = '';
# aktion
if (isset($_POST['add_uid']) AND !empty($_POST['add_uid'])) {
db_query("INSERT INTO prefix_warmember (wid,uid,aktion) VALUES (".$_REQUEST['wid'].",".$_POST['add_uid'].",1)");
}
if (isset($_GET['delete_uid']) AND !empty($_GET['delete_uid'])) {
db_query("DELETE FROM prefix_warmember WHERE wid = ".$_REQUEST['wid']." AND uid = ".$_GET['delete_uid']);
}
# anzeigen
$tpl->set('msg',$msg);
$tpl->set('wid',$_REQUEST['wid']);
$tpl->set('liste', dblistee ( 0, "SELECT prefix_user.id,name FROM prefix_user LEFT JOIN prefix_warmember ON prefix_warmember.uid = prefix_user.id AND prefix_warmember.wid = ".$_REQUEST['wid']." WHERE prefix_warmember.aktion is NULL AND recht <= -2 ORDER BY `name`" ) );
$tpl->out(0);
$class = '';
$erg = db_query("SELECT prefix_user.id, prefix_user.name FROM prefix_warmember LEFT JOIN prefix_user ON prefix_user.id = prefix_warmember.uid WHERE wid = ".$_REQUEST['wid']." ORDER BY prefix_user.name ASC");
while($r = db_fetch_assoc($erg)) {
$class = ( $class == 'Cmite' ? 'Cnorm' : 'Cmite' );
$r['class'] = $class;
$tpl->set_ar_out($r,1);
}
$tpl->out(2);
exit();
}
# last wars
$design = new design ( 'Admins Area', 'Admins Area', 2 );
$design->header();
$show = true;
$tpl = new tpl ( 'wars/last', 1);
if ( !empty ( $_GET['delete'] ) ) {
# aus kalender loeschen fals vorhanden
db_query("DELETE FROM prefix_kalender WHERE text like '%more-".$_GET['delete']."]%'");
db_query("DELETE FROM prefix_wars WHERE id = '".$_GET['delete']."'");
$wid = $_GET['delete'];
$imgar = array ('gif','png','jpg','jpeg');
for($i=1;$i<=16;$i++) {
db_query("DELETE FROM prefix_warmaps WHERE wid = ".$wid." AND mnr = ".$i);
foreach ($imgar as $v) {
if ( file_exists('include/images/ligaspiele/'.$wid.'_'.$i.'.'.$v) ) {
unlink ('include/images/ligaspiele/'.$wid.'_'.$i.'.'.$v);
}
}
}
$msg = '<tr class="Cmite"><td colspan="2">Erfolgreich gelöscht</td></tr>';
}
if ( !empty($_POST['sub']) ) {
if ( !empty($_POST['newmod']) ) {
$_POST['mod'] = $_POST['newmod'];
}
if ( !empty($_POST['newgame']) ) {
$_POST['game'] = $_POST['newgame'];
}
if ( !empty($_POST['newmtyp']) ) {
$_POST['mtyp'] = $_POST['newmtyp'];
}
if ( empty($_POST['tid']) ) {
$_POST['tid'] = 0;
}
$_POST['pkey'] = escape($_POST['pkey'], 'integer');
$_POST['gegner'] = escape($_POST['gegner'], 'string');
$_POST['page'] = get_homepage(escape($_POST['page'], 'string'));
$_POST['tid'] = escape($_POST['tid'], 'integer');
$_POST['mod'] = escape($_POST['mod'], 'string');
$_POST['game'] = escape($_POST['game'], 'string');
$_POST['mtyp'] = escape($_POST['mtyp'], 'string');
$_POST['land'] = escape($_POST['land'], 'string');
$_POST['txt'] = escape($_POST['txt'], 'string');
$_POST['tag'] = escape($_POST['tag'], 'string');
$_POST['email'] = escape($_POST['email'], 'string');
$_POST['gkon'] = escape($_POST['gkon'], 'string');
$_POST['gtel'] = escape($_POST['gtel'], 'string');
$_POST['icq'] = escape($_POST['icq'], 'string');
