AlabamaHit

Re: Need Help put this in your header....   $sql = ("THERE is NO such THING");   If it was so simple to have one thing secure your site...then you would not need to post it would be in the code already cause it was so simple.. To secure your codes...LEARN TO CODE.....at least some, lol... Now.. www.php.net Check out sprintf and mysql real strips... And yes its VERY confussing....VERY VERY...if it was easy everyone would do it....no wait seems they are, lol.. Just joking.... Seriously though check the link and keep lookin in the site like you been...LEARN WHAT YOUR DOING...dont just see what to put somewhere.. That is why your confussed.. You want to know what to type and where to put it. If you learn WHAT your doing, and WHY your doing it, you will understand.. Dont take this the wrong way..its not ment in disrespect or to bash ya...

Re: Add Jail Time to Crimes! from what i see....its in the Database Not in that page...   mysql_query("UPDATE `users` SET `jail` = '$r[crimeJAILTIME]', `jail_reason` = '$r[crimeJREASON]' WHERE `userid` = '$userid'",$c);   This is the part that is your jail Time... `jail` = '$r[crimeJAILTIME]'   Now if you can do any type of coding you know this... That it is updating the uses jail time to whatever "$r[crimeJAILTIME]" is... Now look in your code and find that.... "$r[crimeJAILTIME]"   $q=mysql_query("SELECT * FROM crimes WHERE crimeID={$_GET['c']}",$c); $r=mysql_fetch_array($q);   tahts what $r is calling...SO its in your Database NOT this page.......Take what i ahve said and Learn from it..If you LOOK at the code you will find what your looking for...VERY simple.

Re: Mixing strings and intergers in mysql strip... Thank You Nyna.

Re: learning mysql_real_escape_string just need to verify. Ok, so if its hard coded you dont need to use the @intval... If its a POST or GET is where i would need to use the @intval Is that basically what your saying?

This is just a question I was wondering...would this be right? Say a query like this.. mysql_query("UPDATE users SET money=money+500, crystals=crystals+500 WHERE username=$username AND userid=$userid");   This is not a real query.....I'm just using as an example of mixing...wonder if this is right...   $mix = sprintf("UPDATE users SET money = money + %d , crystals = crystals + %d WHERE ((username = %s) AND (userid = %d)) ", @intval(500), @intval(500), mysql_real_escape_string($username), @intval($userid)); mysql_query($mix);   Would that be the right way? Also question about it...in the username Does the %s need to be '%s'....just wondering. If you ' around a string or not?

Re: Something wierd i found messing around need help with. Well i complared it...and basically this page is just a modified page of it....but if you mean moving the   print " Open a crystal reserve account today, just 250 Crystals! [url='crybank.php?buy']> Yes, sign me up![/url]";   To the beginnig... I have tried that before posting here. No luck with it...I thought the same.... Its pretty wierd aint it, lol   I found the problem... at the top of the page..i added $_GET['buy'] = abs((int) $_GET['buy']); That was making the page think i was already in "Buy" mode i guess... I removed that and works now.. Just thought i would post this to let eveyone know.

Re: Im trying to do make v1... dont get damn rude..you will not get help..... If you dont understand you DONT need a game.. LEARN TO CODE... Your asking for help. I be DAMN if i just tell people how to fix crap.. I hate when someoen tells me HOW to fix something i ask about... I want to know WHY..so i can learn. you dont want to learn shit you just want stuff for free.......codes also maybe....screw you man..i cant stand rude people..... that guy is trying to help you and Point you in the right direction....Nothign more...

check this code out..... if($ir['crybank'] > -1) { switch($_GET['action']) { case "deposit": deposit(); break; case "withdraw": withdraw(); break; default: index(); break; } } else { if(isset($_GET['buy'])) { if($ir['crystals'] >= 250) { print " Congratulations, you bought a crystal reserve account for 250 crystals! [url='crybank.php']Start using my account[/url]"; $open = sprintf("UPDATE users SET crystals = crystals - %d, crybank = %d WHERE userid = %d ", @intval(250), @intval(0), @intval($userid)); mysql_query($open); } else { print " You do not have enough crystals to open an account. [url='explore.php']Back to town...[/url]"; } } else { print " Open a crystal reserve account today, just 250 Crystals! [url='crybank.php?buy']> Yes, sign me up![/url]"; } } It looks like it should work. But what it is doing is. Even if you have No account.....it is trying to run that query...and taking me and saying i dont have enough crystals...(This is because I dont have enough out...) This is what I'm seeing....and in the Database my crybank is set to -1. I should be seeing it asking to buy it... NOTE: Also If you have enough crystals out.....It shows the right page...It ask if you want to buy it....then.....if youjust refresh the page it takes the crystals and takes you in the bank.......you dont have to click the link....

