Changes

modules/simple-billing/add_to_cart.php

@@ -31,7 +31,7 @@ function exec_ogp_module()
 	$service_id = intval($_REQUEST['service_id']);
 
 	// Query for Selected service info.
-	$qry_service = "SELECT DISTINCT service_id, home_cfg_id, mod_cfg_id, service_name, remote_server_id, slot_max_qty, slot_min_qty, price_hourly, price_monthly, price_year, description, img_url FROM OGP_DB_PREFIXbilling_services WHERE service_id=".$service_id;
+	$qry_service = "SELECT DISTINCT service_id, home_cfg_id, mod_cfg_id, service_name, remote_server_id, slot_max_qty, slot_min_qty, price_hourly, price_monthly, price_year, description, img_url FROM OGP_DB_PREFIXbilling_services WHERE service_id=".$db->realEscapeSingle($service_id);
 	$result_service = $db->resultQuery($qry_service);		
 	$row_service = $result_service[0];
 	//Compiling info about invoice to create an invoice order.
@@ -90,7 +90,7 @@ function exec_ogp_module()
 	Cast $_REQUEST['service_id'] to an int and then check if its value is higher than 0 before using it in the WHERE clause.
 	Checking if it's higher than 0 because if it's a non-numeric value, after casting it to an int it'll be 0.
 	*/	
-	if($service_id !== 0) $where_service_id = " WHERE service_id=".$service_id; else $where_service_id = "";
+	if($service_id !== 0) $where_service_id = " WHERE service_id=".$db->realEscapeSingle($service_id); else $where_service_id = "";
 	$qry_services = "SELECT * FROM OGP_DB_PREFIXbilling_services".$where_service_id;
 	$services = $db->resultQuery($qry_services);			
 	foreach ($services as $key => $row) {	

modules/simple-billing/bill.php

@@ -13,13 +13,14 @@ function exec_ogp_module()
 
 	$user_id = $_SESSION['user_id'];
 	$cart_id = $_POST['cart_id'];
+	$cart_id = $db->realEscapeSingle($cart_id);
 	$isAdmin = $db->isAdmin( $_SESSION['user_id'] );
 	if ( $isAdmin )
-		$orders = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$cart_id );
+		$orders = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$db->realEscapeSingle($cart_id) );
 	else
-		$orders = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$cart_id." AND user_id=".$user_id );
+		$orders = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$db->realEscapeSingle($cart_id)." AND user_id=".$db->realEscapeSingle($user_id) );
 		
-	$cart = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_carts WHERE cart_id=".$cart_id );
+	$cart = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_carts WHERE cart_id=".$db->realEscapeSingle($cart_id) );
 			
 	if( !empty($orders) )
 	{
@@ -66,7 +67,7 @@ function exec_ogp_module()
 			$invoice_duration = $order['invoice_duration'];
 			$price = $order['price'];
 			$subtotal += $price;
-			$qry_service = "SELECT DISTINCT price_hourly, price_monthly, price_year FROM ".$table_prefix."billing_services WHERE service_id=".$service_id;
+			$qry_service = "SELECT DISTINCT price_hourly, price_monthly, price_year FROM ".$table_prefix."billing_services WHERE service_id=".$db->realEscapeSingle($service_id);
 			$result_service = $db->resultQuery($qry_service);
 			$row_service = $result_service[0];
 

modules/simple-billing/cart.php

@@ -84,7 +84,7 @@ function exec_ogp_module()
 	
 	if( isset( $_POST["extend"] ) or isset( $_POST["extend_and_pay_paypal"] ) or isset( $_POST["extend_and_pay_paygol"] ) or isset( $_POST["extend_and_pay_skrill"] ) or isset( $_POST["extend_and_pay_robokassa"] ) )
 	{
-		$orders = $db->resultQuery("SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE order_id=".$_POST['order_id']);
+		$orders = $db->resultQuery("SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE order_id=".$db->realEscapeSingle($_POST['order_id']));
 		// Fill The Cart on DB
 		$cart_id = assignOrdersToCart($user_id,$settings['tax_amount'],$settings['currency']);
 		foreach($orders as $order) 
@@ -101,7 +101,7 @@ function exec_ogp_module()
 			
 			$services = $db->resultQuery( "SELECT * 
 										   FROM OGP_DB_PREFIXbilling_services 
-										   WHERE service_id=".$service_id );
+										   WHERE service_id=".$db->realEscapeSingle($service_id) );
 			$service = $services[0];
 			//Calculating Price
 			switch ($_POST['invoice_duration']) 
@@ -122,7 +122,7 @@ function exec_ogp_module()
 			//Change the old order expiration to -2 so it can not be extended, since there is a new order managing the same game home.
 			$db->query( "UPDATE OGP_DB_PREFIXbilling_orders
 						 SET end_date=-2
-						 WHERE order_id=".$_POST['order_id']);
+						 WHERE order_id=".$db->realEscapeSingle($_POST['order_id']));
 		}
 		
 		if ( !empty( $cart_id ) and isset( $_POST["extend_and_pay_paypal"] ) and $settings['paypal'] == "1" )
@@ -151,11 +151,11 @@ function exec_ogp_module()
 			unset($_SESSION['CART'][$cart_id]);
 		}
 		$order_id = $_POST['order_id'];
-		$db->query( "DELETE FROM OGP_DB_PREFIXbilling_orders WHERE order_id=".$order_id );
-		$orders_in_cart = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$cart_id );
+		$db->query( "DELETE FROM OGP_DB_PREFIXbilling_orders WHERE order_id=".$db->realEscapeSingle($order_id) );
+		$orders_in_cart = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$db->realEscapeSingle($cart_id) );
 		if( !$orders_in_cart )
 		{
-			$db->query( "DELETE FROM OGP_DB_PREFIXbilling_carts WHERE cart_id=".$cart_id );
+			$db->query( "DELETE FROM OGP_DB_PREFIXbilling_carts WHERE cart_id=".$db->realEscapeSingle($cart_id) );
 		}
 
