We have high-speed servers in multiple regions to ensure strong network speeds and no pressure to refresh.
hey-hey
<?php include("./includes/common.php"); $act=isset($_GET['act'])?daddslashes($_GET['act']):null; $url=daddslashes($_GET['url']); $authcode=daddslashes($_GET['authcode']); @header('Content-Type: application/json; charset=UTF-8'); if($act=='clone') { $key=daddslashes($_GET['key']); if(!$key)exit('{"code":-5,"msg":"Make sure each item cannot be empty"}'); if($key!=md5($password_hash.md5(SYS_KEY).$conf['apikey']))exit('{"code":-4,"msg":"clone Key error"}'); $rs=$DB->query("SELECT * FROM shua_class order by cid asc"); $class=array(); while($res = $DB->fetch($rs)){ $class[]=$res; } $rs=$DB->query("SELECT * FROM shua_tools order by tid asc"); $tools=array(); while($res = $DB->fetch($rs)){ $tools[]=$res; } $rs=$DB->query("SELECT id,url,type FROM shua_shequ order by id asc"); $shequ=array(); while($res = $DB->fetch($rs)){ $shequ[]=$res; } $rs=$DB->query("SELECT * FROM shua_price order by id asc"); $price=array(); while($res = $DB->fetch($rs)){ $price[]=$res; } $result=array("code"=>1,"class"=>$class,"tools"=>$tools,"shequ"=>$shequ,"price"= >$price); } elseif($act=='tools') { $key=daddslashes($_GET['key']); $limit=isset($_GET['limit'])?intval($_GET['limit']):50; if(!$key)exit('{"code":-5,"msg":"Make sure each item cannot be empty"}'); if($key!=$conf['apikey'])exit('{"code":-4,"msg":"API docking key error, please set the key in the background "}'); $rs=$DB->query("SELECT * FROM shua_tools WHERE active=1 order by tid asc limit $limit"); while($res = $DB->fetch($rs)){ $data[]=array('tid'=>$res['tid'],'cid'=>$res['cid'],'sort'=>$res ['sort'],'name'=>$res['name'],'price'=>$res['price']); } exit(json_encode($data)); } elseif($act=='orders') { $tid=intval($_GET['tid']); $key=daddslashes($_GET['key']); $limit=isset($_GET['limit'])?intval($_GET['limit']):50; $format=isset($_GET['format'])?daddslashes($_GET['format']):'json'; if(!$key)exit('{"code":-5,"msg":"Make sure each item cannot be empty"}'); if($key!=$conf['apikey'])exit('{"code":-4,"msg":"API docking key error, please set the key in the background "}'); if($tid){ $tool=$DB->get_row("SELECT * FROM shua_tools WHERE tid='$tid' and active=1 limit 1"); if(!$tool)exit('{"code":-5,"msg":"Product ID does not exist"}'); $sqls=" and tid='$tid'"; $value=$tool['value']>0?$tool['value']:1; } $rs=$DB->query("SELECT * FROM shua_orders WHERE status=0{$sqls} order by id asc limit $limit"); while($res = $DB->fetch($rs)){ $data[]=array('id'=>$res['id'],'tid'=>$res['tid'],'input'=>$res ['input'],'input2'=>$res['input2'],'input3'=>$res['input3'],'input4'=>$ res['input4'],'input5'=>$res['input5'],'value'=>$res['value'],'status'=> $res['status']); if($_GET['sign']==1)$DB->query("update `shua_orders` set status=1 where `id`='{$res['id']}\ '"); } if($format=='text'){ $txt = ''; foreach($data as $row){ $txt .= $row['input'] . ($row['input2']?'----'.$row['input2']:null) . ($row ['input3']?'----'.$row['input3']:null) . ($row['input4']?'----'. $row['input4']:null) . ($row['input5']?'----'.$row['input5']:null) . '-- --' . $row['value'] . "\r\\ "; } exit($txt); }else{ exit(json_encode($data)); } } elseif($act=='change') { $id=intval($_GET['id']); $key=daddslashes($_GET['key']); $status=intval($_GET['zt']); //1: Completed, 2: Processing, 3: Exception, 4: Pending if(!