Need some help please

PHP programming forum. Ask questions or help people concerning PHP code. Don't understand a function? Need help implementing a class? Don't understand a class? Here is where to ask. Remember to do your homework!

Moderator: General Moderators

Post Reply
hashie
Forum Newbie
Posts: 2
Joined: Sat Jun 07, 2008 6:50 pm

Need some help please

Post by hashie »

When members view ads at my site after the counter counts down and you click the right verification but after you do that it doesnt do anything is suppose to credit the member that viewed the site.

Code: Select all

<?php
session_start();
header('Content-type: text/javascript');
 
require('config.php');
require('funciones.php');
 
// SOME USEFUL FUNCTIONS
// ---------------------
function destroy() {
    $_SESSION['captcha']=null;
    exit();
}
 
function error_message($msg) {
    global $fail_code;
    echo <<<EOT
        document.getElementById('timer').setAttribute('class','hidden');
        document.getElementById('alert').setAttribute('class','');
        document.getElementById('alert').innerHTML="$msg"+'<p><a href="javascript&#058;closealert()">Close</a></p>';
EOT;
    destroy();
}
 
// CHECKING
// --------
 
// checking if user is logged in
if(!isset($_COOKIE["usNick"]) || !isset($_COOKIE["usPass"])) {
    error_message('Not logged in or session cookie expired.\nPlease log-in again.');
}
 
// checking captcha
if(!isset($_GET['code']) || $_GET['code']!=$_SESSION['captcha']) {
 
$user = uc($_COOKIE["usNick"]);
$ip=getRealIP();
$date = date("F j, Y");
$time = date("g:i a");
    mysql_query("INSERT INTO cheaters(user,ip, date, time) VALUES ('$user','$ip', '$date','$time')") or die(mysql_error());
    error_message('Wrong security code!<br><br>This is a bot detection and your account will be deleted if this persists. Please contact support for further information.');
}
 
// checking username and password
$user = uc($_COOKIE["usNick"]);
$pass = uc($_COOKIE["usPass"]);
$user_query = mysql_query("SELECT * FROM users WHERE username='$user' AND password='$pass'") or die(mysql_error());        
 
if(mysql_num_rows($user_query)==0) {
    error_message('Bad username/password.\nPlease log-in again.');
}
 
// checking if the ad is still alive
$ad_id = limpiar($_GET["ad"]);  
$ad_query = mysql_query("SELECT id FROM ads WHERE id='$ad_id' AND tipo='ads' AND CONVERT(members,UNSIGNED) < CONVERT(plan,UNSIGNED)") or die(mysql_error());
 
if (mysql_num_rows($ad_query)==0) {
    error_message('Too late! Ad expired!');
}
 
// UPDATE AD AND VISIT INFO
// ------------------------
$visit_query = mysql_query("SELECT * FROM ads WHERE user = '$user' AND ident= '$ad_id' AND tipo='visit'") or die(mysql_error());
$actual_time= date(time());
 
 
// checking and registering visits
$ip=getRealIP();
if(mysql_num_rows($visit_query)>0) {
    $visit_row = mysql_fetch_array($visit_query);
    $lastvisit_time=$visit_row['visitime'];
 
    if($actual_time < date($lastvisit_time + (24 * 60 * 60))) {
        error_message('You have to wait 24h before visiting the same sponsor again.');
    }
    
    mysql_query("UPDATE ads SET visitime='$actual_time', ip='$ip' WHERE user='$user' AND ident='$ad_id' AND tipo='visit'") or die(mysql_error());
} else {
    mysql_query("INSERT INTO ads(user,ip,ident,tipo,visitime) VALUES ('$user','$ip','$ad_id','visit','$actual_time')") or die(mysql_error());
}
 
// updating ad status
mysql_query("UPDATE ads SET members = CONVERT(members,UNSIGNED) + 1 WHERE id='$ad_id'") or die(mysql_error());
 
 
// UPDATE USER INFO
// ----------------
$user_row = mysql_fetch_array($user_query);
 
// loading click configuration
foreach(array('click','referalclick','premiumclick','premiumreferalc') as $item) {
    $query = mysql_query("SELECT price FROM config WHERE item='$item' AND howmany='1'") or die(mysql_error());
    $row = mysql_fetch_row($query);
    ${$item} = $row[0];
}
 
// updating money and visits for the user
mysql_query("UPDATE users SET money = money + IF(account='premium',$premiumclick,$click), visits = CONVERT(visits,UNSIGNED) + 1 WHERE username='$user'") or die(mysql_error());
 
// updating money and visits for the referer, if any
$referer=$user_row['referer'];
if ($referer!=''){
        mysql_query("UPDATE users SET money = money + IF(account='premium',$premiumreferalc,$referalclick), referalvisits = CONVERT(referalvisits,UNSIGNED) + 1 WHERE username='$referer'") or die(mysql_error());
}
 
// HOORAY! SUCCESS!
echo <<<EOT
document.getElementById('timer').setAttribute('class','success');
document.getElementById('timer').innerHTML='Success!';
EOT;
destroy();
?>
Heres the code for it any help?
hansford
Forum Commoner
Posts: 91
Joined: Mon May 26, 2008 12:38 am

Re: Need some help please

Post by hansford »

Not enough information. I don't see any onclick event handlers or $_POST checks so where is the code that sets the action. After they click the ad - what page are they taken to and what code is in that page?
Post Reply