 	}
@@ -184,7 +184,7 @@ function exec_ogp_module()
 		$carts[0] = $_SESSION['CART'];
 	}
 
-	$user_carts = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_carts WHERE user_id=".$user_id );
+	$user_carts = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_carts WHERE user_id=".$db->realEscapeSingle($user_id) );
 	
 	if( $user_carts >=1 )
 	{
@@ -194,7 +194,7 @@ function exec_ogp_module()
 			$carts[$cart_id] = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_carts AS cart JOIN
 																OGP_DB_PREFIXbilling_orders AS orders  
 																ON orders.cart_id=cart.cart_id
-																WHERE cart.cart_id=".$cart_id );
+																WHERE cart.cart_id=".$db->realEscapeSingle($cart_id) );
 		}
 	}
 	

modules/simple-billing/create_servers.php

@@ -6,12 +6,12 @@ function exec_ogp_module()
 	global $db,$view,$settings;
 	$user_id = $_SESSION['user_id'];
 	$cart_id = $_POST['cart_id'];
-	$cart_paid = $db->resultQuery( "SELECT paid FROM OGP_DB_PREFIXbilling_carts WHERE paid=1 AND cart_id=".$cart_id );
+	$cart_paid = $db->resultQuery( "SELECT paid FROM OGP_DB_PREFIXbilling_carts WHERE paid=1 AND cart_id=".$db->realEscapeSingle($cart_id) );
 	$isAdmin = $db->isAdmin( $_SESSION['user_id'] );
 	if ( $isAdmin )
-		$orders = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$cart_id );
+		$orders = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$db->realEscapeSingle($cart_id) );
 	else
-		$orders = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$cart_id." AND user_id=".$user_id );
+		$orders = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$db->realEscapeSingle($cart_id)." AND user_id=".$db->realEscapeSingle($user_id) );
 		
 	if( !empty($orders) and !empty($cart_paid) )
 	{
@@ -30,7 +30,7 @@ function exec_ogp_module()
 			//Query service info	
 			$service = $db->resultQuery( "SELECT * 
 							   FROM OGP_DB_PREFIXbilling_services 
-							   WHERE service_id=".$service_id );
+							   WHERE service_id=".$db->realEscapeSingle($service_id) );
 							   
 			if( !empty( $service[0] ) )
 			{
@@ -105,10 +105,10 @@ function exec_ogp_module()
 				$mod_cfg_id = $home_info['mods'][$mod_id]['mod_cfg_id'];
 				
 				//Get Preinstall commands from db
-				$game_mod_precmd = $db->resultQuery("SELECT DISTINCT precmd FROM OGP_DB_PREFIXgame_mods WHERE mod_id='$mod_id'");
+				$game_mod_precmd = $db->resultQuery("SELECT DISTINCT precmd FROM OGP_DB_PREFIXgame_mods WHERE mod_id='" . $db->realEscapeSingle($mod_id) . "'");
 				if ($game_mod_precmd[0]['precmd'] === NULL OR empty($game_mod_precmd[0]['precmd']))
 				{
-					$config_mod_precmd = $db->resultQuery("SELECT DISTINCT def_precmd FROM OGP_DB_PREFIXconfig_mods WHERE mod_cfg_id='$mod_cfg_id'");
+					$config_mod_precmd = $db->resultQuery("SELECT DISTINCT def_precmd FROM OGP_DB_PREFIXconfig_mods WHERE mod_cfg_id='" . $db->realEscapeSingle($mod_cfg_id) . "'");
 					if ($config_mod_precmd[0]['def_precmd'] === NULL OR empty($config_mod_precmd[0]['def_precmd']))
 						$precmd = "";
 					else
@@ -118,10 +118,10 @@ function exec_ogp_module()
 					$precmd = $game_mod_precmd[0]['precmd'];
 					