$id || !$key)exit('{"code":-5,"msg":"Make sure that each item cannot be empty"}'); if($key!=$conf['apikey'])exit('{"code":-4,"msg":"API docking key error, please set the key in the background "}'); $row=$DB->get_row("SELECT * FROM shua_orders WHERE id='$id' limit 1"); if($id=$row['id']) { $sql="update `shua_orders` set `status`='$status' where `id`='{$id}' limit 1"; if($DB->query($sql)){ $result=array("code"=>1,"msg"=>"Modification successful","id"=>$id); }else{ $result=array("code"=>-2,"msg"=>"Modification failed","id"=>$id); } } else { $result=array("code"=>-5,"msg"=>"Order ID does not exist"); } } elseif($act == 'goodslist') { $result['code'] = 0; if(isset($_POST['user']) & amp; & amp; isset($_POST['pass'])){ $user = trim(daddslashes($_POST['user'])); $pass = trim(daddslashes($_POST['pass'])); $userrow = $DB->get_row("SELECT * FROM `shua_site` WHERE `user` = '{$user}' LIMIT 1"); if ($userrow & amp; & amp; $userrow['user'] == $user & amp; & amp; $userrow['pwd'] == $pass & amp; & amp; $userrow ['status'] == 1) { $islogin2 = 1; $price_obj = new Price($userrow['zid'],$userrow); } elseif ($userrow & amp; & amp; $userrow['status'] == 0) { exit('{"code":-1,"message":"This account has been banned"}'); } else { exit('{"code":-1,"message":"The username or password is incorrect"}'); } } $rs=$DB->query("SELECT * FROM `shua_tools` WHERE `active` = 1 ORDER BY `cid` ASC,`sort` ASC"); while($res = $DB->fetch($rs)){ if($islogin2 == 1){ $price_obj->setToolInfo($res['tid'],$res); $price = $price_obj->getToolPrice($res['tid']); }else{ $price = 0; } $data[] = array('tid' => $res['tid'] , 'cid' => $res['cid'] , 'name' => $res ['name'] , 'shopimg' => $res['shopimg'] , 'close' => $res['close'] , 'price' => $ price); } $result['data'] = $data; exit(json_encode($result)); } elseif($act == 'goodsdetails') { $result['code'] = 0; $tid = intval($_POST['tid']); if(!$tid)exit('{"code":-1,"message":"Product ID cannot be empty"}'); if(isset($_POST['user']) & amp; & amp; isset($_POST['pass'])){ $user = trim(daddslashes($_POST['user'])); $pass = trim(daddslashes($_POST['pass'])); $userrow = $DB->get_row("SELECT * FROM `shua_site` WHERE `user` = '{$user}' LIMIT 1"); if ($userrow & amp; & amp; $userrow['user'] == $user & amp; & amp; $userrow['pwd'] == $pass & amp; & amp; $userrow ['status'] == 1) { $islogin2 = 1; $price_obj = new Price($userrow['zid'],$userrow); } elseif ($userrow & amp; & amp; $userrow['status'] == 0) { exit('{"code":-1,"message":"This account has been banned"}'); } else { exit('{"code":-1,"message":"The username or password is incorrect"}'); } } $tool = $DB->get_row("SELECT * FROM `shua_tools` WHERE `tid` = {$tid} LIMIT 1"); if($islogin2 == 1){ $price_obj->setToolInfo($tid, $tool); $price = $price_obj->getToolPrice($tid); }else{ $price = 0; } if($res['is_curl']==4){ $isfaka = 1; }else{ $isfaka = 0; } $data = array('tid'=>$tool['tid'],'cid'=>$tool['cid'],'sort'=>$tool[\ 'sort'],'name'=>$tool['name'],'value'=>$tool['value'],'price'=>$price, 'prices'=>$tool['prices'],'input'=>$tool['input'],'inputs'=>$tool['inputs'] ,'desc'=>$tool['desc'],'alert'=>$tool['alert'],'shopimg'=>$tool['shopimg' ],'repeat'=>$tool['repeat'],'multi'=>$tool['multi'],'min'=>$tool['min\ '],'max'=>$tool['max'],'close'=>$tool['close'],'isfaka'=>$isfaka); $result['data'] = $data; exit(json_encode($result)); } elseif($act == 'pay') { $result['code'] = -1; $tid = intval($_POST['tid']); if(!