<body topmargin='0' leftmargin='0' bgcolor='#FFFFFF'>
<?
ob_start();
// allows you to use cookies.
include("config.php");
if (!$logged[username])
{
if (!$_POST[login])
{
echo("
<center><form method='POST'>
<table>
<tr>
<td align='center'>
Username: <input type='text' size='15' maxlength='25' name='username'>
</td>
</tr>
<tr>
<td align='center'>
Password: <input type='password' size='15' maxlength='25' name='password'>
</td></tr><tr>
<td align='center'>
<input type='submit' name='login' value='Login' size='20'>
</td></tr><tr>
<td align='center'>
<a href='register.php' target='middle'>Register Here</a>
</td>
</tr></table></form></center>");
}
if ($_POST[login]) {
// the form has been submitted. We continue...
$username=$_POST['username'];
$password = md5($_POST[password]);
// the above lines set variables with the submitted information.
$info = mysql_query("SELECT * FROM users WHERE username = '$username'") or die(mysql_error());
$data = mysql_fetch_array($info);
if($data[password] != $password) {
// the password was not the user's password!
echo '<meta http-equiv='Refresh' content='2; URL=login.php'/><center>Incorrect username or password!<br><br>Please Wait</center>';
}else{
// the password was right!
$profile = mysql_query("SELECT * FROM users WHERE username = '$logged[username]'") or die(mysql_error());
$query = mysql_query("SELECT * FROM users WHERE username = '$username'") or die(mysql_error());
$user = mysql_fetch_array($query);
$date = date("j F G : i");
if($user[level] == 11){
mysql_query("INSERT INTO `modlogins` (`id` , `description` ) VALUES (NULL , '$user[username] :::: $date")");
}
// gets the user's information
setcookie("id', $user[id],time()+(60*60*24*5), '/', '");
setcookie("pass', $user[password],time()+(60*60*24*5), '/', '");
mysql_query("INSERT INTO `logins` (`id`, `username` , `description` ) VALUES (NULL , '$user[username]' , '$date")");
// the above lines set 2 cookies. 1 with the user's id and another with his/her password.
echo ("<meta http-equiv='Refresh' content='0; URL=login.php'/><center>Thank You! You will be redirected</center>");
// modify the above line...add in your site url instead of yoursite.com
}
}
}
else
{
$profile = mysql_query("SELECT * FROM users WHERE username = '$logged[username]'") or die(mysql_error());
$new = mysql_query("select * from pmessages where unread = 'unread' and touser = '$logged[username]'");
$new = mysql_num_rows($new);
$pms = mysql_query("select * from pmessages where touser = '$logged[username]'");
$pms = mysql_num_rows($pms);
$rquery = mysql_query("SELECT * FROM cfh"); # Queries The Call For Help Messages
while($m=mysql_fetch_array($rquery)) # Displays Them All In Order
// we now display the user controls.
if($logged[username] && $logged[level] == 0 ){
echo '<p>Sorry, you are banned. And therefore cannot view this page!</p><p>To have the ban lifted, email
[email protected] and we will look into the case.</p>';
}
if($logged[username] && $logged[level] >= 1)
{
echo ("<p>Welcome <span class='$logged[level]'><b>$logged[username]</b></span>!<br>
- <a href='select_badge.php' target='middle'>Set Display Badge</a><br />
- <a href='messages.php' target='middle'>Message Center</a> ");
include("new.php");
echo ("<p>Welcome <span class='$logged[level]'><b>$logged[username]</b></span>!<br>
- <a href='select_badge.php' target='middle'>Set Display Badge</a><br />
- <a href='messages.php' target='middle'>Message Center</a> ");
include("new.php");
echo ("<p>Welcome <span class='$logged[level]'><b>$logged[username]</b></span>!<br>
- <a href='select_badge.php' target='middle'>Set Display Badge</a><br />
- <a href='messages.php' target='middle'>Message Center</a> ");
include("new.php");
echo("<select style='font-family: Verdana; font-size: 10px; color: #000000;'>
<option>Home</option>
<option value='./home.html'>News</option>
<option value='/select_badge.php'>Your Badge</option>
<option value='/messages.php'>Messages</option>
<option value='/values_1.php'>Rare values</option>
<option value='/badges.php'>Full list of badges</option>
<option value='/rooms.php'>Chat Rooms</option>
<option value='/contact.php'>Request Line</option>
