modernmafia Posted July 24, 2012 Posted July 24, 2012 (edited) when i buy a keycode( with my credit to test ) i input the code but nothing happen i get no credit gain also the bit at the bottom might be the problem <? session_start(); include_once "includes/db_connect.php"; include_once"includes/functions.php"; logincheck(); $username=$_SESSION['username']; $query=mysql_query("SELECT * FROM users WHERE username='$username'"); $fetch=mysql_fetch_object($query); $query1=mysql_query("SELECT * FROM user_info WHERE username='$username'"); $user=mysql_fetch_object($query1); $creds=strip_tags($_GET['creds']); ?> <html> <head> <title>Game Name ®</title> <script language=JavaScript> <!-- //Disable right click script III- By Renigade ([email protected]) //For full source code, visit http://www.dynamicdrive.com var message=''; /////////////////////////////////// function clickIE() {if (document.all) {(message);return false;}} function clickNS(e) {if (document.layers||(document.getElementById&&!document.all)) { if (e.which==2||e.which==3) {(message);return false;}}} if (document.layers) {document.captureEvents(Event.MOUSEDOWN);document.onmousedown=clickNS;} else{document.onmouseup=clickNS;document.oncontextmenu=clickIE;} document.oncontextmenu=new Function('return false') // --> </script> <link rel="shortcut icon" href="favicon.png"> <link href="style.css" rel="stylesheet" type="text/css"> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <table width="350" border="1" align="center" cellpadding="0" cellspacing="0" bordercolor="" class="table"> <tr><td align=center>Please note when you are <b>CLAIMING</b> credits that the URL <b>MUST</b> be <b>url here</b> thank you!<br><br><font color=red>You Buy Credits At Your Own Risk, We Stand On A Non Refundable Policy!</font> </td></tr></table><br> <table width="350" border="1" align="center" cellpadding="0" cellspacing="0" bordercolor="" class="table"> <tr><td class="header" colspan="5">Buying Credits - Mobile & Home Phone</td> </tr> <tr class="subhead"><td class="tableborder" align="center" ><u>Cost</u></td> <td class="tableborder" align="center" ><u>Amount</u></td> <td class="tableborder" align="center" ><u>Text</u></td> <td width="20%" align="center" class="tableborder" ><u>Claim</u></td> </tr> <tr><td width="14%" align="center" class="tableborder">£1.50</div></td> <td width="14%" align="center" class="tableborder">120</td> <td width="27%" align="center" class="tableborder">GL pay to 87070</td> <td width="20%" align="center" class="tableborder"><a href="?creds=120">Claim!</a></td> </tr> <tr><td width="14%" align="center" class="tableborder">£3.00</div></td> <td width="14%" align="center" class="tableborder">250</td> <td width="27%" align="center" class="tableborder">GL prem to 87070</td> <td width="20%" align="center" class="tableborder"><a href="?creds=250">Claim!</a></td> </tr> <tr><td width="14%" align="center" class="tableborder">£4.50</div></td> <td width="14%" align="center" class="tableborder">420</td> <td width="27%" align="center" class="tableborder">GL token to 87070</td> <td width="20%" align="center" class="tableborder"><a href="?creds=420">Claim!</a></td> </tr> <tr><td width="14%" align="center" class="tableborder">£6.00</div></td> <td width="14%" align="center" class="tableborder">670</td> <td width="27%" align="center" class="tableborder">GL bonus to 87070</td> <td width="20%" align="center" class="tableborder"><a href="?creds=670">Claim!</a></td> </tr> <tr><td width="14%" align="center" class="tableborder">£7.50</div></td> <td width="14%" align="center" class="tableborder">830</td> <td width="27%" align="center" class="tableborder">GL cool to 87070</td> <td width="20%" align="center" class="tableborder"><a href="?creds=830">Claim!</a></td> </tr> <tr><td width="14%" align="center" class="tableborder">£9.00</div></td> <td width="14%" align="center" class="tableborder">900</td> <td width="27%" align="center" class="tableborder">GL shot to 87070</td> <td width="20%" align="center" class="tableborder"><a href="?creds=900">Claim!