1:
2:
3:
4:
5:
6:
7:
8:
9:
10:
11:
12:
13:
14:
15:
16:
17:
18:
19:
20:
21:
22:
23:
24:
25:
26:
27:
28:
29:
30:
31:
|
if(isset($_REQUEST['action'])) $action=strip_tags($_REQUEST['action']);
else $action="";
if($action == "vote") {
$gid = intval($_REQUEST['gid']);
$sql = 'SELECT * FROM phpbb_votes WHERE `gid` = ' . (int) $gid . ' ';
$result = $db->sql_query($sql);
$voteauslesen = $db->sql_fetchrow($result);
$sql = 'SELECT * FROM phpbb_games WHERE `game_id` = ' . (int) $gid . ' ';
$result = $db->sql_query($sql);
$row1 = $db->sql_fetchrow($result);
$gid2 = $row1['game_id'];
$sql = 'SELECT * FROM phpbb_users WHERE `user_id` = ' . (int) $user->data['user_id'] . ' ';
$result = $db->sql_query($sql);
$row = $db->sql_fetchrow($result);
$username = $row['username'];
if(isset($_POST['send']))
{
$hour = time();
$sql = "INSERT INTO phpbb_votes (gid,userid,username,vote,votetime) VALUES ('$gid2','".(int)$user->data['user_id']."','$username','1','".(int)$hour."') ";
$db->sql_query($sql);
|