The Soda Pop
"; $id=cyr(htmlspecialchars(stripslashes(trim($id)))); $pass=cyr(htmlspecialchars(stripslashes(trim($pass)))); $dbid=cyr(htmlspecialchars(stripslashes(trim($_GET[dbid])))); if(!empty($id)) { $q = mysql_query("select id,login,pass from users where id='".$id."';"); } else { die ($lang['empty_login']."

"); } if(!empty($dbid)) { $qdb = mysql_query("select id,login,pass from users where id='".$dbid."';"); } else { die ($lang['select_user_false']."

"); } $data = mysql_fetch_array($q); $id=$data['id']; $login=$data['login']; $dbdata = mysql_fetch_array($qdb); $dbid=$dbdata['id']; $dblogin=$dbdata['login']; $dbpass=$dbdata['pass']; if($pass!=$data['pass']) { die ($lang['empty_login']."

"); } mysql_query("update users set last='".time()."',city='0' where id='".$id."';"); switch ($mode) { case "yes": mysql_query("DELETE FROM messagi WHERE kto='".$dbid."' and komu=".$id." limit 1;"); $messaga=cyr(htmlspecialchars(stripslashes(trim($messaga)))); $messaga="$login ".$lang['bands_user_agree']."

[".$lang['ok']."]"; mysql_query("insert into messagi values(0,'$id','$dbid','$messaga');"); print $lang['bands_mes_transfered_to_boss']."
"; break; case "no": mysql_query("DELETE FROM messagi WHERE kto='".$dbid."' and komu=".$id." limit 1;"); $messaga="$login ".$lang['bands_user_disagree']."
[".$lang['ok']."]"; mysql_query("insert into messagi values(0,'$id','$dbid','$messaga');"); print $lang['bands_offer_rejected']."
"; break; default: print $lang['mes_empty']."

"; exit; break; } print "---
>".$lang['back']."
"; print ">>".$lang['menu']."
"; mysql_close(); include "./../includes/footer.php"; ?>