<?php
include("config.php");
include("core.php");
header("Cache-Control: no-cache, must-revalidate");
header("Pragma: no-cache");
//header('Content-type: application/vnd.wap.xhtml+xml');
echo "<?xml version=\"1.0\"?>";
echo "<!DOCTYPE html PUBLIC \"-//WAPFORUM//DTD XHTML Mobile 1.0//EN\" \"http://www.wapforum.org/DTD/xhtml-mobile10.dtd\">";
?>
<html xmlns="http://www.w3.org/1999/xhtml">
<?php
$bcon = connectdb();
$sitename = mysql_fetch_array(mysql_query("SELECT value FROM ibwf_settings WHERE name='sitename'"));
$sitename = $sitename[0];
if (!$bcon)
{
echo "<head>";
echo "<title>Error!!!</title>";
echo "<link rel=\"stylesheet\" type=\"text/css\" href=\"../themes/white_medium.css\">";
echo "</head>";
echo "<body>";
echo "<p align=\"center\">";
echo "<img src=\"../images/notok.gif\" alt=\"!\"/><br/>";
echo "<b><strong>Error! Cannot Connect To Database...</strong></b><br/><br/>";
echo "This error happens usually when backing up the database, please be patient...";
echo "</p>";
echo "</body>";
echo "</html>";
exit();
}
$brws = explode("/",$HTTP_USER_AGENT);
$ubr = $brws[0];
$uip = getip();
$action = $_GET["action"];
$sid = $_GET["sid"];
$page = $_GET["page"];
$who = $_GET["who"];
$uid = getuid_sid($sid);
$theme = mysql_fetch_array(mysql_query("SELECT theme FROM ibwf_users WHERE id='".$uid."'"));
$sqlthing = mysql_query("SELECT * FROM ibwf_users WHERE id='$uid'");
$name=(mysql_result($sqlthing,0,"name"));
cleardata();
if(($action != "") && ($action!="terms"))
{
$uid = getuid_sid($sid);
if((islogged($sid)==false)||($uid==0))
{
echo "<head>";
echo "<title>Error!!!</title>";
echo "<link rel=\"stylesheet\" type=\"text/css\" href=\"../themes/white_medium.css\">";
echo "</head>";
echo "<body>";
echo "<p align=\"center\">";
echo "You are not logged in<br/>";
echo "Or Your session has been expired<br/><br/>";
echo "<a href=\"index.php\">Login</a>";
echo "</p>";
echo "</body>";
echo "</html>";
exit();
}
}
//echo isbanned($uid);
if(isbanned($uid))
{
echo "<head>";
echo "<title>Error!!!</title>";
echo "<link rel=\"stylesheet\" type=\"text/css\" href=\"../themes/$theme[0]\">";
echo "</head>";
echo "<body>";
echo "<p align=\"center\">";
echo "<img src=\"../images/notok.gif\" alt=\"x\"/><br/>";
echo "<b>You are Banned</b><br/><br/>";
$banto = mysql_fetch_array(mysql_query("SELECT timeto, pnreas, exid FROM ibwf_penalties WHERE uid='".$uid."' AND penalty='1' OR uid='".$uid."' AND penalty='2'"));
$banres = mysql_fetch_array(mysql_query("SELECT lastpnreas FROM ibwf_users WHERE id='".$uid."'"));
$remain = $banto[0]- time();
$rmsg = gettimemsg($remain);
echo "<b>Time Left: </b>$rmsg<br/>";
$nick = getnick_uid($banto[2]);
echo "<b>By: </b>$nick<br/>";
echo "<b>Reason: </b>$banto[1]";
//echo "<a href=\"index.php\">Login</a>";
echo "</p>";
echo "</body>";
echo "</html>";
exit();
}
$res = mysql_query("UPDATE ibwf_users SET browserm='".$brws4."', ipadd='".$uip."' WHERE id='".getuid_sid($sid)."'");
////////////////////////////////////////MAIN PAGE
if($action=="shop")
{
addvisitor();
$mmsg = htmlspecialchars(getsetmood(getuid_sid($sid)));
addonline(getuid_sid($sid),"Shop ($mmsg)","");
//saveuinfo($sid);
echo "<head>";
echo "<title>Shop</title>";
echo "<link rel=\"stylesheet\" type=\"text/css\" href=\"../themes/$theme[0]\">";
echo "</head>";
echo "<body>";
echo "<p align=\"center\">";
$plusses = mysql_fetch_array(mysql_query("SELECT plusses, name FROM ibwf_users WHERE id='".$uid."'"));
$message2 = Avater;
Echo "$sitename Plusses Shop,<br/>";
echo "You Currently Have $plusses[0] Plusses";
echo "</p>";
echo "<p align=\"center\">";