Re: learning mysql_real_escape_string just need to verify. what about something like this?   $db->query("UPDATE users SET crystals=crystals-250,cbank=0 WHERE userid=$userid");   Would this be best way? $open = sprintf("UPDATE users SET crystals = crystals - %d , cbank = %d WHERE userid = %d ", @intval(250), @intval(0), @intval($userid)); $mysql_query($open);   Or this?   $open = sprintf("UPDATE users SET crystals = crystals - %d , cbank = %d WHERE ((crystals >= %d) AND (userid = %d) ", @intval(250), @intval(0), @intval(250), @intval($userid)); $mysql_query($open);   I used "%d" cause its a signed decimal....Is that the better way? or unsigned? with %u for numbers? Also.. its %s for strings (Words) right?

Re: right hand side main menu learn html its basic....your putting the endpage to early

Re: Add Jail Time to Crimes! jail time is added in the staff panel.

Re: Why? that could be true....but personally there is no lag on my game from view users....staff or non staff...but even if its from the staff...He should defently clean up his codes...

Re: plz review my game damn..............this is the 5 Millionth game with same template.............jesus guys...get creative....

Re: [REVIEW] Thug Mayhem - Please Review!!! This game is way to Plain even stilll....its been OVER 120 days since last post and still PLAIN!!......oh yeah...the Ad at the Top of page...Nothing against throwing an ad on there....but make is small and hidden more...at the top like a banner..come on...players dont want to see that crap....

Re: Streets of Chaos when i'm reviewing games. if i find something i dont like i go no farther.....So here is where i stopped....Your Register.. Don't match your Login in at all........They color sceme is completely different...Now...i can bear this but... what i can NOT bear is Links to something that is NOT THERE!! if you dont have those pages. take it off....dont make peopel think that there is somethign there that aint...thats annoying... ....

Re: [REVIEW] Thug Ways - Please review!! Thanks...the reason its on .info was got it on a deal...with my orginal host. it came with package....and games been going so long didnt want to change it...Though i guess i could get a .com or .net and just redirect the .info to it.....

Re: New Host needed Urgently hostmonster.com i know some people dont like them...but they have great speeds and great support...you can talk to them live chat or by phone.. very easy...Supports ALL crons..never had an issue with them

Re: [mccode v1] Mccodes V1 Jail Better secure that cron or everyone in the world is going to be running those crons......

Re: Why? thats exactly what he means....on view user for example there is no need for userstats...so dont query that... Find out what you need and only call it....

Re: Copyright issues - torncity LMAO they have to prove it..... They aint going to do that either....

Re: McCodes v2.0.2 attack exp. is NOT in the attack.php thats why you can not find it.. its in the 4 pages from the fight... off top of my head.. attacklost.php attackbeat.php attackwon.php attackmug.php I think..but that is going to get you in the right direction.

Re: Tutorial: v2 - v1 Conversion LMAO you have no idea what he is saying.... Does your DB match that Info on the page.... is there gft_views in the table gangforums_topics??? Tell the error...dont just say error.. crap the error could be..   Internet Explore could not connect to website   for as far as we know, lol...

Re: MCCODESV2 io have an error i agree they should support it...but IF they did...this site wouldnt be so popular now would it?............ Honestly.......

Re: [REVIEW] Corrupted-Criminalz - Please review!! Warning: mysql_query(): supplied argument is not a valid MySQL-Link resource in /home/msanders/public_html/register.php on line 43 Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource in /home/msanders/public_html/register.php on line 45 Thank You For Registering! Please Login. > Login   first thinkg i seen...registering....we.. could not see it it was in black font....i had to highlight the page to see anythying after registering.... first mail someone gets is double posted..... color hurts eyes.

Re: [REVIEW] Hitman-Country - Please review!! There is alot of ads on the log in page...... None of the links work on the game....(Long in page that is..Like TOS, Screen shots..don't work) Using a template i seen on here..that is probalry going to get alot of games with it...also when you register the text is not in the template its inbetween them.. Log in dont match the register....But game matches it... Also make the game not as wide...i have to scroll Right to see the right side of the page..(I use a desktop and dont have a big widescreen..Just like most that are going to play...) so you should make it smaller.. Give your game a Title...the tab dont say game name it says. the website link. Your left side menu is messed up...Personal is off to the side toward the middle of screen... Now with all that said... it can just be my browser...So i will tell you what im running.. Im using Linux....And running Firefox....So Linux Firefox 3 the game is kinda out of shape...but thats not sayin that it might be perfect in firefxo for winblows and IE