I an an officer for an eq2 guild and if someone needs something crafted, we charge only the fuel (if its rare, they supply the rare). It can be a pain sometimes for the new players to determine how much that fuel cost is so i am developing a simple calculator that they can just go to the guild website and use a simple module to with dropdown menus to figure out the cost.
now the question : would other people be interested in this , if so i can throw it on the forum or the downloads section of dragonfly for others to use for thier guild.
Keep in mind, there is no sanitization of variables ($cost,$copper, etc) so this could be exploited.
I can't think of a useful exploit in this particular case (the only possible thing I could think of is some sort of hypothetical overflow flaw in PHP itself that occurs when doing an implicit cast from string to integer), but in principle I'm in agreement with Jeruvy - not validating inputs is bad practice, and you don't want to get into that habit no matter how small the risk may seem.
It is pitch black. You are likely to be eaten by a grue.
Server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS):
Ubuntu 12.04, Atom D525/Apache 2.2.22/MySQL 5.5.38/PHP 5.3.10/Dragonfly 184.108.40.206 CVS