$_POST['wo'] = escape($_POST['wo'], 'string');
$_POST['es'] = escape($_POST['es'], 'string');
$_POST['gs'] = escape($_POST['gs'], 'string');
$_POST['score'] = escape($_POST['score'], 'string');
$_POST['auf'] = escape($_POST['auf'], 'string');
$_POST['hs'] = escape($_POST['hs'], 'string');
$_POST['dis'] = escape($_POST['dis'], 'string');
if ( empty ($_POST['pkey']) ) {
db_query("INSERT INTO prefix_wars (`datime`,`status`,wlp,`owp`,`opp`,gegner,tag,page,mail,icq,wo,tid,`mod`,game,mtyp,land,txt,gtel,gkon,es,gs,score,auf,hs,dis) VALUES ('".get_datime()."',3,'".$_POST['wlp']."','".$_POST['sumowp']."','".$_POST['sumopp']."','".$_POST['gegner']."','".$_POST['tag']."','".$_POST['page']."','".$_POST['email']."','".$_POST['icq']."','".$_POST['wo']."','".$_POST['tid']."','".$_POST['mod']."','".$_POST['game']."','".$_POST['mtyp']."','".$_POST['land']."','".$_POST['txt']."','".$_POST['gtel']."','".$_POST['gkon']."','".$_POST['es']."','".$_POST['gs']."','".$_POST['score']."','".$_POST['auf']."','".$_POST['hs']."','".$_POST['dis']."')");
$wid = db_last_id();
for($i=1;$i<=16;$i++) {
if ( $_POST['map'][$i] != '' AND $_POST['opp'][$i] != '' AND $_POST['owp'][$i] != '' AND $_POST['es'][$i] != '' AND $_POST['gs'][$i] != '' AND $_POST['score'][$i] != '' AND $_POST['auf'][$i] != '' AND $_POST['auf'][$i] != '' AND $_POST['hs'][$i] != '' AND $_POST['dis'][$i] != '' ) {
db_query("INSERT INTO prefix_warmaps (wid,mnr,map,opp,owp,es,gs,score,auf,hs,dis) VALUES (".$wid.",".$i.",'".escape($_POST['map'][$i], 'string')."',".escape($_POST['opp'][$i], 'string').",".escape($_POST['owp'][$i], 'string').",".escape($_POST['es'][$i], 'string').",".escape($_POST['gs'][$i], 'string').",".escape($_POST['score'][$i], 'string').",".escape($_POST['auf'][$i], 'string').",".escape($_POST['hs'][$i], 'string').",".escape($_POST['dis'][$i], 'string').")");
}
}
# in den kalender eintragen wenn gewuenscht
if (isset($_POST['kalender']) AND $_POST['kalender'] == 'yes') {
$timestamp = strtotime(get_datime());
$page = str_replace('admin.php','index.php',$_SERVER["HTTP_HOST"].$_SERVER["SCRIPT_NAME"]);
db_query("INSERT INTO prefix_kalender (time, title, text, recht) VALUES (".$timestamp.",'Letztes Ligaspiel gegen ".$_POST['gegner']."', '".$_POST['mtyp']." ".$_POST['mod']." in ".$_POST['game']." gegen [url=".$_POST['page']."]".$_POST['gegner']."[/url]\n\n[url=http://".$page."?wars-more-".$wid."]Details des Spiels[/url]', 0)");
}
$msg = '<tr class="Cmite"><td colspan="2">Erfolgreich eingetragen</td></tr>';
} else {
db_query("UPDATE prefix_wars SET datime = '".get_datime()."', status = 3,wlp = '".$_POST['wlp']."',owp = '".$_POST['sumowp']."',opp = '".$_POST['sumopp']."',gegner = '".$_POST['gegner']."',tag = '".$_POST['tag']."',page = '".$_POST['page']."',mail = '".$_POST['email']."',icq = '".$_POST['icq']."',wo = '".$_POST['wo']."',tid = '".$_POST['tid']."',`mod` = '".$_POST['mod']."',game = '".$_POST['game']."',mtyp = '".$_POST['mtyp']."',land = '".$_POST['land']."',txt = '".$_POST['txt']."',gtel = '".$_POST['gtel']."',gkon = '".$_POST['gkon']."',es = '".$_POST['es']."',gs = '".$_POST['gs']."',score = '".$_POST['score']."',auf = '".$_POST['auf']."',hs = '".$_POST['hs']."',dis = '".$_POST['dis']."' WHERE id = '".$_POST['pkey']."'");