$tid)exit('{"code":-1,"message":"Product ID cannot be empty"}'); $user = trim(daddslashes($_POST['user'])); $pass = trim(daddslashes($_POST['pass'])); $input1 = isset($_POST['input1']) ? trim(strip_tags(daddslashes($_POST['input1']))) : exit('{"code":-1,\ "message":"The first parameter value cannot be empty"}'); $input2 = trim(strip_tags(daddslashes($_POST['input2']))); $input3 = trim(strip_tags(daddslashes($_POST['input3']))); $input4 = trim(strip_tags(daddslashes($_POST['input4']))); $input5 = trim(strip_tags(daddslashes($_POST['input5']))); $num = isset($_POST['num']) ? intval($_POST['num']) : 1; $tool = $DB->get_row("SELECT * FROM `shua_tools` WHERE `tid` = {$tid} LIMIT 1"); if ($tool & amp; & amp; $tool['active'] == 1) { if($tool['close']==1)exit('{"code":-1,"msg":"The current product is under maintenance, stop placing orders!"}\ '); $userrow = $DB->get_row("SELECT * FROM `shua_site` WHERE `user` = '{$user}' LIMIT 1"); if ($userrow & amp; & amp; $userrow['user'] == $user & amp; & amp; $userrow['pwd'] == $pass & amp; & amp; $userrow ['status'] == 1) { $result['code'] = 0; if(in_array($input1,explode("|",$conf['blacklist']))) exit('{"code":-1,"message":"you The ordering account has been blocked and cannot place orders!"}'); if($tool['validate']==1 & amp; & amp; is_numeric($input1)){ if(validate_qzone($input1)==false) exit('{"code":- 1,"msg":"Your QQ space has set access permissions and cannot place orders!"}'); } if($tool['multi'] == 0 || $num < 1) $num = 1; \t\t\t $islogin2 = 1; $price_obj = new Price($userrow['zid'],$userrow); $price_obj->setToolInfo($tid,$tool); $price = $price_obj->getToolPrice($tid); $price=$price_obj->getFinalPrice($price, $num); if(!$price)exit('{"code":-1,"msg":"The current product wholesale price discount setting is incorrect"}'); $need = $price * $num; if($need == 0) exit('{"code":-2,"message":"Free product docking"}'); if ($userrow['rmb'] < $need) exit('{"code":-2,"message":"Insufficient balance, there is still money left to purchase this product' . ($ need - $userrow['rmb']) . '元"}'); $trade_no = date("YmdHis").rand(111,999).'RMB'; $input = $input1 . ($input2 ? '|' . $input2 : null) . ($input3 ? '|' . $input3 : null) . ($input4 ? '|' . $inputvalue4 : null) . ($input5 ? '|' . $input5 : null); $sql = "INSERT INTO `shua_pay` (`trade_no`,`type`,`zid`,`input`,`num`,`addtime`,`name`,`money`,`ip`,`status` ) VALUES"; $sql .= "('{$trade_no}','rmb',{$userrow['zid']},'{$input}',{$num},' {$date}','{$tool['name']}',{$need},NULL,0)"; if ($DB->query($sql)) { if ($DB->query("UPDATE `shua_site` SET `rmb` = rmb - {$need} WHERE `zid` = '{$userrow['zid']}'") & amp ; & amp; $DB->query("UPDATE `shua_pay` SET `status` = 1 WHERE `trade_no` = '{$trade_no}'")) { addPointRecord($userrow['zid'], $need, 'Consumption', 'Purchase'.