echo "The Items You Can Buy Are Listed Below:</p>";
echo "<p align=\"center\">";
echo "<p align=\"center\">";
echo "Your Own Profile Avater<br/>";
echo "Cost: 150 Plusses<br/>";
echo "</p>";
echo "<p align=\"center\">";
echo "<form action=\"shop.php?action=peravar&sid=$sid&who=$plusses[1]&whoid=$uid&message=$message\" method=\"post\">";
echo "<b><center>Please describe the pic you would like and the name you'd like on it</center></b>";
echo "<center><input name=\"message\" value=\"\" maxlength=\"200\"/></center>";
echo "<center><input type=\"Submit\" Name=\"Submit\" Value=\"Buy Now\"></center></form>";
echo "</p>";
echo "<p align=\"center\">";
echo "Your Own Personal Smilie<br/>";
echo "Cost: 250 Plusses<br/>";
echo "</p>";
echo "<p align=\"center\">";
echo "<form action=\"shop.php?action=persmile&sid=$sid&who=$plusses[1]&whoid=$uid&message=$message\" method=\"post\">";
echo "<b><center>Please Describe the icon you'd like</center></b>";
echo "<center><input name=\"message\" value=\"\" maxlength=\"200\"/></center>";
echo "<center><input type=\"Submit\" Name=\"Submit\" Value=\"Buy Now\"></center></form>";
echo "</p>";
echo "<p align=\"center\">";
echo "Your Own Public Chatroom<br/>";
echo "Cost: 300 Plusses<br/>";
echo "</p>";
echo "<p align=\"center\">";
echo "<form action=\"shop.php?action=pubchat&sid=$sid&who=$plusses[1]&whoid=$uid&message=$message\" method=\"post\">";
echo "<b><center>What chatroom name would you like</center></b>";
echo "<center><input name=\"message\" value=\"\" maxlength=\"200\"/></center>";
echo "<center><input type=\"Submit\" Name=\"Submit\" Value=\"Buy Now\"></center></form>";
echo "</p>";
echo "<p align=\"center\">";
echo "Your Own Public Forum<br/>";
echo "Cost: 400 Plusses<br/>";
echo "</p>";
echo "<p align=\"center\">";
echo "<form action=\"shop.php?action=pubforum&sid=$sid&who=$plusses[1]&whoid=$uid&message=$message\" method=\"post\">";
echo "<b><center>What forum name would you like</center></b>";
echo "<center><input name=\"message\" value=\"\" maxlength=\"200\"/></center>";
echo "<center><input type=\"Submit\" Name=\"Submit\" Value=\"Buy Now\"></center></form>";
echo "</p>";
/*
*/
echo "<p align=\"center\">";
echo "<a href=\"index.php?action=main&sid=$sid\"><img src=\"../images/home.gif\" alt=\"\"/>Home</a>";
echo "</p>";
echo "</body>";
}
if($action=="peravar")
{
echo "<head>";
echo "<title>Shop</title>";
echo "<link rel=\"stylesheet\" type=\"text/css\" href=\"../themes/$theme[0]\">";
echo "</head>";
echo "<body>";
echo "<p align=\"center\">";
$ownid[0]=24;
$who=$_GET["whoid"];
$name=$_GET["name"];
$whoid=$_GET["who"];
$message = $_POST["message"];
$message2 = $_POST["message2"];
$message3 = "LODGESHOP-AVATAR-$message";
$plusses = mysql_fetch_array(mysql_query("SELECT plusses, name FROM ibwf_users WHERE id='".$who."'"));
if ($plusses[0] < 150){
echo "No cheating, you cant afford an avater";
}
else
{
$remainplus = $plusses[0] - 150;
$plussupdate = mysql_query("UPDATE ibwf_users SET plusses='".$remainplus."' WHERE id='".$who."'");
mysql_query("INSERT INTO ibwf_private3 SET text='".$message3."', byuid='".$uid."', touid='".$ownid[0]."', unread='1', timesent='".time()."'");
echo "Thank You For Choosing To Purchase Your Personal Avater. Your Plusses Have Been Debited and your request sent to the staff for processing.<br/>";
echo "You Now have $remainplus Plusses Remaining<br/></p>";
echo "<p align=\"center\">";
echo "<b>0 </b><a accesskey=\"0\" href=\"index.php?action=main&sid=$sid\"><img src=\"../images/home.gif\" alt=\"\"/>Home</a>";
echo "</p>";
echo "</body>";
}}
else if($action=="persmile")
{