$wid = $_POST['pkey'];
for($i=1;$i<=16;$i++) {
$a = db_count_query("SELECT COUNT(*) FROM prefix_warmaps WHERE mnr = ".$i." AND wid = ".$wid);
if ( $a == 0 AND $_POST['map'][$i] != '' AND $_POST['opp'][$i] != '' AND $_POST['owp'][$i] != '' AND $_POST['es'][$i] != '' AND $_POST['gs'][$i] != '' AND $_POST['score'][$i] != '' AND $_POST['auf'][$i] != '' AND $_POST['hs'][$i] != '' AND $_POST['dis'][$i] != '') {
db_query("INSERT INTO prefix_warmaps (wid,mnr,map,opp,owp,es,gs,score,auf,hs,dis) VALUES (".$wid.",".$i.",'".$_POST['map'][$i]."',".$_POST['opp'][$i].",".$_POST['owp'][$i].",".$_POST['es'][$i].",".$_POST['gs'][$i].",".$_POST['score'][$i].",".$_POST['auf'][$i].",".$_POST['hs'][$i].",".$_POST['dis'][$i].")");
} elseif ( $a == 1 AND ( $_POST['map'][$i] == '' OR $_POST['opp'][$i] == '' AND $_POST['owp'][$i] == '' AND $_POST['es'][$i] != '' AND $_POST['gs'][$i] != '' AND $_POST['score'][$i] != '' AND $_POST['auf'][$i] != '' AND $_POST['hs'][$i] != '' AND $_POST['dis'][$i] != '') ) {
db_query("DELETE FROM prefix_warmaps WHERE wid = ".$wid." AND mnr = ".$i);
if ( file_exists('include/images/ligaspiele/'.$wid.'_'.$i.'.gif') ) { unlink ('include/images/ligaspiele/'.$wid.'_'.$i.'.gif'); }
if ( file_exists('include/images/ligaspiele/'.$wid.'_'.$i.'.png') ) { unlink ('include/images/ligaspiele/'.$wid.'_'.$i.'.png'); }
if ( file_exists('include/images/ligaspiele/'.$wid.'_'.$i.'.jpg') ) { unlink ('include/images/ligaspiele/'.$wid.'_'.$i.'.jpg'); }
if ( file_exists('include/images/ligaspiele/'.$wid.'_'.$i.'.jpeg') ) { unlink ('include/images/ligaspiele/'.$wid.'_'.$i.'.jpeg'); }
} elseif ( $a == 1 AND $_POST['map'][$i] != '' AND $_POST['opp'][$i] != '' AND $_POST['owp'][$i] != '' ) {
db_query("UPDATE prefix_warmaps SET map = '".escape($_POST['map'][$i], 'string')."', opp = ".escape($_POST['opp'][$i], 'string').", owp = ".escape($_POST['owp'][$i], 'string').", es = ".escape($_POST['es'][$i], 'string').", gs = ".escape($_POST['gs'][$i], 'string').", score = ".escape($_POST['score'][$i], 'string').", auf = ".escape($_POST['auf'][$i], 'string').", hs = ".escape($_POST['hs'][$i], 'string').", hs = ".escape($_POST['hs'][$i], 'string').", dis = ".escape($_POST['dis'][$i], 'string')." WHERE wid = ".$wid." AND mnr = ".$i);
}
}
# in den kalender eintragen wenn gewuenscht
if (isset($_POST['kalender']) AND $_POST['kalender'] == 'yes') {
$timestamp = strtotime(get_datime());
$page = str_replace('admin.php','index.php',$_SERVER["HTTP_HOST"].$_SERVER["SCRIPT_NAME"]);
