<?php echo htmlspecialchars($item["name"]); ?>

prepare("SELECT * FROM catalog WHERE id = :id"); $q->bindParam(':id',$id,PDO::PARAM_INT); $q->execute(); $item = $q->fetch(); $itemUser = new User($con, $item['creator']); if(!$item) { header('location: /error?err=404'); exit; } if($loggedIn == true) { if($_POST['submit'] ?? "No" == "Yes") { if($user->getMoney('false') >= htmlspecialchars($item["price"])) { $q = $con->prepare("UPDATE users SET money=money-:price WHERE id=:id"); $q->bindParam(':id',$_SESSION['user'],PDO::PARAM_INT); $q->bindParam(':price',$item['price'],PDO::PARAM_INT); $q->execute(); } } } ?> header(); ?> <?php echo htmlspecialchars($item["name"]); ?> | <?php echo $sitename; ?>

Limited'; }; ?>

" src="getAvatar())) {echo htmlspecialchars($itemUser->getAvatar()); } ?>">

getUsername(); ?>

Price: @

Description:

Type:

Sales:

soon commentz

Trades comin' soon...

getMoney('false') >= htmlspecialchars($item["price"])) { echo ' '; } else { echo ' '; } } ?> footer(); ?>