 				//Get Postinstall commands from db
-				$game_mod_postcmd = $db->resultQuery("SELECT DISTINCT postcmd FROM OGP_DB_PREFIXgame_mods WHERE mod_id='$mod_id'");
+				$game_mod_postcmd = $db->resultQuery("SELECT DISTINCT postcmd FROM OGP_DB_PREFIXgame_mods WHERE mod_id='" . $db->realEscapeSingle($mod_id) . "'");
 				if ($game_mod_postcmd[0]['postcmd'] === NULL OR empty($game_mod_postcmd[0]['postcmd']))
 				{
-					$config_mod_postcmd = $db->resultQuery("SELECT DISTINCT def_postcmd FROM OGP_DB_PREFIXconfig_mods WHERE mod_cfg_id='$mod_cfg_id'");
+					$config_mod_postcmd = $db->resultQuery("SELECT DISTINCT def_postcmd FROM OGP_DB_PREFIXconfig_mods WHERE mod_cfg_id='" . $db->realEscapeSingle($mod_cfg_id) . "'");
 					if ($config_mod_postcmd[0]['def_postcmd'] === NULL OR empty($config_mod_postcmd[0]['def_postcmd']))
 						$postcmd = "";
 					else
@@ -237,30 +237,29 @@ function exec_ogp_module()
 			}
 			// set order expire date
 			$db->query("UPDATE OGP_DB_PREFIXbilling_orders
-						SET end_date='$end_date' 
-						WHERE order_id=".$order_id);
+						SET end_date='" . $db->realEscapeSingle($end_date) . "' 
+						WHERE order_id=".$db->realEscapeSingle($order_id));
 	
 			$db->query("UPDATE OGP_DB_PREFIXbilling_orders
-						SET finish_date='$finish_date' 
-						WHERE order_id=".$order_id);
+						SET finish_date='" . $db->realEscapeSingle($finish_date) . "' 
+						WHERE order_id=".$db->realEscapeSingle($order_id));
 						
 			// Save home id created by this order
 			$db->query("UPDATE OGP_DB_PREFIXbilling_orders
-						SET home_id=$home_id 
-						WHERE order_id=".$order_id);
+						SET home_id='" . $db->realEscapeSingle($home_id) . "' WHERE order_id=".$db->realEscapeSingle($order_id));
 						
 		}
 
 		//Update Cart Payment Status as 3(paid and installed)
 		$db->query("UPDATE OGP_DB_PREFIXbilling_carts
 					SET paid=3
-					WHERE cart_id=".$cart_id);
+					WHERE cart_id=".$db->realEscapeSingle($cart_id));
 
 		// Set payment/creation date
 		$date = date('d/m/Y H:i');
 		$db->query("UPDATE OGP_DB_PREFIXbilling_carts 
-					SET date='$date' 
-					WHERE cart_id=".$cart_id);
+					SET date='" . $db->realEscapeSingle($date) . "' 
+					WHERE cart_id=".$db->realEscapeSingle($cart_id));
 
 		//Refresh to Game Monitor.
 		$view->refresh("home.php?m=gamemanager&p=game_monitor");

modules/simple-billing/cron-shop.php

@@ -75,7 +75,7 @@ else
 		// Reset the invoice end date
 		$db->query( "UPDATE " . $table_prefix . "billing_orders
 					 SET end_date=-1
-					 WHERE order_id=".$user_home['order_id']);
+					 WHERE order_id=".$db->realEscapeSingle($user_home['order_id']));
 					 
 		echo "Home ID $home_id unassigned succesfull.";
 	}
@@ -108,16 +108,16 @@ else
 		// Set order as not installed
 		$db->query( "UPDATE " . $table_prefix . "billing_orders
 					 SET home_id=0
-					 WHERE cart_id=".$ipn['item_number']); 
+					 WHERE cart_id=".$db->realEscapeSingle($ipn['item_number'])); 
 					 
 		// Reset the invoice end date
 		$db->query( "UPDATE " . $table_prefix . "billing_orders
 					 SET end_date=-2
-					 WHERE order_id=".$user_home['order_id']);
+					 WHERE order_id=".$db->realEscapeSingle($user_home['order_id']));
 					 
 		$db->query( "UPDATE " . $table_prefix . "billing_orders
 					 SET finish_date=-2
-					 WHERE order_id=".$user_home['order_id']);
+					 WHERE order_id=".$db->realEscapeSingle($user_home['order_id']));
 					 
 		echo "Home ID $home_id finished completely.";
 	}

modules/simple-billing/orders.php

@@ -7,14 +7,14 @@ function exec_ogp_module()
 	
 	if(isset($_POST['remove']))
 	{
-		$query_delete_order = $db->query("DELETE FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$_POST['cart_id']);
-		$query_delete_order = $db->query("DELETE FROM OGP_DB_PREFIXbilling_carts WHERE cart_id=".$_POST['cart_id']);
+		$query_delete_order = $db->query("DELETE FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$db->realEscapeSingle($_POST['cart_id']));
+		$query_delete_order = $db->query("DELETE FROM OGP_DB_PREFIXbilling_carts WHERE cart_id=".$db->realEscapeSingle($_POST['cart_id']));
 	}
 	if(isset($_POST['paid']))
 	{
 		$query_set_as_paid =  $db->query("UPDATE OGP_DB_PREFIXbilling_carts
 										  SET paid=1
-										  WHERE cart_id=".$_POST['cart_id']);
+										  WHERE cart_id=".$db->realEscapeSingle($_POST['cart_id']));
 	}
 	$status_array = array ( "not_paid" => 0,
 							"paid" => 1,
@@ -43,7 +43,7 @@ function exec_ogp_module()
 
 	foreach($status_array as $status => $paid_value)
 	{
-		$carts = $db->resultQuery("SELECT * FROM OGP_DB_PREFIXbilling_carts WHERE paid=$paid_value;");
+		$carts = $db->resultQuery("SELECT * FROM OGP_DB_PREFIXbilling_carts WHERE paid=" . $db->realEscapeSingle($paid_value) . ";");
 
