connect($world_db[$realm_id]['addr'], $world_db[$realm_id]['user'], $world_db[$realm_id]['pass'], $world_db[$realm_id]['name']); //==========================$_GET and SECURE================================= $start = (isset($_GET['start'])) ? $sqlw->quote_smart($_GET['start']) : 0; if (is_numeric($start)); else $start=0; $order_by = (isset($_GET['order_by'])) ? $sqlw->quote_smart($_GET['order_by']) : 'entry'; if (preg_match('/^[_[:lower:]]{1,12}$/', $order_by)); else $order_by = 'entry'; $dir = (isset($_GET['dir'])) ? $sqlw->quote_smart($_GET['dir']) : 1; if (preg_match('/^[01]{1}$/', $dir)); else $dir = 1; $order_dir = ($dir) ? 'ASC' : 'DESC'; $dir = ($dir) ? 0 : 1; //==========================$_GET and SECURE end============================= //==========================Browse/Search CHECK============================== $search_by = ''; $search_value = ''; if(isset($_GET['search_value']) && isset($_GET['search_by'])) { $search_value = $sqlw->quote_smart($_GET['search_value']); $search_by = $sqlw->quote_smart($_GET['search_by']); $search_menu = array('entry', 'disable_mask', 'comment'); if (in_array($search_by, $search_menu)); else $search_by = 'entry'; $query_1 = $sqlw->query('SELECT count(*) FROM spell_disabled WHERE $search_by LIKE \'%$search_value%\''); $result = $sqlw->query('SELECT entry, disable_mask, comment FROM spell_disabled WHERE '.$search_by.' LIKE \'%$search_value%\' ORDER BY '.$order_by.' '.$order_dir.' LIMIT '.$start.', '.$itemperpage.''); } else { $query_1 = $sqlw->query('SELECT count(*) FROM spell_disabled'); $result = $sqlw->query('SELECT entry, disable_mask, comment FROM spell_disabled ORDER BY '.$order_by.' '.$order_dir.' LIMIT '.$start.', '.$itemperpage.''); } //get total number of items $all_record = $sqlw->result($query_1,0); unset($query_1); //==========================top tage navigaion starts here======================== $output .= '

'; if ($user_lvl >= $action_permission['insert']) makebutton($lang_spelld['add_spell'], 'spelld.php?action=add_new" type="wrn', 130); makebutton($lang_global['back'], 'javascript:window.history.back()', 130); ($search_by && $search_value) ? makebutton($lang_spelld['spell_list'], 'spelld.php', 130) : $output .= ''; $output .= '

'; $output .= generate_pagination('spelld.php?order_by='.$order_by.'&dir='.(($dir) ? 0 : 1).( $search_value && $search_by ? '&search_by='.$search_by.'&search_value='.$search_value.'' : '' ), $all_record, $itemperpage, $start); $output .= '

'; //==========================top tage navigaion ENDS here ======================== $output .= '

'; if($user_lvl >= $action_permission['delete']) $output .= ' '; else $output .= ' '; $output .= ' '; while($spelld = $sqlw->fetch_assoc($result)) { if($user_lvl >= $action_permission['delete']) $output .= ' '; else $output .= ' '; $output .= ' '; } $output .= '

	'.$lang_spelld['entry'].'	'.$lang_spelld['disable_mask'].'	'.$lang_spelld['comment'].'
	'.$spelld['entry'].'	'.$spelld['disable_mask'].'	'.$spelld['comment'].'
'; $output .= generate_pagination('spelld.php?order_by='.$order_by.'&dir='.(($dir) ? 0 : 1).( $search_value && $search_by ? '&search_by='.$search_by.'&search_value='.$search_value.'' : '' ), $all_record, $itemperpage, $start); $output .= '
'; if($user_lvl >= $action_permission['delete']) makebutton($lang_spelld['del_selected_spells'], 'javascript:do_submit(\'form1\',0)" type="wrn', 180); $output .= '	'.$lang_spelld['tot_spell'].' : '.$all_record.'

'; } //##################################################################################################### // ADD NEW SPELL //####################################################################################################### function add_new() { global $lang_global, $lang_spelld, $output, $action_permission; valid_login($action_permission['insert']); $output .= '

'.$lang_spelld['add_new_spell'].'

