I'm trying to fix a problem at this item shop
PHP Code:
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title><?PHP echo $serverSettings['titel']; ?></title>
<link href="css/itemshop.css" rel="stylesheet" type="text/css">
</head>
<body class="twoColFixLtHdr" scroll="no">
<div id="container">
<body style="background: transparent url( ) fixed center">
<div id="header">
<div class="boxCoins">
<div class="values">
<span class="heading">COINS: <?php echo $_SESSION['coins'] ?></span>
<span class="coinsValue"></span>
<a href="index_is.php?s=itemshop_coins" class="purchaseButton" title=""> Buy COINS</a>
</span>
</div>
</div>
</div>
<div id="breadcrumb"></div>
<div id="sidebar1">
<ul id="CupyMenu">
<ul id="mainMenu"><br>
<li><a href="index_is.php?s=itemshop">New items</a></li>
<?PHP
$sqlCmd = "SELECT * FROM ".SQL_HP_DB.".is_kategorien ORDER BY id ASC;";
$sqlQry = mysql_query($sqlCmd,$sqlHp);
while($getKats = mysql_fetch_object($sqlQry)) {
echo'
<li><a href="index_is.php?s=itemshop&k='.$getKats->id.'">'.$getKats->titel.'</a></li>';
}
?>
</ul>
</div>
<div id="mainContent">
<div class="dynContent">
<br>
<div class="item">
<br class="clearfloat">
<h3>Info</h3>
<div class="itemColImage"><img src="./img/info_icon.png"></div>
<?PHP
if(isset($_SESSION['user_admin']) && checkInt($_SESSION['user_admin']) && $_SESSION['user_admin']>=0) {
if(isset($_GET['id']) && checkInt($_GET['id'])) {
$sqlCmd="SELECT vnum, preis, attrtype0, attrvalue0, attrtype1, attrvalue1, attrtype2, attrvalue2, attrtype3, attrvalue3, attrtype4, attrvalue4, attrtype5, attrvalue5, attrtype6, attrvalue6, socket0, socket1, socket2 FROM ".SQL_HP_DB.".is_items WHERE id='".$_GET['id']."' LIMIT 1";
$sqlQry=mysql_query($sqlCmd,$sqlHp);
if(mysql_num_rows($sqlQry)==1) {
$getItem=mysql_fetch_object($sqlQry);
$sqlCoins = "SELECT coins FROM account.account WHERE id='".mysql_real_escape_string($_SESSION['user_id'])."' LIMIT 1";
$qryCoins = mysql_query($sqlCoins,$sqlServ);
$getCoins = mysql_fetch_object($qryCoins);
if(($getCoins->coins)>=$getItem->preis) {
$getGroesse = compareItems($getItem->vnum);
$belPos = checkPos($_SESSION['user_id']);
$possiblePos = findPos($belPos['islager'],$getGroesse['groesse']);
if(!empty($possiblePos)) {
$nCoins = $getCoins->coins-$getItem->preis;
$_SESSION['coins'] = $nCoins; //update coins
$sqlCmd="UPDATE account.account SET coins='".mysql_real_escape_string($nCoins)."' WHERE id='".mysql_real_escape_string($_SESSION['user_id'])."' LIMIT 1";
$sqlQry=mysql_query($sqlCmd,$sqlServ);
$sqlLog="INSERT INTO ".SQL_HP_DB.".is_log (account_id,vnum,preis,zeitpunkt) VALUES ('".$_SESSION['user_id']."','".$getItem->vnum."','".$getItem->preis."','".$sqlZeit."')";
$qryLog=mysql_query($sqlLog,$sqlHp);
$sqlItem="INSERT INTO player.item
(owner_id,window,pos,count,vnum,attrtype0, attrvalue0, attrtype1, attrvalue1, attrtype2, attrvalue2, attrtype3, attrvalue3, attrtype4, attrvalue4, attrtype5, attrvalue5, attrtype6, attrvalue6, socket0, socket1, socket2)
VALUES
('".$_SESSION['user_id']."','MALL','".$possiblePos[0]."','1','".$getItem->vnum."','".$getItem->attrtype0."', '".$getItem->attrvalue0."', '".$getItem->attrtype1."', '".$getItem->attrvalue1."', '".$getItem->attrtype2."', '".$getItem->attrvalue2."', '".$getItem->attrtype3."', '".$getItem->attrvalue3."', '".$getItem->attrtype4."', '".$getItem->attrvalue4."', '".$getItem->attrtype5."', '".$getItem->attrvalue5."', '".$getItem->attrtype6."', '".$getItem->attrvalue6."', '".$getItem->socket0."', '".$getItem->socket1."', '".$getItem->socket2."')";
$qryItem=mysql_query($sqlItem,$sqlServ) or die(mysql_error());
echo'<div class="itemColText">The item has been bought successfully, if it's not shown in the item shop storage please contact a GM as soon as possible.</div>';
}
else {