echo "<head>";
echo "<title>Shop</title>";
echo "<link rel=\"stylesheet\" type=\"text/css\" href=\"../themes/$theme[0]\">";
echo "</head>";
echo "<body>";
echo "<p align=\"center\">";
$ownid[0]=24;
$who=$_GET["whoid"];
$whoid=$_GET["who"];
$message = $_POST["message"];
$message3 = "LODGESHOP-SMILIE-$message";
$plusses = mysql_fetch_array(mysql_query("SELECT plusses, name FROM ibwf_users WHERE id='".$who."'"));
if ($plusses[0] < 250){
echo "No cheating, you cant afford a smilie";
}
else
{
$remainplus = $plusses[0] - 250;
$plussupdate = mysql_query("UPDATE ibwf_users SET plusses='".$remainplus."' WHERE id='".$who."'");
mysql_query("INSERT INTO ibwf_private3 SET text='".$message3."', byuid='".$uid."', touid='".$ownid[0]."', unread='1', timesent='".time()."'");
echo "Thank You For Choosing To Purchase Your Personal Smilie. Your Plusses Have Been Debited and your request sent to the staff for processing.<br/>";
echo "You Now have $remainplus Plusses Remaining<br/></p>";
echo "<p align=\"center\">";
echo "<b>0 </b><a accesskey=\"0\" href=\"index.php?action=main&sid=$sid\"><img src=\"../images/home.gif\" alt=\"\"/>Home</a>";
echo "</p>";
echo "</body>";
}}
else if($action=="pubchat")
{
echo "<head>";
echo "<title>Shop</title>";
echo "<link rel=\"stylesheet\" type=\"text/css\" href=\"../themes/$theme[0]\">";
echo "</head>";
echo "<body>";
echo "<p align=\"center\">";
$ownid[0]=24;
$who=$_GET["whoid"];
$whoid=$_GET["who"];
$message = $_POST["message"];
$message3 = "LODGESHOP-CHATROOM-$message";
$plusses = mysql_fetch_array(mysql_query("SELECT plusses, name FROM ibwf_users WHERE id='".$who."'"));
if ($plusses[0] < 300){
echo "No cheating, you cant afford a chatroom";
}
else
{
$remainplus = $plusses[0] - 300;
$plussupdate = mysql_query("UPDATE ibwf_users SET plusses='".$remainplus."' WHERE id='".$who."'");
mysql_query("INSERT INTO ibwf_private3 SET text='".$message3."', byuid='".$uid."', touid='".$ownid[0]."', unread='1', timesent='".time()."'");
echo "Thank You For Choosing To Purchase Your Personal Chatroom. Your Plusses Have Been Debited and your request sent to the staff for processing.<br/>";
echo "You Now have $remainplus Plusses Remaining<br/></p>";
echo "<p align=\"center\">";
echo "<b>0 </b><a accesskey=\"0\" href=\"index.php?action=main&sid=$sid\"><img src=\"../images/home.gif\" alt=\"\"/>Home</a>";
echo "</p>";
echo "</body>";
}}
else if($action=="pubforum")
{
echo "<head>";
echo "<title>Shop</title>";
echo "<link rel=\"stylesheet\" type=\"text/css\" href=\"../themes/$theme[0]\">";
echo "</head>";
echo "<body>";
echo "<p align=\"center\">";
$ownid[0]=24;
$who=$_GET["whoid"];
$whoid=$_GET["who"];
$message = $_POST["message"];
$message3 = "LODGESHOP-FORUM-$message";
$plusses = mysql_fetch_array(mysql_query("SELECT plusses, name FROM ibwf_users WHERE id='".$who."'"));
if ($plusses[0] < 400){
echo "No cheating, you cant afford a forum";
}
else
{
$remainplus = $plusses[0] - 400;
$plussupdate = mysql_query("UPDATE ibwf_users SET plusses='".$remainplus."' WHERE id='".$who."'");
mysql_query("INSERT INTO ibwf_private3 SET text='".$message3."', byuid='".$uid."', touid='".$ownid[0]."', unread='1', timesent='".time()."'");
echo "Thank You For Choosing To Purchase Your Personal Forum. Your Plusses Have Been Debited and your request sent to the staff for processing.<br/>";
echo "You Now have $remainplus Plusses Remaining<br/></p>";
echo "<p align=\"center\">";
echo "<b>0 </b><a accesskey=\"0\" href=\"index.php?action=main&sid=$sid\"><img src=\"../images/home.gif\" alt=\"\"/>Home</a>";
echo "</p>";
echo "</body>";
}}
?>
</html>