uid)) != '1') die("Hacking attemp!");
if (@$_POST['submit'] == "Send")
{
unset ($_SESSION['m_message']); unset ($_SESSION['m_subject']); unset ($_SESSION['m_color']);
if (!$_POST['message']){die("You have to enter message");}
if (!$_POST['subject']){die("You have to enter subject");}
if (!$_POST['color']){$_SESSION['m_color'] = "black";}
$_SESSION['m_subject'] = $_POST['subject'];
if (!$_SESSION['m_color']){$_SESSION['m_color'] = $_POST['color'];}
$_SESSION['m_message'] = $_POST['message'];
$NextStep = true;
}
if (@isset($_POST['confirm']))
{
if ($_POST['confirm'] == 'Yes') $NextStep2 = true;
if ($_POST['confirm'] == 'No' ) $Interupt = true;
}
$max_per_pass = 1000;
if (isset($_GET['send']) && isset($_GET['from']))
{
$_SESSION['m_message'] = preg_replace("/\[img\]([a-z0-9\_\.\:\/\-]*)\[\/img\]/i","
", $_SESSION['m_message']);
$_SESSION['m_message'] = preg_replace("/\[url\]([a-z0-9\_\.\:\/\-]*)\[\/url\]/i", "$1", $_SESSION['m_message']);
$_SESSION['m_message'] = preg_replace("/\[url\=([a-z0-9\_\.\:\/\-]*)\]([a-z0-9\_\.\:\/\-]*)\[\/url\]/i", "$2", $_SESSION['m_message']);
$_SESSION['m_message'] = preg_replace("/\*u([0-9]*)(left|right)\*/i", "
", $_SESSION['m_message']);
$_SESSION['m_message'] = "[message]".$_SESSION['m_message']."[/message]";
$_SESSION['m_color'] = $database->escape($_SESSION['m_color']);
$_SESSION['m_subject'] = $database->escape($_SESSION['m_subject']);
$_SESSION['m_message'] = $database->escape($_SESSION['m_message']);
$users_count = mysqli_fetch_assoc(mysqli_query($GLOBALS['link'],"SELECT count(*) as count FROM ".TB_PREFIX."users WHERE id != 0"));
$users_count = $users_count['count'];
if ($_GET['from'] + $max_per_pass <= $users_count) $plus = $max_per_pass; else $plus = $users_count - $_GET['from'];
$sql = "INSERT INTO ".TB_PREFIX."mdata (`target`, `owner`, `topic`, `message`, `viewed`, `archived`, `send`, `time`,`deltarget`,`delowner`,`alliance`,`player`,`coor`,`report`) VALUES ";
for($i = $_GET['from']; $i < ($_GET['from'] + $plus) ; $i++) {
if($i > 5){
if ($_SESSION['m_color'])
{
$sql .= "($i, 1, '{$_SESSION['m_subject']}', \"{$_SESSION['m_message']}\", 0, 0, 0, ".time().",0,0,0,0,0,0),";
}
else
{
$sql .= "($i, 1, '{$_SESSION['m_subject']}', \"{$_SESSION['m_message']}\", 0, 0, 0, ".time().",0,0,0,0,0,0),";
}
}
}
if($i > 5){
if ($_SESSION['m_color'])
{
$sql .= "($i, 1, '{$_SESSION['m_subject']}', \"{$_SESSION['m_message']}\", 0, 0, 0, ".time().",0,0,0,0,0,0)";
}
else
{
$sql .= "($i, 0, '{$_SESSION['m_subject']}', \"{$_SESSION['m_message']}\", 0, 0, 0, ".time().",0,0,0,0,0,0),";
}
}
mysqli_query($GLOBALS['link'],$sql);
if (($users_count - $_GET['from']) > $max_per_pass) {
header("Location: massmessage.php?send=true&from=",$_GET['from'] + $max_per_pass);
exit;
} else $done = true;
}
?>
<?php echo SERVER_NAME ?> - Mass Message
gpack == null || GP_ENABLE == false) {
echo "
";
} else {
echo "
";
}
?>
gpack == null || GP_ENABLE == false) {
echo "
";
} else {
echo "
";
}
?>