</a></td> </tr> </table> <? if ($fetch->pban == "0"){ ?> <br> <br> <table width="25%" border="0" align="center" cellpadding="3" cellspacing="1" bordercolor="#000000" class="table"> <tr> <td colspan=2 class="header">Donate by Paypal </center></td> </tr> <tr> <td align="center" ><form action="https://www.paypal.com/cgi-bin/webscr" method="post" target=_blank> <center> <select name=amount class=textinput> <option value=5.00 >£5.00 - 480 Credits</option> <option value=10.00 >£10.00 - 1,200 Credits</option> <option value=15.00 >£15.00 - 1,920 Credits</option> <option value=20.00 >£20.00 - 2,520 Credits</option> <option value=25.00 >£25.50 - 3,300 Credits</option> <option value=30.00 >£30.00 - 4,200 Credits</option> <option value=100.00 >£100.00 - 16,800 Credits</option> </select> <input type="hidden" name="cmd" value="_xclick"> <input type="hidden" name="currency_code" value="GBP"> <input type="hidden" name="business" value="email here"> <input type="hidden" name="item_name" value="Game Name - Donation"> <input type="submit" class="button" border="0" value="Continue" onClick="confirmbuy()" name="submit" alt="Click To Redeem Your Points"> </center> </form></td> </tr> </table><? } ?><br> <?php if ($creds == "120"){ $id = "12640"; } if ($creds == "250"){ $id = "12641"; } if ($creds == "420"){ $id = "12642"; } if ($creds == "670"){ $id = "12643"; } if ($creds == "830"){ $id = "12644"; } if ($creds == "900"){ $id = "12645"; } if ($creds != ""){ ?> <form name="glform" method="post" action="http://www.glpayment.co.uk/glpay0205/Auth_Standard.php"> <table align="center" class="table" width="20%" cellpadding="3" cellspacing="1" border="0"> <tr><td class="header">Claim Credits - Keycodes</td></tr> <tr><td align="center" class="tableborder" > Keycode: <input type="text" class="textinput" name="number"><br><br> <input type="submit" class="button" value="Submit Keycode"> <input type="hidden" name="ddi_id" value="<? echo "$id"; ?>"> </td></tr> </table> </form> <br><br> <? } if ($_GET[payment] != ""){ if($_GET[payment] == "true" && $_POST[price] && $_POST[Password] == "BLANK" && $_POST[CovNum]) { $query = mysql_query("SELECT keycode FROM payments WHERE keycode='$_POST[CovNum]'"); $rows = mysql_num_rows($query); if($rows == 0) { if($_POST[price] == "1.50"){ $credgain = "120"; } elseif($_POST[price] == "3.00"){ $credgain = "250"; } elseif($_POST[price] == "4.50"){ $credgain = "420"; } elseif($_POST[price] == "6.00"){ $credgain = "670"; } elseif($_POST[price] == "7.50"){ $credgain = "830"; } elseif($_POST[price] == "9.00"){ $credgain = "900"; } mysql_query("UPDATE users SET points=points+$credgain WHERE username='$username'"); mysql_query("UPDATE users SET donate='Yes' WHERE username='$username'"); mysql_query("INSERT INTO payments SET username='$username', keycode='$_POST[CovNum]', date=NOW(''), creds='$credgain'"); echo "<div class=success>Thanks for donating $credgain credits have been added to your account $username<br><br>"; }else{ echo "<center><font color=red><b>The keycode entered has been used before.<br><br>"; } }else{ echo "<center><font color=red><b>This keycode has been used before or is invalid.<br><br>"; }} ?> <br> Does this look right also if($_GET[payment] == "true" && $_POST[price] && $_POST[Password] == "i think my pass here" && $_POST[CovNum]) { $query = mysql_query("SELECT keycode FROM payments WHERE keycode='$_POST[CovNum]'"); $rows = mysql_num_rows($query); where it says my pass here does that have to me my msql password or my glpay one Edited July 24, 2012 by Dave Macaulay Quote
LearningCoder Posted July 24, 2012 Posted July 24, 2012 You need the other page and i have it, which adds it to your account. Quote
Djkanna Posted July 24, 2012 Posted July 24, 2012 Just out of curiousity, is the password that you've left within the code have any meaning? If so, better change it (or at least remove it from the code). Quote
Dave Posted July 24, 2012 Posted July 24, 2012 I edited the password in your code out, just cause that's never a great idea to post something like that. Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.