if (1 == db_result(db_query("SELECT COUNT(*) FROM prefix_kalender WHERE text like '%more-".$wid."]%'"),0)) {
db_query("UPDATE prefix_kalender SET time = ".$timestamp.", title = 'Letztes Ligaspiel gegen ".$_POST['gegner']."', text = '".$_POST['mtyp']." ".$_POST['mod']." in ".$_POST['game']." gegen [url=".$_POST['page']."]".$_POST['gegner']."[/url]\n\n[url=http://".$page."?wars-more-".$wid."]Details des Spiels[/url]' WHERE text like '%more-".$wid."]%'");
} else {
db_query("INSERT INTO prefix_kalender (time, title, text, recht) VALUES (".$timestamp.",'Letztes Ligaspiel gegen ".$_POST['gegner']."', '".$_POST['mtyp']." ".$_POST['mod']." in ".$_POST['game']." gegen [url=".$_POST['page']."]".$_POST['gegner']."[/url]\n\n[url=http://".$page."?wars-more-".$wid."]Details des Spiels[/url]', 0)");
}
}
$msg = '<tr class="Cmite"><td colspan="2">Erfolgreich verändert</td></tr>';
}
}
if ( !empty ($_GET['pkey']) ) {
$erg = db_query("SELECT DATE_FORMAT(datime,'%d.%m.%Y.%H.%i.%s') as datime, id,status,wlp,owp,opp,gegner,tag,page,mail,icq,tid,wo,`mod`,game,mtyp,land,txt,gtel,gkon,es,gs,score,auf,hs,dis FROM prefix_wars WHERE id = '".$_GET['pkey']."'");
$_ilch = db_fetch_assoc($erg);
$_ilch['pkey'] = $_GET['pkey'];
list($_ilch['day'],$_ilch['mon'],$_ilch['jahr'],$_ilch['stu'],$_ilch['min'],$_ilch['sek']) = explode('.',$_ilch['datime']);
$_ilch['kalck'] = (db_result(db_query("SELECT COUNT(*) FROM prefix_kalender WHERE text like '%more-".$_GET['pkey']."]%'"),0,0) == 1 ? ' checked' : '');
$wid = $_GET['pkey'];
for($i=1;$i<=16;$i++) {
$erg = db_query("SELECT map,opp,owp,es,gs,score,auf,hs,dis FROM prefix_warmaps WHERE mnr = ".$i." AND wid = ".$wid);
if ( db_num_rows($erg) == 0 ) {
$_ilch['map'.$i] = '';
$_ilch['opp'.$i] = '';
$_ilch['owp'.$i] = '';
$_ilch['es'.$i] = '';
$_ilch['gs'.$i] = '';
$_ilch['score'.$i] = '';
$_ilch['auf'.$i] = '';
$_ilch['hs'.$i] = '';
$_ilch['dis'.$i] = '';
} else {
$mpr = db_fetch_assoc($erg);
$_ilch['map'.$i] = $mpr['map'];
$_ilch['opp'.$i] = $mpr['opp'];
$_ilch['owp'.$i] = $mpr['owp'];
$_ilch['es'.$i] = $mpr['es'];
$_ilch['gs'.$i] = $mpr['gs'];
$_ilch['score'.$i] = $mpr['score'];
$_ilch['auf'.$i] = $mpr['auf'];
$_ilch['hs'.$i] = $mpr['hs'];
$_ilch['dis'.$i] = $mpr['dis'];
}
}
} else {
$_ilch = array ('tag'=>'','mail'=>'','gkon'=>'','gtel'=>'','icq'=>'','wo'=>'','pkey' => 0, 'wlp' => '', 'opp' => '', 'owp' => '', 'gegner' => '', 'page' => 'http://', 'mtyp' => '', 'tid' => 0, 'land' => '', 'txt' => '', 'mod' => '', 'game' => '', 'day' => date('d'), 'mon' => date('m'), 'jahr' => date('Y'), 'stu' => date('H'), 'min' => date('i'), 'sek' => date('s'), 'kalck' => '', 'es' => '', 'gs' => '', 'score' => '', 'auf' => '', 'hs' => '', 'dis' => '' );
for($i=1;$i<=16;$i++) {
$_ilch['map'.$i] = '';
$_ilch['opp'.$i] = '';
$_ilch['owp'.$i] = '';
$_ilch['es'.$i] = '';
$_ilch['gs'.$i] = '';
$_ilch['score'.$i] = '';
$_ilch['auf'.$i] = '';
$_ilch['hs'.$i] = '';
$_ilch['dis'.$i] = '';
}
}