echo'<div class="itemColText">You don't have enough space in store.</div>';
}
}
else {
echo'<div class="itemColText">You don't have enough coins to buy this item. Click <a href="#" title="">here</a> to buy coins.</div>';
}
}
else {
echo'<div class="itemColText">This item does not exist.</div>';
}
}
else {
echo'<div class="itemColText">You have entered an invalid ID.</div>';
}
echo'<div class="itemColPurchase">
<div class="itemPrice">
<b>Back</b><span class="priceValue"><span class="price"><br/></span></span>
</div>
<a href="index_is.php?s=itemshop" title="Back" class="addToCardBack"></a>
</div>';
}
else {
echo'<div class="itemColText">You don't have rights to acces this zone!<br/></div>
<div class="itemColPurchase">
<div class="itemPrice">
<b>Back</b><span class="priceValue"><span class="price"><br/></span></span>
</div>
<a href="index_is.php?s=login_is" title="Back" class="addToCardBack"></a>
</div>';
}
?>
<div class="shadow"> </div>
</div> <div class="endContent"></div>
</div>
</div>
</body>
And here is the page where the items are listed (first page)
PHP Code:
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title><?PHP echo $serverSettings['titel']; ?></title>
<link href="css/itemshop2.css" rel="stylesheet" type="text/css">
</head>
<?PHP
if(isset($_SESSION['user_admin']) && checkInt($_SESSION['user_admin']) && $_SESSION['user_admin']>=0) {
if(isset($_GET['k']) && checkInt($_GET['k'])) {
$sqlCmdS="SELECT * FROM ".SQL_HP_DB.".is_items WHERE kategorie_id='".$_GET['k']."' ORDER BY itemname ASC";
}
else {
$sqlCmdS="SELECT * FROM ".SQL_HP_DB.".is_items ORDER BY itemname ASC";
}
?>
<body class="twoColFixLtHdr" scroll="no">
<div id="container">
<body style="background: transparent no-repeat">
<div id="header">
<div class="boxCoins">
<div class="values">
<span class="heading">COINS: <b><?php echo $_SESSION['coins'] ?></b></span>
<span class="coinsValue"></span>
<a href="index_is.php?s=itemshop_coins" class="purchaseButton" title=""> Buy COINS</a>
</span>
</div>
</div>
</div>
<div id="breadcrumb"></div>
<div id="sidebar1">
<ul id="CupyMenu">
<ul id="mainMenu"><br>
<li><a href="index_is.php?s=itemshop">New items</a></li>
<?PHP
$sqlCmd = "SELECT * FROM ".SQL_HP_DB.".is_kategorien ORDER BY id ASC;";
$sqlQry = mysql_query($sqlCmd,$sqlHp);
while($getKats = mysql_fetch_object($sqlQry)) {
echo'
<li><a href="index_is.php?s=itemshop&k='.$getKats->id.'">'.$getKats->titel.'</a></li>';
}
?>
</ul>
</div>
<div id="mainContent">
<div class="dynContent">
<?PHP
$sqlQry=mysql_query($sqlCmdS,$sqlHp);
while($getItems=mysql_fetch_object($sqlQry)) {
$aktItem = compareItems($getItems->vnum);
$itemStufe = (checkInt($aktItem['stufe'])) ? "+".$aktItem['item'] : ''; ?>
<br>
<div class="item">
<br class="clearfloat">
<h3><?PHP echo $getItems->itemname; ?></h3>
<div class="itemColImage">
<?PHP if(!empty($getItems->bild)) echo'<img src="./img/items/'.$getItems->bild.'""'.$aktItem['item'].'" alt="'.$aktItem['item'].'"/>';?>
</div>
<div class="itemColText">
<?PHP echo $getItems->beschreibung; ?><br/>
</div>
<div class="itemColPurchase">
<div class="itemPrice">
<span class="priceValue"><span class="price"> <b><?PHP echo $getItems->preis; ?> </b>Coins</span>
</div>
<a href="index_is.php?s=is_buy&id=<?PHP echo $getItems->id; ?>" title="Buy" class="addToCard"></a>
</div>
<div class="shadow"> </div>
<?PHP
}
?>
<?PHP
}
else {
echo"<BODY BACKGROUND=\"/img/siteBG2.jpg\">";
echo"<br/><br/><br/><br/><br/><img src=\"/img/icons/uniq.png\">";
echo"<br/><br/><br/><FONT STYLE=\"font-family:arial; font-size:14px; color: #FFFFFF\">Your session has expired, please <a href=\"index_is.php?s=login_is\"><font color=\"#FFFFFF\">login</font></a>.</FONT></center>";
}
?>
</div> <div class="endContent"></div>
</div>
</div>
</body>