0.8.1a

[gfh.git] / cremark.php

<?php include ("config.php");
function auth($userid, $password)
{
        $sql = "SELECT username FROM users WHERE username='$userid' AND userpass='$password'";
        $result = mysql_query($sql);
        if (!mysql_num_rows($result))
                return 0;
        else
        {
                $query_data = mysql_fetch_row($result);
                return $query_data[0];
        }
}
if (!$user)
{
        echo "Invalid userID.";
        exit;
}
$username = auth($uname, $pword);
if (!$username)
{
        echo "You are not <a href=login.php>Logged In</a>.";
        exit;
}
$sql = "SELECT * FROM users WHERE username='$uname'";
$result = mysql_query($sql);
$myrow = mysql_fetch_array($result);
if ($myrow["level"] <= 49)
{
        echo "You cannot be here.";
        exit;
}
$sql = "SELECT * FROM users WHERE userid='$user'";
$result = mysql_query($sql);
$myrow = mysql_fetch_array($result);
$toptit = "Generated Message for ".$myrow["username"]." userID ".$myrow["userid"];
$usename = $myrow["username"];
$posttime = time();
$datedate = date("Y-n-j H:i");
$sql = "INSERT INTO topics (topicname,boardnum,topicby,timesec,active,postdate) VALUES ('$toptit','15','$usename','$posttime','1','$datedate')";
$result = mysql_query($sql);
$topicid = mysql_insert_id($db);
$bodbod = "<b>Username: </b>".$myrow["username"];
$sql = "INSERT INTO messages (topic,messby,messsec,messbody,mesboard,theorder,postdate) VALUES ('$topicid','$usename','$posttime','$bodbod','15','1','$datedate')";
$result = mysql_query($sql);
$message = mysql_insert_id($db);
$reason2 = "Generated Message";
$sql = "INSERT INTO marked (reason,markwho,message,topic,board,active,markedtimes,reason2) VALUES ('4','$usename','$message','$topicid','15','1','1','$reason2')";
$result = mysql_query($sql);
echo "Message Generated.  Please check the <a href=modme.php>Mod queue</a>.";
exit;
?>