$_ilch['msg'] = ( isset ($msg) ? $msg : '' );
$_ilch['tid'] = dblistee ( $_ilch['tid'], "SELECT id, name FROM prefix_groups ORDER BY name");
$_ilch['mod'] = dblistee ( $_ilch['mod'], "SELECT DISTINCT `mod`,`mod` FROM prefix_wars ORDER BY `mod`" );
$_ilch['game'] = dblistee ( $_ilch['game'], "SELECT DISTINCT `game`,`game` FROM prefix_wars ORDER BY `game`" );
$_ilch['mtyp'] = dblistee ( $_ilch['mtyp'], "SELECT DISTINCT `mtyp`,`mtyp` FROM prefix_wars ORDER BY `mtyp`" );
$_ilch['land'] = arlistee ( $_ilch['land'] , get_nationality_array() );
$_ilch['wlp'] = arlistee ( $_ilch['wlp'] , get_wlp_array() );
$tpl->set_ar_out($_ilch,0);
$page = ( $menu->getA(2) == 'p' ? $menu->getE(2) : 1 );
$limit = 20; $class = '';
$MPL = db_make_sites ($page , 'WHERE status = 3' , $limit , '?wars-last' , 'wars' );
$anfang = ($page - 1) * $limit;
$abf = "SELECT id,gegner,game FROM prefix_wars WHERE status = 3 ORDER BY id DESC LIMIT ".$anfang.",".$limit;
$erg = db_query($abf);
while ($row = db_fetch_assoc($erg) ) {
$class = ($class == 'Cmite' ? 'Cnorm' : 'Cmite' );
$row['class'] = $class;
$row['game'] = get_wargameimg($row['game']);
$tpl->set_ar ( $row );
$tpl->out(1);
}
$tpl->set ( 'MPL', $MPL );
$tpl->out(2);
$design->footer();
break;
# Next wars
case 'next' :
$design = new design ( 'Admins Area', 'Admins Area', 2 );
$design->header();
$show = true;
$tpl = new tpl ( 'wars/next', 1);
if ( !empty ( $_GET['delete'] ) ) {
# aus kalender loeschen falls vorhanden
db_query("DELETE FROM prefix_kalender WHERE text like '%more-".$_GET['delete']."]%'");
db_query("DELETE FROM prefix_wars WHERE id = '".$_GET['delete']."'");
$msg = '<tr class="Cmite"><td colspan="2">Erfolgreich gelöscht</td></tr>';
}
if ( !empty($_POST['sub']) ) {
if ( !empty($_POST['newmod']) ) {
$_POST['mod'] = $_POST['newmod'];
}
if ( !empty($_POST['newgame']) ) {
$_POST['game'] = $_POST['newgame'];
}
if ( !empty($_POST['newmtyp']) ) {
$_POST['mtyp'] = $_POST['newmtyp'];
}
if ( empty($_POST['tid']) ) {
$_POST['tid'] = 0;
}
$_POST['pkey'] = escape($_POST['pkey'], 'integer');
$_POST['gegner'] = escape($_POST['gegner'], 'string');
$_POST['page'] = get_homepage(escape($_POST['page'], 'string'));
$_POST['tid'] = escape($_POST['tid'], 'integer');
$_POST['mod'] = escape($_POST['mod'], 'string');
$_POST['game'] = escape($_POST['game'], 'string');
$_POST['mtyp'] = escape($_POST['mtyp'], 'string');
$_POST['land'] = escape($_POST['land'], 'string');
$_POST['txt'] = escape($_POST['txt'], 'string');
$_POST['tag'] = escape($_POST['tag'], 'string');
$_POST['email'] = escape($_POST['email'], 'string');
$_POST['icq'] = escape($_POST['icq'], 'string');
$_POST['wo'] = escape($_POST['wo'], 'string');
$_POST['gtel'] = escape($_POST['gtel'], 'string');
$_POST['gkon'] = escape($_POST['gkon'], 'string');
if ( empty ($_POST['pkey']) ) {
