Simplify database query from admin panel.

Vaflan · Vaflan · commit e6504fa59dad · 2023-04-10T21:20:23.000+03:00
diff --git a/admin/acc.php b/admin/acc.php
@@ -368,13 +368,13 @@
 			$search = clean_var(stripslashes($_POST['search_account']));
 
 			$queryBuildWhere = !empty($_POST['search_type'])
-				? "LIKE '%{$search}%'"
-				: "= '{$search}'";
+				? "mi.memb___id LIKE '%{$search}%'"
+				: "mi.memb___id = '{$search}'";
 			$result = mssql_query("SELECT
 				mi.memb___id,mi.memb__pwd,mi.bloc_code,mi.country,mi.gender,ms.ConnectStat
 				FROM dbo.MEMB_INFO AS mi
 				LEFT JOIN dbo.MEMB_STAT AS ms ON ms.memb___id = mi.memb___id
-					WHERE mi.memb___id {$queryBuildWhere}");
+					WHERE {$queryBuildWhere}");
 
 			$rank = 1;
 			while ($row = mssql_fetch_row($result)) {
diff --git a/admin/char.php b/admin/char.php
@@ -270,22 +270,34 @@
 			$search_type = $_POST['search_type'];
 
 			$queryBuildWhere = !empty($_POST['search_type'])
-				? "LIKE '%{$search}%'"
-				: "= '{$search}'";
-			$result = mssql_query("SELECT Name,Class,cLevel,{$mmw['reset_column']},strength,dexterity,vitality,energy,accountid,CtlCode FROM dbo.Character WHERE Name {$queryBuildWhere}");
+				? "c.Name LIKE '%{$search}%'"
+				: "c.Name = '{$search}'";
+			$result = mssql_query("SELECT
+				c.Name,
+				c.Class,
+				c.cLevel,
+				c.{$mmw['reset_column']},
+				c.Strength,
+				c.Dexterity,
+				c.Vitality,
+				c.Energy,
+				c.AccountID,
+				c.CtlCode,
+				ms.ConnectStat
+				FROM dbo.Character as c
+				LEFT JOIN dbo.MEMB_STAT as ms ON ms.memb___id = c.AccountID
+					WHERE {$queryBuildWhere}
+			");
 
 			$rank = 1;
 			while ($row = mssql_fetch_row($result)) {
-				$status_result = mssql_query("SELECT ConnectStat FROM dbo.MEMB_STAT WHERE memb___id='{$row[8]}'");
-				$status = mssql_fetch_row($status_result);
-
-				if ($status[0] == 0) {
+				if ($row[10] == 0) {
 					$status = '<img src="../images/offline.gif" alt="offline">';
 				}
-				if ($status[0] == 1) {
+				if ($row[10] == 1) {
 					$status = '<img src="../images/online.gif" alt="online">';
 				}
-				if ($status[0] === null) {
+				if ($row[10] === null) {
 					$status = '<img src="../images/death.gif" alt="death">';
 				}
 
diff --git a/admin/sqlquery.php b/admin/sqlquery.php
@@ -6,7 +6,7 @@
 $exampleQuery = "UPDATE table SET [column]=? WHERE [column]=?\n\nSELECT * FROM table WHERE [column]=?\n\nSELECT CAST(Items AS varbinary(1920)) FROM warehouse WHERE AccountID='?'";
 
 if (isset($_POST['sql_query_true'])) {
-	$sqlQuery = str_replace(array('\"', '\''), array('"', ''), $_POST['sql_query']);
+	$sqlQuery = str_replace(array('\"', '\'', '&#39;'), array('"', '', '\''), $_POST['sql_query']);
 	if ($sqlQueryResult = mssql_query($sqlQuery)) {
 		$queryResult = $mmw['warning']['green'] . 'Query done!';
 		writelog('a_sql_query', 'Query: <b>' . $sqlQuery . '</b> Has Been <span style="color:red">Injection</span>');