<option value='/logout.php'>Logout</option>
</select>
");
if($logged[username] && $logged[level] == 12)
echo '- <a href='admin/index.php' target='gay>'>JamieB</a><br/>';
if($logged[username] && $logged[level] == 11 || $logged[level] == 12)
echo '- <a href='mod/index.php' target='middle'>Mod Panel</a><br />';
if($logged[username] && $logged[level] == 9 || $logged[level] == 12)
echo '- <a href='managers/index.php' target='middle'>Managers Panel</a><br />';
if($logged[username] && $logged[level] == 10 || $logged[level] == 12)
echo '- <a href='support/index.php' dumb='<your'>Player Support</a><br />';
}
}
?>
<html>
<head>
<title>Home</title>
<style type='text/css'>
a {
font-size: 10px;
color: #000000;
}
a:link {
text-decoration: none;
color: #000000;
}
a:visited {
text-decoration: none;
color: #000000;
}
a:hover {
text-decoration: underline;
color: #000000;
}
a:active {
text-decoration: none;
color: #000000;
}
body, td, th, p {
font-family: Verdana;
font-size: 10px;
color: #000000;
}
.12 { color: red; }
.11 { color: navy; }
.10 { }
.9 { color: darkorchid; }
.8 { color: darkorchid; }
.7 { color: darkorchid; }
.6 { color: darkorchid; }
.5 { color: green; }
.4 { color: green; }
.3 { color: green; }
.2 { color: green; }
.1 { color: black; }
input {
font-family: Tahoma, Arial;
font-size: 8pt;
font-weight: bold;
width: 100;
color: #000000;
background-color: #FFFFFF;
border: 1px solid #000000;
}
select {
background-color: #ffffff;
font-family: Arial, Helvetica, sans-serif;
font-size: 8pt;
color: #000000;
width: 100;
border: 1px solid #000000;
}
textarea {
background-color: #ffffff;
font-family: Arial, Helvetica, sans-serif;
font-size: 8pt;
color: #000000;
width: 100;
border: 1px solid #000000;
}
</style>
<meta http-equiv='Refresh' content='30; URL=login.php'/>
</head>
</body>
</html>
<?
if ($logged[banned] == 'banned"){
echo ("<meta http-equiv='Refresh' content='0; URL=banned.php'/>);
}
?>
Found all instances of \" and " and replaced with '. Do it yourself next time?
Also, please try harder to learn. Please.
Please try harder to clean code. Please. What you've just done is invalidated his code html wise. Well done, have yourself a big *** cookie. Then learn to code because there is still a php error with your code.
<html>
<head>
<meta name="generator" content="HTML Tidy, see www.w3.org">
<title>Home</title>
<style type="text/css">
a {
font-size: 10px;
color: #000000;
}
a:link {
text-decoration: none;
color: #000000;
}
a:visited {
text-decoration: none;
color: #000000;
}
a:hover {
text-decoration: underline;
color: #000000;
}
a:active {
text-decoration: none;
color: #000000;
}
body, td, th, p {
font-family: Verdana;
font-size: 10px;
color: #000000;
}
input {
font-family: Tahoma, Arial;
font-size: 8pt;
font-weight: bold;
width: 100px;
color: #000000;
background-color: #FFFFFF;
border: 1px solid #000000;
}
select {
background-color: #ffffff;
font-family: Arial, Helvetica, sans-serif;
font-size: 8pt;
color: #000000;
width: 100px;
border: 1px solid #000000;
}
textarea {
background-color: #ffffff;
font-family: Arial, Helvetica, sans-serif;
font-size: 8pt;
color: #000000;
width: 100px;
border: 1px solid #000000;
}
</style>
<meta http-equiv="Refresh" content="30;URL=login.php">
</head>
<body>
<?php
//ob_start();
// allows you to use cookies.
// ob is output buffering not cookies ***
include("config.php");
if (!$logged["username"])
{
if (!$_POST[login])
{
echo("
<center><form method=\"POST\">
<table>
<tr>
<td align=\"center\">
Username: <input type=\"text\" size=\"15\" maxlength=\"25\" name=\"username\">
</td>
</tr>
<tr>
<td align=\"center\">
Password: <input type=\"password\" size=\"15\" maxlength=\"25\" name=\"password\">
</td></tr><tr>
<td align=\"center\">
<input type=\"submit\" name=\"login\" value=\"Login\" size=\"20\">
</td></tr><tr>
<td align=\"center\">
<a href=\"register.php\" target=\"middle\">Register Here</a>
</td>
</tr></table></form></center>");
}
else
{
// the form has been submitted. We continue...
$username = $_POST["username"];
$password = md5($_POST["password"]);
// the above lines set variables with the submitted information.