 		if( $carts > 0 )
 		{
@@ -68,7 +68,7 @@ function exec_ogp_module()
 				}?>
 				</tr>
 				<?php  
-				$orders = $db->resultQuery("SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$cart['cart_id']);
+				$orders = $db->resultQuery("SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$db->realEscapeSingle($cart['cart_id']));
 				$subtotal = 0;
 				foreach($orders as $order) 
 				{

modules/simple-billing/paid-ipn.php

@@ -110,7 +110,7 @@ if ($verified AND isset( $ipn['payment_status'] ) )
 									 OGP_DB_PREFIXbilling_orders AS orders  
 									 ON 
 									 orders.cart_id=cart.cart_id
-									 WHERE cart.cart_id=".$ipn['item_number']);
+									 WHERE cart.cart_id=".$db->realEscapeSingle($ipn['item_number']));
 	if( $ipn['payment_status']=="Completed" OR $ipn['payment_status']=="Canceled_Reversal" )
 	{  
 		$cart_id = $ipn['item_number'];
@@ -121,7 +121,7 @@ if ($verified AND isset( $ipn['payment_status'] ) )
 											 OGP_DB_PREFIXbilling_orders AS orders  
 											 ON 
 											 orders.cart_id=cart.cart_id
-											 WHERE cart.cart_id=".$cart_id);
+											 WHERE cart.cart_id=".$db->realEscapeSingle($cart_id));
 											 
 		$cart_price = number_format( $cart_price_info[0]['price'] + (($cart_price_info[0]['price']/100)*$cart_price_info[0]['tax_amount']) , 2 );
 		$paid_price = $ipn['mc_gross'];
@@ -183,7 +183,7 @@ if ($verified AND isset( $ipn['payment_status'] ) )
 		}
 		$query = "UPDATE OGP_DB_PREFIXbilling_carts
 				  SET paid=1
-				  WHERE cart_id=".$ipn['item_number'];
+				  WHERE cart_id=".$db->realEscapeSingle($ipn['item_number']);
 				  
 		foreach($user_homes as $user_home)
 		{			
@@ -222,30 +222,30 @@ if ($verified AND isset( $ipn['payment_status'] ) )
 			
 					//Set the expiration date to the new order
 					$db->query("UPDATE OGP_DB_PREFIXbilling_orders
-								SET end_date='$end_date'
-								WHERE order_id=".$user_home['order_id']);
+								SET end_date='" . $db->realEscapeSingle($end_date) . "'
+								WHERE order_id=". $db->realEscapeSingle($user_home['order_id']));
 								 
 					$db->query("UPDATE OGP_DB_PREFIXbilling_orders
-								SET finish_date='$finish_date' 
-								WHERE order_id=".$user_home['order_id']);
+								SET finish_date='" . $db->realEscapeSingle($finish_date) . "' 
+								WHERE order_id=".$db->realEscapeSingle($user_home['order_id']));
 								 
 					// Set payment/creation date
 					$date = date('d/m/Y H:i');
 					$db->query("UPDATE OGP_DB_PREFIXbilling_carts
 								SET date='$date'
-								WHERE cart_id=".$ipn['item_number']);
+								WHERE cart_id=".$db->realEscapeSingle($ipn['item_number']));
 				}
 				
 				$services = $db->resultQuery( "SELECT * 
 											   FROM OGP_DB_PREFIXbilling_services
-											   WHERE service_id=".$user_home['service_id']);
+											   WHERE service_id=".$db->realEscapeSingle($user_home['service_id']));
 				$service = $services[0];
 				$user_id = $user_home['user_id'];
 				$db->assignHomeTo("user", $user_id, $home_id, $service['access_rights']);
 				
 				$query = "UPDATE OGP_DB_PREFIXbilling_carts
 						  SET paid=3
-						  WHERE cart_id=".$ipn['item_number'];
+						  WHERE cart_id=".$db->realEscapeSingle($ipn['item_number']);
 			}
 		}
 	}
@@ -253,7 +253,7 @@ if ($verified AND isset( $ipn['payment_status'] ) )
 	{
 		$query = "UPDATE OGP_DB_PREFIXbilling_carts
 				  SET paid=2
-				  WHERE cart_id=".$ipn['item_number'];
+				  WHERE cart_id=".$db->realEscapeSingle($ipn['item_number']);
 	}
 	elseif( $ipn['payment_status']=="Reversed" OR $ipn['payment_status']=="Refunded" OR $ipn['payment_status']=="Denied" OR $ipn['payment_status']=="Expired" OR $ipn['payment_status']=="Failed" OR $ipn['payment_status']=="Voided" OR $ipn['payment_status']=="Partially_Refunded" )
 	{
@@ -261,7 +261,7 @@ if ($verified AND isset( $ipn['payment_status'] ) )
 				 
