Magictallguy

Ran a test and ... holy ****ake mushrooms! There are so many insecurities in that site, I could have a field day!

I don't.. Kung Fu all the way!

S'all good, happy to help :)

Add $needs = ''; above the foreach() loop

Confirmed. He's one hell of a designer :)

Big bewbies!

That looks like my chat's code...

The little code snippet you posted showed nothing for sanitation or validation. I was going, purely, from your post. All I did was validate, then sanitize, then validate again - which, yes, it does look like a lot of work, but try and exploit that code ;)

Wish I'd thought of that when I wrote my success/warning/info/error functions haha

False, you can use his method - though I'd recommend a rather large update first. if(!array_key_exists('xferu', $_POST)) { echo 'The form hasn\'t been submitted'; exit($h->endpage()); } $_POST['xferu'] = isset($_POST['xferu']) && ctype_digit($_POST['xferu']) ? $_POST['xferu'] : null; if(empty($_POST['xferu'])) { echo 'You didn\'t enter a valid player ID'; exit($h->endpage()); } $select = $db->query('SELECT `username` FROM `users` WHERE `userid` = '.$_POST['xferu']); if(!$db->num_rows($select)) { echo 'That player doesn\'t exist'; exit($h->endpage()); } // Continue here.. make sure to validate input for amount too!

Question; does this effect already existing posts?

A DMCA for use my mod that I've allowed? Get a grip of yourself, there's plenty of hard feelings Ibraheem..   Yes.   The way I've done it uses its own table with only 1 addition to the (grpg)users table. The reason I've not routed it through an access file is due to a security flaw that would arise by using encrypted URLs - you simply can't beat hard-coded methods when it comes to things like that.

Whereas, I'm quite against it. Studies have shown the drawbacks (no pun intended) in prolonged use. I have previously smoked it, stopped and made a promise to my other half never to touch it again. With that being said, it depends on "which" weed you get your hands on. If you get the stuff that's been sprayed with THC, then it's not weed. If you get the stuff that's been laced with f*ck knows what, then it's not weed. <-- that's the stuff that has been used in the studies. If you get the stuff that has had no extra "modification" done to it, then the choice is yours. Smoke it, or don't. Just let it be known that I'm against it :P

Don't worry about it, I can add you to the queue :)

It is indeed. There's a slight delay, due to all the IRL stuff going on, but you will get what you ask for :)

Send me a PM, I'll sort out your server for you. I have around 6 years of experience as a sysadmin and have fairly extensive knowledge of most *NIX systems. I don't claim to know everything, I'm not that good, but I can fix most problems :)

  $selectUsers = $db->query("SELECT `userid` FROM `users` WHERE `gang` = ".$gangdata['gangID']); while($row = $db->fetch_row($selectUsers)) $db->query("DELETE FROM `inventory` WHERE `inv_borrowed` = 'yes' AND `inv_userid` = ".$row['userid']); $db->query("UPDATE `users` SET `equip_primary` = IF(`equip_primary_loaned` = 'yes', 0, `equip_primary`), `equip_secondary` = IF(`equip_secondary_loaned` = 'yes', 0, `equip_secondary`), `equip_armor` = IF(`equip_armor_loaned` = 'yes', 0, `equip_armor`) WHERE `gang` = ".$gangdata['gangID']);

That requires an update to the attack.php (by default). Find the place where the DELETE FROM `gangs` [...] query is, then add below: $db->query("DELETE FROM `gang_armoury` WHERE `gang` = ".$gangdata['gangID']); Replace $gangdata['gangID'] with whatever the gang ID variable is

I like that idea.   I'll need better instruction than that. You haven't given me enough information on what you want   And you will!

Topic died.. REVIVAL! This is still available. I can also code something up for gRPG if needed. Just tell me what you want and which platform you want it for :)

I saw my name O.o

Naturally, I use MySQL Events. Unfortunately, not every host allows you to do this by default. Enabling the event scheduler can be quite the arse if your host doesn't like it. However, as I host my own sites, I don't need to worry about that and will continue to use MySQL Events until something better is written to replace them

Without first understanding what those variables are used for, simply changing += to = would not be a good idea. What you should've done *above* those three lines was add this: $stat1 = 0; $stat2 = 0; $stat3 = 0;   What the code was doing is this: It was trying to add on to a non-set variable

You could also edit docrime.php to include more attributes. On a game I use to work on, I edited it to include the player's stats - went down a treat

Alright guys, enough now. Back on topic: Anyone willing to help Ben do the trivial content generation on his game that would otherwise bore the s**t out of me? (Means, I'm not)