I am using Rocky Temp Ban Everythings Works Fine When i Tempban someone and try to untempban it it say Unbanned successful but didn't Untempban that Guy query is still there in db
Untempban Command
else if( cmd == "untempban" )
{
if( GetLevel( player ) < 10 ) MessagePlayer("[TEMPBAN] You must be admin of lvl 10 to use this command.", player );
else if( !text ) MessagePlayer("[TEMPBAN] / untempban <Fullname>", player);
else if( !IsBanned( text ) ) MessagePlayer("[TEMPBAN]Player is not banned.", player);
else
{
QuerySQL( database, "DELETE TABLE FROM Banned WHERE ban_nick='" + text + "' COLLATE NOCASE" );
Message("Unbanned: [ " + text + " ] by Admin: [ " + player.Name + " ]" );
}
}
That query is wrong, the correct syntax is DELETE FROM Banned. (Remove the TABLE in between).
Also, please sanitize your input. Any admin can just do /untempban ' DELETE FROM Stats --
And your stats table is gone. If it's called that. If not, wouldn't take too long to figure out what it is.
Use mysql_escape_string( string )
Thanks Thijn
Topic Lock