$tool['name']); $srow['tid'] = $tid; $srow['num'] = $num; $srow['input'] = $input; $srow['zid'] = $userrow['zid']; $srow['money'] = $need; $srow['trade_no'] = $trade_no; if($orderid = processOrder($srow)){ $result['code'] = 0; $result['message'] = 'success'; $result['orderid'] = $orderid; $djzt = $DB->get_column("SELECT djzt FROM shua_orders WHERE id = '$orderid' LIMIT 1"); if($djzt == 3){ $rs=$DB->query("SELECT * FROM shua_faka WHERE tid='$tid' AND orderid='$orderid' ORDER BY kid ASC"); $kmdata=array(); while($res = $DB->fetch($rs)) { if(!empty($res['pw'])){ $kmdata[]=array('card'=>$res['km'],'pass'=>$res['pw']); }else{ $kmdata[]=array('card'=>$res['km']); } } $result['faka']=true; $result['kmdata']=$kmdata; } } else { $result['message'] = 'Order failed: ' . $DB->error(); } } else { $result['message'] = 'Order failed: ' . $DB->error(); } } else { $result['message'] = 'Order failed: ' . $DB->error(); } } elseif ($userrow & amp; & amp; $userrow['status'] == 0) { $result['message'] = 'This account has been banned'; } else { $result['message'] = 'Username or password is incorrect'; } } else { $result['message'] = 'Product ID does not exist'; } } elseif($act == 'search') { $result['code'] = -1; $id = intval($_GET['id']); $row = $DB->get_row("SELECT * FROM `shua_orders` WHERE `id` = {$id} LIMIT 1"); if ($row){ $tool = $DB->get_row("select * from shua_tools where tid='{$row['tid']}' limit 1"); $shequ = $DB->get_row("select * from shua_shequ where id='{$tool['shequ']}' limit 1"); if($shequ['type']==1){ $list = yile_chadan($shequ['url'], $tool['goods_id'], $row['input'], $row['djorder']); }elseif($shequ['type']==0 || $shequ['type']==2){ $list = jiuwu_chadan($shequ['url'], $shequ['username'], $shequ['password'], $row['djorder']); }elseif($shequ['type']==3 || $shequ['type']==5){ $list = xmsq_chadan($shequ['url'], $tool['goods_id'], $row['input'], $row['djorder']); }elseif($shequ['type']==10){ $list = qqbug_chadan($shequ['password'], $row['djorder']); }elseif($shequ['type']==11){ $list = jumeng_chadan($shequ['url'], $row['djorder']); }elseif($shequ['type']==20){ if(class_exists("ExtendAPI") & amp; & amp; method_exists('ExtendAPI','chadan')){ $list = ExtendAPI::chadan($shequ['url'], $shequ['username'], $shequ['password'], $row['djorder'], $tool ['goods_id'], $row['input']); }else{ exit('{"code":-1,"msg":"This docking type does not currently support querying order progress"}'); } }else{ exit('{"code":-1,"msg":"This docking type does not currently support querying order progress"}'); } if($list['order_state']=='Completed' & amp; & amp; $row['status']==2){ $DB->query("UPDATE `shua_orders` SET `status`=1 WHERE id='{$id}'"); } if(is_array($list)){ $result['code'] = 0; $result['message'] = 'success'; $result['data'] = $list; }else{ $result['message'] = 'Failed to obtain data'; } } else { $result['message'] = 'Order does not exist'; } } elseif($act=='siteinfo') { $count1=$DB->count("SELECT count(*) from shua_orders"); $count2=$DB->count("SELECT count(*) from shua_orders where status>=1"); $count3=$DB->count("SELECT count(*) from shua_site"); $result=array('sitename'=>$conf['sitename'],'kfqq'=>$conf['qq']?$conf['qq']:$ conf['kfqq'],'anounce'=>$conf['anounce'],'modal'=>$conf['modal'],'bottom'=> $conf['bottom'],'alert'=>$conf['alert'],'gg_search'=>$conf['gg_search'],'gg_panel'= >$conf['gg_panel'],'version'=>VERSION,'build'=>$conf['build'],'orders'=>$count1,'orders1 '=>$count2,'sites'=>$count3,'appalert'=>$conf['appalert']); } elseif($act=='token') { $key = isset($_GET['key'])?$_GET['key']:exit('No key'); $result=array('token'=>get_app_token($key),'time'=>time()); } else { $result=array("code"=>-5,"msg"=>"No Act!"); } echo json_encode($result); $DB->close(); ?>
Hey, some water