 		$query = "UPDATE OGP_DB_PREFIXbilling_carts
 				  SET paid=0
-				  WHERE cart_id=".$ipn['item_number'];
+				  WHERE cart_id=".$db->realEscapeSingle($ipn['item_number']);
 		
 		foreach($user_homes as $user_home)
 		{

modules/simple-billing/paygol-ipn.php

@@ -47,7 +47,7 @@ $cart_price_info = $db->resultQuery( "SELECT price,tax_amount
 									 OGP_DB_PREFIXbilling_orders AS orders  
 									 ON 
 									 orders.cart_id=cart.cart_id
-									 WHERE cart.cart_id=".$cart_id);
+									 WHERE cart.cart_id=".$db->realEscapeSingle($cart_id));
 									 
 $cart_price = number_format( $cart_price_info[0]['price'] + (($cart_price_info[0]['price']/100)*$cart_price_info[0]['tax_amount']) , 2 );
 $paid_price = $_GET['price'];
@@ -89,11 +89,11 @@ $user_homes = $db->resultQuery( "SELECT *
 								 OGP_DB_PREFIXbilling_orders AS orders  
 								 ON 
 								 orders.cart_id=cart.cart_id
-								 WHERE cart.cart_id=".$cart_id);
+								 WHERE cart.cart_id=".$db->realEscapeSingle($cart_id));
 
 $query = "UPDATE " . $table_prefix . "billing_carts
 		  SET paid=1
-		  WHERE cart_id=".$cart_id;
+		  WHERE cart_id=".$db->realEscapeSingle($cart_id);
 				  
 foreach($user_homes as $user_home)
 {			
@@ -127,30 +127,30 @@ foreach($user_homes as $user_home)
 			}
 			//Set the expiration date to the new order
 			$db->query( "UPDATE " . $table_prefix . "billing_orders
-						 SET end_date='$end_date'
-						 WHERE order_id=".$user_home['order_id']);
+						 SET end_date='" . $db->realEscapeSingle($end_date) . "'
+						 WHERE order_id=".$db->realEscapeSingle($user_home['order_id']));
 						 
 			// Set payment/creation date
 			$date = date('d/m/Y H:i');
 			$db->query( "UPDATE OGP_DB_PREFIXbilling_carts
-						 SET date='$date'
-						 WHERE cart_id=".$cart_id);
+						 SET date='" . $db->realEscapeSingle($date) . "'
+						 WHERE cart_id=".$db->realEscapeSingle($cart_id));
 		}
 		
 		$services = $db->resultQuery( "SELECT * 
 									   FROM OGP_DB_PREFIXbilling_services
-									   WHERE service_id=".$user_home['service_id']);
+									   WHERE service_id=".$db->realEscapeSingle($user_home['service_id']));
 		$service = $services[0];
 		$user_id = $user_home['user_id'];
 		$db->assignHomeTo("user", $user_id, $home_id, $service['access_rights']);
 		
 		$query = "UPDATE " . $table_prefix . "billing_carts
 				  SET paid=3
-				  WHERE cart_id=".$cart_id;
+				  WHERE cart_id=".$db->realEscapeSingle($cart_id);
 	}
 }
 	
 $db->query($query);
 $subject = "Payment done.";
 mymail($panel_settings['panel_email_address'], $subject, $body, $panel_settings);
-?>
+?>

modules/simple-billing/paygol.php

@@ -14,7 +14,7 @@ function exec_ogp_module()
 
 	if(!empty($cart_id))
 	{		
-		$orders = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$cart_id );
+		$orders = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$db->realEscapeSingle($cart_id) );
 		if( !empty( $orders ) )
 		{
 			$cart['price'] = 0;
@@ -36,7 +36,7 @@ function exec_ogp_module()
 			{
 				$db->query("UPDATE " . $table_prefix . "billing_carts
 												SET paid=1
-												WHERE cart_id=".$cart_id);
+												WHERE cart_id=".$db->realEscapeSingle($cart_id));
 				$view->refresh("home.php?m=simple-billing&p=cart",0);
 			}
 			else

modules/simple-billing/paypal.php

@@ -9,7 +9,7 @@ function exec_ogp_module()
 
 	if(!empty($cart_id))
 	{		
-		$orders = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$cart_id );
+		$orders = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$db->realEscapeSingle($cart_id));
 		if( !empty( $orders ) )
 		{
 			$cart['price'] = 0;
@@ -31,7 +31,7 @@ function exec_ogp_module()
 			{
 				$db->query("UPDATE " . $table_prefix . "billing_carts
 												SET paid=1
-												WHERE cart_id=".$cart_id);
+												WHERE cart_id=".$db->realEscapeSingle($cart_id));
 				$view->refresh("home.php?m=simple-billing&p=cart",0);
 			}
 			else

modules/simple-billing/robokassa-ipn.php

@@ -33,7 +33,7 @@ $cart_price_info = $db->resultQuery( "SELECT price,tax_amount,currency
 									 OGP_DB_PREFIXbilling_orders AS orders  
 									 ON 
 									 orders.cart_id=cart.cart_id
-									 WHERE cart.cart_id=".$inv_id);
+									 WHERE cart.cart_id=".$db->realEscapeSingle($inv_id));
 									 
 $cart_price = number_format( $cart_price_info[0]['price'] + (($cart_price_info[0]['price']/100)*$cart_price_info[0]['tax_amount']) , 2 );
 $paid_price = $out_summ;
@@ -85,11 +85,11 @@ else
 									 OGP_DB_PREFIXbilling_orders AS orders  
 									 ON 
 									 orders.cart_id=cart.cart_id
-									 WHERE cart.cart_id=".$cart_id);
+									 WHERE cart.cart_id=".$db->realEscapeSingle($cart_id));
 
