<?php
/* Автор localhost
/* Онлайн игра Бойцовский клуб
/*
*/
//фильтруем все переменные
$id = isset($_REQUEST['id']) ? abs(intval($_REQUEST['id'])) : false;
$name = isset($_REQUEST['name']) ? trim($_REQUEST['name']) : '';
$act = isset($_GET['act']) ? trim($_GET['act']) : '';
$udar = isset($_GET['udar']) ? trim($_GET['udar']) : '';
$raund = isset($_GET['raund']) ? trim($_GET['raund']) : '';
//вычисляем есть ли не оконченный бой или нет
function boi()
{
global $user;
$req = mysql_query("SELECT * FROM `game_boi` WHERE `user_id`='" . $user['id'] .
"'");
$boi = mysql_fetch_assoc($req);
}
///////////////////////////////
function check($str)
{
////////////////////////////////////////////////////////////
// Проверка переменных //
////////////////////////////////////////////////////////////
$str = htmlentities(trim($str), ENT_QUOTES, 'UTF-8');
$str = nl2br($str);
$str = strtr($str, array(chr(0) => '', chr(1) => '', chr(2) => '', chr(3) => '',
chr(4) => '', chr(5) => '', chr(6) => '', chr(7) => '', chr(8) => '', chr(9) =>
'', chr(10) => '', chr(11) => '', chr(12) => '', chr(13) => '', chr(14) => '',
chr(15) => '', chr(16) => '', chr(17) => '', chr(18) => '', chr(19) => '', chr(20) =>
'', chr(21) => '', chr(22) => '', chr(23) => '', chr(24) => '', chr(25) => '',
chr(26) => '', chr(27) => '', chr(28) => '', chr(29) => '', chr(30) => '', chr(31) =>
''));
$str = str_replace("\'", "'", $str);
$str = str_replace('\\', "\", $str);
$str = str_replace("|", "I", $str);
$str = str_replace("||", "I", $str);
$str = str_replace("/\\\$/", "$", $str);
$str = mysql_real_escape_string($str);
return $str;
}
?>