query("SELECT uuid,cldbid,name FROM $dbname.user WHERE 1=1$filter ORDER BY name ASC")) === false) { $err_msg = "DB Error: ".print_r($mysqlcon->errorInfo(), true); $err_lvl = 3; } $user_arr = $dbuserdata->fetchAll(PDO::FETCH_ASSOC); if (isset($_POST['update']) && $_SESSION['username'] == $webuser && $_SESSION['password'] == $webpass && $_SESSION['clientip'] == getclientip()) { $setontime = 0; if($_POST['setontime_day']) { $setontime = $setontime + $_POST['setontime_day'] * 86400; } if($_POST['setontime_hour']) { $setontime = $setontime + $_POST['setontime_hour'] * 3600; } if($_POST['setontime_min']) { $setontime = $setontime + $_POST['setontime_min'] * 60; } if($_POST['setontime_sec']) { $setontime = $setontime + $_POST['setontime_sec']; } if($setontime == 0) { $err_msg = $lang['errseltime']; $err_lvl = 3; } elseif($_POST['user'] == NULL) { $err_msg = $lang['errselusr']; $err_lvl = 3; } else { $allupdateuuid = ''; foreach($_POST['user'] as $user) { $allupdateuuid .= "'".$user."',"; } $allupdateuuid = substr($allupdateuuid, 0, -1); if($mysqlcon->exec("UPDATE $dbname.user set count = count + $setontime WHERE uuid IN ($allupdateuuid)") === false) { $err_msg = $lang['isntwidbmsg'].print_r($mysqlcon->errorInfo(), true); $err_lvl = 3; } else { if($mysqlcon->exec("UPDATE $dbname.user_snapshot set count = count + $setontime WHERE uuid IN ($allupdateuuid)") === false) { } $err_msg = sprintf($lang['sccupcount'],$setontime,$allupdateuuid); $err_lvl = NULL; } } } ?>