 	$query = "UPDATE " . $table_prefix . "billing_carts
 			  SET paid=1
-			  WHERE cart_id=".$cart_id;
+			  WHERE cart_id=".$db->realEscapeSingle($cart_id);
 					  
 	foreach($user_homes as $user_home)
 	{
@@ -123,26 +123,26 @@ else
 				}
 				//Set the expiration date to the new order
 				$db->query( "UPDATE " . $table_prefix . "billing_orders
-							 SET end_date='$end_date'
-							 WHERE order_id=".$user_home['order_id']);
+							 SET end_date='" . $db->realEscapeSingle($end_date) . "'
+							 WHERE order_id=".$db->realEscapeSingle($user_home['order_id']));
 							 
 				// Set payment/creation date
 				$date = date('d/m/Y H:i');
 				$db->query( "UPDATE OGP_DB_PREFIXbilling_carts
-							 SET date='$date'
-							 WHERE cart_id=".$cart_id);
+							 SET date='" . $db->realEscapeSingle($date) . "'
+							 WHERE cart_id=".$db->realEscapeSingle($cart_id));
 			}
 			
 			$services = $db->resultQuery( "SELECT * 
 										   FROM OGP_DB_PREFIXbilling_services
-										   WHERE service_id=".$user_home['service_id']);
+										   WHERE service_id=".$db->realEscapeSingle($user_home['service_id']));
 			$service = $services[0];
 			$user_id = $user_home['user_id'];
 			$db->assignHomeTo("user", $user_id, $home_id, $service['access_rights']);
 			
 			$query = "UPDATE " . $table_prefix . "billing_carts
 					  SET paid=3
-					  WHERE cart_id=".$cart_id;
+					  WHERE cart_id=".$db->realEscapeSingle($cart_id);
 		}
 	}
 	
@@ -150,4 +150,4 @@ else
 	$subject = "Payment done.";
 	mymail($panel_settings['panel_email_address'], $subject, $body, $panel_settings);
 }
-?>
+?>

modules/simple-billing/robokassa.php

@@ -12,7 +12,7 @@ function exec_ogp_module()
 
 	if(!empty($cart_id))
 	{		
-		$orders = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$cart_id );
+		$orders = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$db->realEscapeSingle($cart_id) );
 		if( !empty( $orders ) )
 		{
 			$cart['price'] = 0;
@@ -34,7 +34,7 @@ function exec_ogp_module()
 			{
 				$db->query("UPDATE " . $table_prefix . "billing_carts
 												SET paid=1
-												WHERE cart_id=".$cart_id);
+												WHERE cart_id=".$db->realEscapeSingle($cart_id));
 				$view->refresh("home.php?m=simple-billing&p=cart",0);
 			}
 			else

modules/simple-billing/services.php

@@ -6,11 +6,11 @@ function exec_ogp_module()
 	//Querying UPDATE a service FROM DB
 	if (isset($_POST['service']) AND isset($_POST['new_url']))
 	{
-		$new_price_hourly = $_POST['new_price_hourly'];
-		$new_price_monthly = $_POST['new_price_monthly'];
-		$new_price_year = $_POST['new_price_year'];
-		$new_url = $_POST['new_url'];
-		$service = $_POST['service'];
+		$new_price_hourly = $db->realEscapeSingle($_POST['new_price_hourly']);
+		$new_price_monthly = $db->realEscapeSingle($_POST['new_price_monthly']);
+		$new_price_year = $db->realEscapeSingle($_POST['new_price_year']);
+		$new_url = $db->realEscapeSingle($_POST['new_url']);
+		$service = $db->realEscapeSingle($_POST['service']);
 