$info = mysql_query("SELECT * FROM `users` WHERE `username` = '$username'") or die(mysql_error());
$data = mysql_fetch_array($info);
if($data[password] != $password)
{
// the password was not the user\"s password!
echo "<meta http-equiv=\"Refresh\" content=\"2; URL=login.php\"/><center>Incorrect username or password!<br><br>Please Wait</center>";
}
else
{
// the password was right!
$query = mysql_query("SELECT * FROM `users` WHERE `username` = '{$logged["username"]}'") or die(mysql_error());
$user = mysql_fetch_array($query);
$date = date("j F G : i");
if($user[level] == 11)
{
mysql_query("INSERT INTO `modlogins` (`id` , `description` ) VALUES (NULL , '$user[username] :::: $date')");
}
// gets the user\"s information
setcookie("id\", $user[id],time()+(60*60*24*5), \"/\", \"");
setcookie("pass\", $user[password],time()+(60*60*24*5), \"/\", \"");
mysql_query("INSERT INTO `logins` (`id`, `username` , `description` ) VALUES (NULL , '{$user["username"]}' , '$date')");
// the above lines set 2 cookies. 1 with the user\"s id and another with his/her password.
echo ("<meta http-equiv=\"Refresh\" content=\"0; URL=login.php\"/><center>Thank You! You will be redirected</center>");
// modify the above line...add in your site url instead of yoursite.com
}
}
}
else
{
$profile = mysql_query("SELECT * FROM users WHERE username = \"$logged[username]\"") or die(mysql_error());
$new = mysql_query("select * from pmessages where unread = \"unread\" and touser = \"$logged[username]\"");
$new = mysql_num_rows($new);
$pms = mysql_query("select * from pmessages where touser = \"$logged[username]\"");
$pms = mysql_num_rows($pms);
$rquery = mysql_query("SELECT * FROM cfh"); # Queries The Call For Help Messages
while($m=mysql_fetch_array($rquery)) # Displays Them All In Order
// we now display the user controls.
if($logged[username] && $logged[level] == 0 )
{
echo "<p>Sorry, you are banned. And therefore cannot view this page!</p><p>To have the ban lifted, email
[email protected] and we will look into the case.</p>";
}
if($logged[username] && $logged[level] >= 1)
{
echo ("<p>Welcome <span class=\"{$logged["level"]}\"><b>$logged[username]</b></span>!<br>
- <a href=\"select_badge.php\" target=\"middle\">Set Display Badge</a><br />
- <a href=\"messages.php\" target=\"middle\">Message Center</a> ");
include("new.php");
echo ("<p>Welcome <span class=\"$logged[level]\"><b>$logged[username]</b></span>!<br>
- <a href=\"select_badge.php\" target=\"middle\">Set Display Badge</a><br />
- <a href=\"messages.php\" target=\"middle\">Message Center</a> ");
include("new.php");
echo ("<p>Welcome <span class=\"$logged[level]\"><b>$logged[username]</b></span>!<br>
- <a href=\"select_badge.php\" target=\"middle\">Set Display Badge</a><br />
- <a href=\"messages.php\" target=\"middle\">Message Center</a> ");
include("new.php");
echo("<select style=\"font-family: Verdana; font-size: 10px; color: #000000;\">
<option>Home</option>
<option value=\"./home.html\">News</option>
<option value=\"/select_badge.php\">Your Badge</option>
<option value=\"/messages.php\">Messages</option>
<option value=\"/values_1.php\">Rare values</option>
<option value=\"/badges.php\">Full list of badges</option>
<option value=\"/rooms.php\">Chat Rooms</option>
<option value=\"/contact.php\">Request Line</option>
<option value=\"/logout.php\">Logout</option>
</select>
");
if($logged[username] && $logged[level] == 12)
{
echo "- <a href=\"admin/index.php\" target=\"gay>\">JamieB</a><br/>";
}
if($logged[username] && $logged[level] == 11 || $logged[level] == 12)
{
echo "- <a href=\"mod/index.php\" target=\"middle\">Mod Panel</a><br />";
}
if($logged[username] && $logged[level] == 9 || $logged[level] == 12)
{
echo "- <a href=\"managers/index.php\" target=\"middle\">Managers Panel</a><br />";
}
if($logged[username] && $logged[level] == 10 || $logged[level] == 12)
{
echo "- <a href=\"support/index.php\" dumb=\"<your\">Player Support</a><br />";
}
}
}
if ($logged["banned"] == "banned")
{
echo("<meta http-equiv=\"Refresh\" content=\"3;URL=banned.php\"/>");
}
?>
</body>
</html>
because i am so pro.