furielrage

<?php // Cute way of saying don\'t hack the board if ($mid == $userid) { die(\'Noone (Script Shutdown: mid = userid)\'); } // Let\'s find out exactly who we are donating to $DB->query("SELECT name, id FROM ibf_members WHERE id=\'".$mid."\'"); if ( ! $row = $DB->fetch_row() ) { die(\'User does not exist\'); } $dname = $row[\'name\']; echo($dname); // Print Form ?>! With this code (where it queries the database) it will only select the guest id instead of the member who clicks his/her id. It\'s supposed to select the id of the person that is clicked on and change some data in the sql database, but I don\'t know how to get it to do that. I haven\'t done much of this stuff so a little explanation would help very much This piece of code is suppose to select the member who you clicked on to donate zeny(fake forum money) to in ibf_members. The thing is, I can\'t get it to point to the person that a member chose to donate money to. Here is a shot of my ibf_members table: If it helps, you can login to the forum and check. http://www.ffxii.org/forum user/pass = demo/demo In each user\'s post look at the left with all the rpg stats. You\'ll see \"donate zeny\" link at the bottom. Here is the whole coding for the page: <?php //----------------------------------------- // RPG Shop 1.1 beta for IPB 1.2 //----------------------------------------- // This is part of a pre-made set // of files created to add a shop // and other community related things // to an community bulliten board. // Feel free to edit to your hearts // content, but leave this copyright // at the top. //----------------------------------------- // Created by: Xerin // Edited by: Gogeta // Released for IPB 1.2 by: Gogeta //----------------------------------------- /* Place Your Edits Here */ ?> <html> <head> <title>Donating!</title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> </head> <body bgcolor="#BFC4C9"> <?php global $IN, $root_path, $INFO, $DB, $SKIN, $ADMIN, $std, $MEMBER, $GROUP; // Check to see if the member is loged in if ( ! $ibforums->member[\'id\'] ) { die(\'Please login\'); return; } // Define some nice names for varibles $userid = $ibforums->member[\'id\']; $username = $ibforums->member[\'name\']; $zeny = $ibforums->member[\'zeny\']; if ($z == 1) // We are transfering money { // Begin Hack Check if ($donate < 100) { // Anything below 100, Stop die(\'Please be nice and donate at least 50 zeny.\'); } if ($mid == \'\') { // No Member ID, Stop die(\'No Member Selected\'); } if ($mid == $userid) { // User is attempting to donate to self // Do Not Remove this Check, or everyone can // have unlimited zenies. die(\'No Way Mister Hax0r\'); } if ($mid <= 0) { // User is attempting to donate to a guest // Can\'t allow this can we? die(\'I\'m sure guest would love it, but, no\'); } // End Hack Check // Begin Zeny Checking Amount echo(\'Checking zeny amount.....\'); $negz = ($zeny - $donate); if ($zeny < $negz) { die(\' Sorry, not enough money :(\'); } if ($zeny < $donate) { die(\'You dont have enough money :(\'); } if ($negz < 0) { die(\'omg u h4x\'); } // Done echo(\'done<br>\'); // Query the database and get the member we are donating to $DB->query("SELECT name, id, zeny FROM ibf_members WHERE id=\'".$mid."\'"); if ( ! $row = $DB->fetch_row() ) { die(\'Please Report this Error to your Admin (Script Shutdown)\'); } // Begin updating accounts // Update our members account first echo(\'Updating members accounts.....\'); $ze = "UPDATE `ibf_members` SET `zeny` = \'$negz\' WHERE `id` = \'$userid\' LIMIT 1;"; mysql_query($ze); // Now update the other members account $donate2 = ($row[\'zeny\'] + $donate); $sql = "UPDATE `ibf_members` SET `zeny` = \'$donate2\' WHERE `id` = \'". $row[\'id\'] ."\' LIMIT 1"; mysql_query($sql); echo(\'done<br>\'); // Done // Printing out a Receipt (Graphical Use Only) echo(\'Preparing Receipt........\'); $today = date("F j, Y, g:i a"); echo(\'done<br>\'); echo(\'Printing Your Receipt (Please Save for Future Refernce)<br><br>\'); echo("<span id=\'code\'>"); echo(\'-------------------------------------<br>\'); echo(\' Receipt <br>\'); echo(\'-------------------------------------<br>\'); echo(\'You Transfered \'.$donate.\'z<br>\'); echo($row[\'name\']." Recieved the amount in full.<br>"); echo(\'Your new balence is:\'.$negz.\'<br>\'); echo($row[\'name\']."\'s new balence is:".$donate2."<br>"); echo(\'Thank you for using our service!<br>\'); echo(\'-------------------------------------<br>\'); echo($today.\'<br>\'); echo(\'-------------------------------------<br>\'); echo(\'</span><br><br><br>\'); // Done Showing the Receipt, Save it to Profile echo(\'Saving receipt to database....\'); // Save for Member Giving $re = \'INSERT INTO `ibf_receipt` (`id`, `mid`, `tran`, `z`, `date`) VALUES (\'\', \'\'.$userid.\'\', \'Transfered Zeny to \'.$row[\'name\'].\'\', \'\'.$donate.\'\', \'\'.$today.\'\');\'; mysql_query($re); // Save for Member Taking $re = \'INSERT INTO `ibf_receipt` (`id`, `mid`, `tran`, `z`, `date`) VALUES (\'\', \'\'.$row[\'name\'].\'\', \'Recieve Zeny from \'.$username.\'\', \'\'.$donate.\'\', \'\'.$today.\'\');\'; mysql_query($re); // Done echo(\'done<br>\'); // Thank You Come Again echo(\'Thank You!\'); } else // Print up a box and say please tell us how much you want to transfer { global $IN, $root_path, $INFO, $DB, $SKIN, $ADMIN, $std, $MEMBER, $GROUP; ?> <center> <font face="Verdana" size="2">Hello <?php echo($username); ?>, you have <?php echo $zeny; ?> to donate.<br><br> If you choose to donate, we will be transferring your money to: <?php // Cute way of saying don\'t hack the board if ($mid == $userid) { die(\'Noone (Script Shutdown: mid = userid)\'); } // Let\'s find out exactly who we are donating to $DB->query("SELECT name, id FROM ibf_members WHERE id=\'".$mid."\'"); if ( ! $row = $DB->fetch_row() ) { die(\'User does not exist\'); } $dname = $row[\'name\']; echo($dname); // Print Form ?>! </font> <form name="form1" method="post" action="<?php echo $PHP_SELF; ?>?act=tran&mid=<?php echo($row[\'id\']); ?>&z=1"> <p>Amount You Wish to Donate: <input type="text" name="donate"> </p> <p> <input type="submit" name="Submit" value="Donate!"> </p> </form> </center> <?php } ?>