 		//Create INSERT query
 		$qry_change_url = "UPDATE OGP_DB_PREFIXbilling_services
@@ -26,27 +26,27 @@ function exec_ogp_module()
 	if(isset($_POST['mod_cfg_id']) AND isset($_POST['remote_server_id']) AND isset($_POST['slot_max_qty']) AND isset($_POST['price_hourly']) AND isset($_POST['price_monthly']) AND isset($_POST['price_year']))
 	{
 		//Sanitize the POST values
-		$home_cfg_id = $_POST['home_cfg_id'];
-		$mod_cfg_id = $_POST['mod_cfg_id'];
-		$service_name = $_POST['service_name'];
-		$remote_server_id = $_POST['remote_server_id'];
-		$slot_max_qty = $_POST['slot_max_qty'];
-		$slot_min_qty = $_POST['slot_min_qty'];
-		$price_hourly = $_POST['price_hourly'];
-		$price_monthly = $_POST['price_monthly'];
-		$price_year = $_POST['price_year'];
-		$description = $_POST['description'];
-		$img_url = $_POST['img_url'];
-		$ftp = $_POST['ftp'];
-		$install_method = $_POST['install_method'];
-		$manual_url = $_POST['manual_url'];
+		$home_cfg_id = $db->realEscapeSingle($_POST['home_cfg_id']);
+		$mod_cfg_id = $db->realEscapeSingle($_POST['mod_cfg_id']);
+		$service_name = $db->realEscapeSingle($_POST['service_name']);
+		$remote_server_id = $db->realEscapeSingle($_POST['remote_server_id']);
+		$slot_max_qty = $db->realEscapeSingle($_POST['slot_max_qty']);
+		$slot_min_qty = $db->realEscapeSingle($_POST['slot_min_qty']);
+		$price_hourly = $db->realEscapeSingle($_POST['price_hourly']);
+		$price_monthly = $db->realEscapeSingle($_POST['price_monthly']);
+		$price_year = $db->realEscapeSingle($_POST['price_year']);
+		$description = $db->realEscapeSingle($_POST['description']);
+		$img_url = $db->realEscapeSingle($_POST['img_url']);
+		$ftp = $db->realEscapeSingle($_POST['ftp']);
+		$install_method = $db->realEscapeSingle($_POST['install_method']);
+		$manual_url = $db->realEscapeSingle($_POST['manual_url']);
 		$access_rights = "";
-		if(isset($_POST['allow_updates']))$access_rights .= $_POST['allow_updates'];
-		if(isset($_POST['allow_file_management']))$access_rights .= $_POST['allow_file_management'];
-		if(isset($_POST['allow_parameter_usage']))$access_rights .= $_POST['allow_parameter_usage'];
-		if(isset($_POST['allow_extra_params']))$access_rights .= $_POST['allow_extra_params'];
-		if(isset($_POST['allow_ftp_usage']))$access_rights .= $_POST['allow_ftp_usage'];
-		if(isset($_POST['allow_custom_fields']))$access_rights .= $_POST['allow_custom_fields'];
+		if(isset($_POST['allow_updates']))$access_rights .= $db->realEscapeSingle($_POST['allow_updates']);
+		if(isset($_POST['allow_file_management']))$access_rights .= $db->realEscapeSingle($_POST['allow_file_management']);
+		if(isset($_POST['allow_parameter_usage']))$access_rights .= $db->realEscapeSingle($_POST['allow_parameter_usage']);
+		if(isset($_POST['allow_extra_params']))$access_rights .= $db->realEscapeSingle($_POST['allow_extra_params']);
+		if(isset($_POST['allow_ftp_usage']))$access_rights .= $db->realEscapeSingle($_POST['allow_ftp_usage']);
+		if(isset($_POST['allow_custom_fields']))$access_rights .= $db->realEscapeSingle($_POST['allow_custom_fields']);
 		
 		$qry_add_service = "INSERT INTO OGP_DB_PREFIXbilling_services(service_id, home_cfg_id, mod_cfg_id, service_name, remote_server_id, slot_max_qty , slot_min_qty, price_hourly, price_monthly, price_year, description, img_url, ftp, install_method, manual_url, access_rights) VALUES(NULL, '".$home_cfg_id."', '".$mod_cfg_id."', '".$service_name."', '".$remote_server_id."', '".$slot_max_qty."', '".$slot_min_qty."', '".$price_hourly."', '".$price_monthly."', '".$price_year."', '".$description."', '".$img_url."', '".$ftp."', '".$install_method."', '".$manual_url."', '".$access_rights."')";
 		$db->query($qry_add_service);	
@@ -55,7 +55,7 @@ function exec_ogp_module()
 	//Querying REMOVE service FROM DB
 	if (isset($_POST['service_id']))
 	{
-		$db->query( "DELETE FROM OGP_DB_PREFIXbilling_services WHERE service_id=" . $_POST['service_id'] );
+		$db->query( "DELETE FROM OGP_DB_PREFIXbilling_services WHERE service_id=" . $db->realEscapeSingle($_POST['service_id']) );
 	}
 	
 	?>
@@ -71,7 +71,7 @@ function exec_ogp_module()
 		<td>
 		<select name="modcfgid">
 		<?php
-		$mod_qry = $db->resultQuery("SELECT DISTINCT mod_cfg_id, mod_name, game_name FROM OGP_DB_PREFIXconfig_mods NATURAL JOIN OGP_DB_PREFIXconfig_homes WHERE home_cfg_id=" . $_POST['home_cfg_id']);
+		$mod_qry = $db->resultQuery("SELECT DISTINCT mod_cfg_id, mod_name, game_name FROM OGP_DB_PREFIXconfig_mods NATURAL JOIN OGP_DB_PREFIXconfig_homes WHERE home_cfg_id=" . $db->realEscapeSingle($_POST['home_cfg_id']));
 		foreach($mod_qry as $array_mods) 
 		{ 
 			if($array_mods['mod_name'] == "none")$array_mods['mod_name']=$array_mods['game_name'];
@@ -111,7 +111,7 @@ function exec_ogp_module()
 		</tr>
 		<tr>
 		<?php
-		$mods = $db->resultQuery("SELECT DISTINCT mod_cfg_id, mod_name, game_name FROM OGP_DB_PREFIXconfig_mods NATURAL JOIN OGP_DB_PREFIXconfig_homes WHERE mod_cfg_id=" . $_POST['modcfgid']);
+		$mods = $db->resultQuery("SELECT DISTINCT mod_cfg_id, mod_name, game_name FROM OGP_DB_PREFIXconfig_mods NATURAL JOIN OGP_DB_PREFIXconfig_homes WHERE mod_cfg_id=" . $db->realEscapeSingle($_POST['modcfgid']));
 		foreach($mods as $mod) 
 		{ 
 		?>
@@ -280,4 +280,4 @@ function exec_ogp_module()
 	<?php
 	}
 }
-?>
+?>

modules/simple-billing/shop.php

@@ -34,8 +34,8 @@ function exec_ogp_module()
 		$service = $_POST['service_id'];
 		