'.$lang_spelld['value'].'	'.$lang_spelld['type'].'
1	'.$lang_spelld['disabled_p'].'
2	'.$lang_spelld['disabled_crea_npc_pets'].'
3	'.$lang_spelld['disabled_p_crea_npc_pets'].'

'; } //######################################################################################################### // DO ADD NEW SPELL //######################################################################################################### function doadd_new() { global $world_db, $realm_id, $action_permission; valid_login($action_permission['insert']); if ( empty($_GET['entry']) && empty($_GET['disable_mask']) && empty($_GET['comment']) ) redirect('spelld.php?error=1'); $sqlw = new SQL; $sqlw->connect($world_db[$realm_id]['addr'], $world_db[$realm_id]['user'], $world_db[$realm_id]['pass'], $world_db[$realm_id]['name']); $entry = $sqlw->quote_smart($_GET['entry']); if (is_numeric($entry)); else redirect('spelld.php?error=6'); $disable_mask = $sqlw->quote_smart($_GET['disable_mask']); if (is_numeric($disable_mask)); else redirect('spelld.php?error=6'); $comment = $sqlw->quote_smart($_GET['comment']); $sqlw->query('INSERT INTO spell_disabled (entry, disable_mask, comment) VALUES (\''.$entry.'\', \''.$disable_mask.'\', \''.$comment.'\')'); if ($sqlw->affected_rows()) redirect('spelld.php?error=8'); else redirect('spelld.php?error=7'); } //##################################################################################################### // DELETE SPELL //##################################################################################################### function del_spell() { global $world_db, $realm_id, $action_permission; valid_login($action_permission['delete']); if(isset($_GET['check'])); else redirect("spelld.php?error=1"); $sqlw = new SQL; $sqlw->connect($world_db[$realm_id]['addr'], $world_db[$realm_id]['user'], $world_db[$realm_id]['pass'], $world_db[$realm_id]['name']); $check = $sqlw->quote_smart($_GET['check']); $n_check=count($check); for ($i=0; $i<$n_check; ++$i) if ($check[$i] == '' ); else $sqlw->query('DELETE FROM spell_disabled WHERE entry = '.$check[$i].''); unset($n_check); unset($check); if ($sqlw->affected_rows()) redirect('spelld.php?error=4'); else redirect('spelld.php?error=5'); } //############################################################################# // MAIN //############################################################################# $err = (isset($_GET['error'])) ? $_GET['error'] : NULL; $output .= '

'; $lang_spelld = lang_spelld(); if (1 == $err) $output .= '

'.$lang_global['empty_fields'].'

'; elseif (2 == $err) $output .= '

'.$lang_global['err_no_search_passed'].'

'; elseif (3 == $err) $output .= '

'.$lang_spelld['search_results'].'

'; elseif (4 == $err) $output .= '

'.$lang_spelld['spell_deleted'].'

'; elseif (5 == $err) $output .= '

'.$lang_spelld['spell_not_deleted'].'

'; elseif (6 == $err) $output .= '

'.$lang_spelld['wrong_fields'].'

'; elseif (7 == $err) $output .= '

'.$lang_spelld['err_add_entry'].'

'; elseif (8 == $err) $output .= '

'.$lang_spelld['spell_added'].'

'; else $output .= '

'.$lang_spelld['spells'].'

'; unset($err); $output .= '

'; $action = (isset($_GET['action'])) ? $_GET['action'] : NULL; if ('add_new' === $action) add_new(); elseif ('doadd_new' === $action) doadd_new(); elseif ('del_spell' === $action) del_spell(); else browse_spells(); unset($action); unset($action_permission); unset($lang_spelld); require_once 'footer.php'; ?>

'.$lang_spelld['entry2'].'
'.$lang_spelld['disable_mask2'].'
'.$lang_spelld['comment2'].'
'; makebutton($lang_spelld['add_spell'], 'javascript:do_submit()" type="wrn', 130); $output .= '	'; makebutton($lang_global['back'], 'javascript:window.history.back()" type="def', 130); $output .= '