db_query("INSERT INTO prefix_wars (datime,`status`,gegner,tag,page,mail,icq,wo,tid,`mod`,game,mtyp,land,txt,gtel,gkon) VALUES ('".get_datime()."',2,'".$_POST['gegner']."','".$_POST['tag']."','".$_POST['page']."','".$_POST['email']."','".$_POST['icq']."','".$_POST['wo']."','".$_POST['tid']."','".$_POST['mod']."','".$_POST['game']."','".$_POST['mtyp']."','".$_POST['land']."','".$_POST['txt']."','".$_POST['gtel']."','".$_POST['gkon']."')");
$wid = db_last_id();
# in den kalender eintragen wenn gewuenscht
if (isset($_POST['kalender']) AND $_POST['kalender'] == 'yes') {
$timestamp = strtotime(get_datime());
$page = str_replace('admin.php','index.php',$_SERVER["HTTP_HOST"].$_SERVER["SCRIPT_NAME"]);
db_query("INSERT INTO prefix_kalender (time, title, text, recht) VALUES (".$timestamp.",'Nächstes Ligaspiel gegen ".$_POST['gegner']."', '".$_POST['mtyp']." ".$_POST['mod']." in ".$_POST['game']." gegen [url=".$_POST['page']."]".$_POST['gegner']."[/url]\n\n[url=http://".$page."?wars-more-".$wid."]Details des Spiels[/url]', 0)");
}
$msg = '<tr class="Cmite"><td colspan="2">Erfolgreich eingetragen</td></tr>';
} else {
db_query("UPDATE prefix_wars SET datime = '".get_datime()."', status = 2,gegner = '".$_POST['gegner']."',tag = '".$_POST['tag']."',page = '".$_POST['page']."',mail = '".$_POST['email']."',icq = '".$_POST['icq']."',wo = '".$_POST['wo']."',tid = '".$_POST['tid']."',`mod` = '".$_POST['mod']."',game = '".$_POST['game']."',mtyp = '".$_POST['mtyp']."',land = '".$_POST['land']."',txt = '".$_POST['txt']."',gtel = '".$_POST['gtel']."',gkon = '".$_POST['gkon']."' WHERE id = '".$_POST['pkey']."'");
$wid = $_POST['pkey'];
# in den kalender eintragen wenn gewuenscht
if (isset($_POST['kalender']) AND $_POST['kalender'] == 'yes') {
$timestamp = strtotime(get_datime());
$page = str_replace('admin.php','index.php',$_SERVER["HTTP_HOST"].$_SERVER["SCRIPT_NAME"]);
if (1 == db_result(db_query("SELECT COUNT(*) FROM prefix_kalender WHERE text like '%more-".$wid."]%'"),0)) {
db_query("UPDATE prefix_kalender SET time = ".$timestamp.", title = 'Nächstes Ligaspiel gegen ".$_POST['gegner']."', text = '".$_POST['mtyp']." ".$_POST['mod']." in ".$_POST['game']." gegen [url=".$_POST['page']."]".$_POST['gegner']."[/url]\n\n[url=http://".$page."?wars-more-".$wid."]Details des Spiels[/url]' WHERE text like '%more-".$wid."]%'");
} else {
db_query("INSERT INTO prefix_kalender (time, title, text, recht) VALUES (".$timestamp.",'Nächstes Ligaspiel gegen ".$_POST['gegner']."', '".$_POST['mtyp']." ".$_POST['mod']." in ".$_POST['game']." gegen [url=".$_POST['page']."]".$_POST['gegner']."[/url]\n\n[url=http://".$page."?wars-more-".$wid."]Details des Spiels[/url]', 0)");
}
}
$msg = '<tr class="Cmite"><td colspan="2">Erfolgreich verändert</td></tr>';
}
}
if ( !empty ($_GET['pkey']) ) {
$erg = db_query("SELECT DATE_FORMAT(datime,'%d.%m.%Y.%H.%i.%s') as datime, id,status,gegner,tag,page,mail,icq,wo,tid,`mod`,game,mtyp,land,txt,gtel,gkon FROM prefix_wars WHERE id = '".$_GET['pkey']."'");