 		$change_description = "UPDATE OGP_DB_PREFIXbilling_services
-						       SET description ='".$new_description."'
-						       WHERE service_id=".$service;
+						       SET description ='".$db->realEscapeSingle($new_description)."'
+						       WHERE service_id=".$db->realEscapeSingle($service);
 		$save = $db->query($change_description);
 	}
 	?>
@@ -185,7 +185,7 @@ function exec_ogp_module()
 			  <td align="left">
 			  <select name='ip_id'>
 			<?php
-			$qry_ip = "SELECT ip_id,ip FROM OGP_DB_PREFIXremote_server_ips WHERE remote_server_id=".$row['remote_server_id'];
+			$qry_ip = "SELECT ip_id,ip FROM OGP_DB_PREFIXremote_server_ips WHERE remote_server_id=".$db->realEscapeSingle($row['remote_server_id']);
 			$ips = $db->resultQuery($qry_ip);
 
 			foreach($ips as $ip)

modules/simple-billing/skrill-ipn.php

@@ -45,7 +45,7 @@ $cart_price_info = $db->resultQuery( "SELECT price,tax_amount,currency
 									 OGP_DB_PREFIXbilling_orders AS orders  
 									 ON 
 									 orders.cart_id=cart.cart_id
-									 WHERE cart.cart_id=".$cart_id);
+									 WHERE cart.cart_id=".$db->realEscapeSingle($cart_id));
 
 if(!$cart_price_info or empty($cart_price_info))	
 	exit();
@@ -83,11 +83,11 @@ if (strtoupper(md5($concatFields)) == $_POST['md5sig']
 									 OGP_DB_PREFIXbilling_orders AS orders  
 									 ON 
 									 orders.cart_id=cart.cart_id
-									 WHERE cart.cart_id=".$cart_id);
+									 WHERE cart.cart_id=".$db->realEscapeSingle($cart_id));
 
 	$query = "UPDATE " . $table_prefix . "billing_carts
 			  SET paid=1
-			  WHERE cart_id=".$cart_id;
+			  WHERE cart_id=".$db->realEscapeSingle($cart_id);
 					  
 	foreach($user_homes as $user_home)
 	{			
@@ -121,26 +121,26 @@ if (strtoupper(md5($concatFields)) == $_POST['md5sig']
 				}
 				//Set the expiration date to the new order
 				$db->query( "UPDATE " . $table_prefix . "billing_orders
-							 SET end_date='$end_date'
-							 WHERE order_id=".$user_home['order_id']);
+							 SET end_date='" . $db->realEscapeSingle($end_date) . "'
+							 WHERE order_id=".$db->realEscapeSingle($user_home['order_id']));
 							 
 				// Set payment/creation date
 				$date = date('d/m/Y H:i');
 				$db->query( "UPDATE OGP_DB_PREFIXbilling_carts
-							 SET date='$date'
+							 SET date='" . $db->realEscapeSingle($date) . "'
 							 WHERE cart_id=".$cart_id);
 			}
 			
 			$services = $db->resultQuery( "SELECT * 
 										   FROM OGP_DB_PREFIXbilling_services
-										   WHERE service_id=".$user_home['service_id']);
+										   WHERE service_id=".$db->realEscapeSingle($user_home['service_id']));
 			$service = $services[0];
 			$user_id = $user_home['user_id'];
 			$db->assignHomeTo("user", $user_id, $home_id, $service['access_rights']);
 			
 			$query = "UPDATE " . $table_prefix . "billing_carts
 					  SET paid=3
-					  WHERE cart_id=".$cart_id;
+					  WHERE cart_id=".$db->realEscapeSingle($cart_id);
 		}
 	}
 		
@@ -148,4 +148,4 @@ if (strtoupper(md5($concatFields)) == $_POST['md5sig']
 	$subject = "Payment done.";
 	mymail($panel_settings['skrill_email'], $subject, $body, $panel_settings);
 }
-?>
+?>

modules/simple-billing/skrill.php

@@ -12,7 +12,7 @@ function exec_ogp_module()
 
 	if(!empty($cart_id))
 	{		
-		$orders = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$cart_id );
+		$orders = $db->resultQuery( "SELECT * FROM OGP_DB_PREFIXbilling_orders WHERE cart_id=".$db->realEscapeSingle($cart_id) );
 		if( !empty( $orders ) )
 		{
 			$cart['price'] = 0;
@@ -34,7 +34,7 @@ function exec_ogp_module()
 			{
 				$db->query("UPDATE " . $table_prefix . "billing_carts
 												SET paid=1
-												WHERE cart_id=".$cart_id);
+												WHERE cart_id='".$db->realEscapeSingle($cart_id) . "'");
 				$view->refresh("home.php?m=simple-billing&p=cart",0);
 			}
 			else