$_ilch = db_fetch_assoc($erg);
list($_ilch['day'],$_ilch['mon'],$_ilch['jahr'],$_ilch['stu'],$_ilch['min'],$_ilch['sek']) = explode('.',$_ilch['datime']);
$_ilch['kalck'] = (db_result(db_query("SELECT COUNT(*) FROM prefix_kalender WHERE text like '%more-".$_GET['pkey']."]%'"),0,0) == 1 ? ' checked' : '');
$_ilch['pkey'] = $_GET['pkey'];
} else {
$_ilch = array ('tag'=>'','mail'=>'','icq'=>'','wo'=>'','pkey' => '', 'wlp' => '', 'erg1' => '', 'erg2' => '', 'gegner' => '', 'page' => 'http://', 'mtyp' => '', 'tid' => 0, 'land' => '', 'txt' => '', 'gtel' => '', 'gkon' => '', 'mod' => '', 'game' => '', 'day' => date('d'), 'mon' => date('m'), 'jahr' => date('Y'), 'stu' => date('H'), 'min' => date('i'), 'sek' => date('s'), 'kalck' => '' );
}
$_ilch['msg'] = ( isset ($msg) ? $msg : '' );
$_ilch['tid'] = dblistee ( $_ilch['tid'], "SELECT id, name FROM prefix_groups ORDER BY name");
$_ilch['mod'] = dblistee ( $_ilch['mod'], "SELECT DISTINCT `mod`,`mod` FROM prefix_wars ORDER BY `mod`" );
$_ilch['game'] = dblistee ( $_ilch['game'], "SELECT DISTINCT `game`,`game` FROM prefix_wars ORDER BY `game`" );
$_ilch['mtyp'] = dblistee ( $_ilch['mtyp'], "SELECT DISTINCT `mtyp`,`mtyp` FROM prefix_wars ORDER BY `mtyp`" );
$_ilch['land'] = arlistee ( $_ilch['land'] , get_nationality_array() );
$tpl->set_ar_out($_ilch,0);
$page = ( $menu->getA(2) == 'p' ? $menu->getE(2) : 1 );
$class = '';
if ($page == 1) {
$abf = "SELECT id,gegner,game FROM prefix_wars WHERE status = 1 ORDER BY id DESC";
$erg = db_query($abf);
while ($r = db_fetch_assoc($erg)) {
$class = ($class == 'Cmite' ? 'Cnorm' : 'Cmite' );
$r['class'] = $class;
$r['game'] = get_wargameimg($r['game']);
$tpl->set_ar ($r);
$tpl->out(1);
}
}
$limit = 20;
$MPL = db_make_sites ($page , 'WHERE status = 2' , $limit , '?wars-next' , 'wars' );
$anfang = ($page - 1) * $limit;
$abf = "SELECT id,gegner,game FROM prefix_wars WHERE status = 2 ORDER BY id DESC LIMIT ".$anfang.",".$limit;
$erg = db_query($abf);
while ($row = db_fetch_assoc($erg) ) {
$class = ($class == 'Cmite' ? 'Cnorm' : 'Cmite' );
$row['class'] = $class;
$row['game'] = get_wargameimg($row['game']);
$tpl->set_ar ( $row );
$tpl->out(2);
}
$tpl->set ( 'MPL', $MPL );
$tpl->out(3);
$design->footer();
break;
case 'info' :
$design = new design ( 'Admins Area', 'Admins Area', 2 );
$design->header();
$erg = db_query("SELECT DATE_FORMAT(datime,'%d.%m.%Y.%H.%i.%s') as datime, id,status,gegner,tag,page,mail,icq,wo,tid,`mod`,game,mtyp,land,txt,gtel,gkon FROM prefix_wars WHERE id = '".intval($menu->get(2))."'");
$_ilch = db_fetch_assoc($erg);
list($_ilch['day'],$_ilch['mon'],$_ilch['jahr'],$_ilch['stu'],$_ilch['min'],$_ilch['sek']) = explode('.',$_ilch['datime']);
$tpl = new tpl ('wars/info', 1);
$tpl->set_ar_out($_ilch,0);
$design->footer();
break;
}
?>
betroffene Homepage: poolxpress.at.tf
Zuletzt modifiziert von humpti am 30.10.2011 - 07:34:29
