Linux ns8.secondary29.go.th 2.6.32-754.28.1.el6.x86_64 #1 SMP Wed Mar 11 18:38:45 UTC 2020 x86_64
Apache/2.2.15 (CentOS)
: 122.154.134.11 | : 122.154.134.9
Cant Read [ /etc/named.conf ]
5.6.40
apache
www.github.com/MadExploits
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
CPANEL RESET
CREATE WP USER
README
+ Create Folder
+ Create File
/
var /
www /
html /
amss /
modules /
book /
main /
[ HOME SHELL ]
Name
Size
Permission
Action
book_delay.php
14.43
KB
-rw-r--r--
bookdetail.php
13.23
KB
-rwxr-xr-x
bookdetail_group.php
20.9
KB
-rwxr-xr-x
bookdetail_khet_person.php
16.14
KB
-rwxr-xr-x
bookdetail_khet_total.php
11.85
KB
-rwxr-xr-x
bookdetail_khet_total_2.php
11.87
KB
-rw-r--r--
bookdetail_saraban.php
18.39
KB
-rwxr-xr-x
bookdetail_school_person.php
13.71
KB
-rwxr-xr-x
bookdetail_school_saraban.php
20.33
KB
-rwxr-xr-x
bookdetail_school_total.php
10.3
KB
-rwxr-xr-x
bookdetail_school_total_2.php
10.69
KB
-rw-r--r--
booksenddetail.php
9.98
KB
-rwxr-xr-x
booksenddetail_2.php
10.38
KB
-rw-r--r--
group.php
5.46
KB
-rwxr-xr-x
group_member.php
4.19
KB
-rwxr-xr-x
group_member_report.php
2.68
KB
-rwxr-xr-x
livesearch.php
742
B
-rwxr-xr-x
livesearch_2.php
744
B
-rwxr-xr-x
livesearch_3.php
681
B
-rwxr-xr-x
move_book.php
6.11
KB
-rw-r--r--
person_chk.php
859
B
-rwxr-xr-x
receive.php
27.38
KB
-rw-r--r--
receive.php-OLD
26.39
KB
-rwxr-xr-x
receive.php==1
25.38
KB
-rwxr-xr-x
receive00.php
25.8
KB
-rwxr-xr-x
receive11.php
26.13
KB
-rwxr-xr-x
receive_mobile.php
23.72
KB
-rwxr-xr-x
report_1.php
13.08
KB
-rw-r--r--
report_2.php
13.21
KB
-rw-r--r--
select_send.php
9.07
KB
-rwxr-xr-x
select_send_2.php
8.78
KB
-rwxr-xr-x
send.php
41.59
KB
-rw-r--r--
send.php--1
35.79
KB
-rwxr-xr-x
send.php-OLD
40.13
KB
-rwxr-xr-x
send.php.save
38.56
KB
-rwxr-xr-x
send.php_bkkk
38.48
KB
-rwxr-xr-x
send_2.php
15.54
KB
-rwxr-xr-x
send_mobile.php
33.85
KB
-rwxr-xr-x
send_sch_2.php
11.96
KB
-rwxr-xr-x
sendto_show.php
2.31
KB
-rwxr-xr-x
z.php
248
B
-rw-r--r--
Delete
Unzip
Zip
${this.title}
Close
Code Editor : send_2.php
<script type="text/javascript" src="./css/js/calendarDateInput2.js"></script> <?php /** ensure this file is being included by a parent file */ defined( '_VALID_' ) or die( 'Direct Access to this location is not allowed.' ); require_once "modules/book/time_inc.php"; $user_db=$user; $user=$_SESSION['login_user_id']; if(!(isset($_GET['id']))){ $_GET['id']=""; } $sql="select * from bookregister_send where ms_id='$_GET[id]' "; $dbquery = mysqli_query($connect,$sql); $result_ref = mysqli_fetch_array($dbquery); $_SESSION ['ref_id_2'] = $result_ref['ref_id']; echo "<br />"; //ส่วนฟอร์มรับข้อมูล if($index==1){ echo "<form Enctype = multipart/form-data id='frm1' name='frm1'>"; echo "<Center>"; echo "<Font color='#006666' Size=3><B>ส่งหนังสือราชการ</Font>"; echo "</Cener>"; echo "<Br>"; echo "<table border='1' width='700' id='table1' style='border-collapse: collapse' bordercolor='#C0C0C0'>"; echo "<tr bgcolor='#003399'>"; echo "<td colspan='4' height='23' align='left'><font size='2' color='#FFFFFF'> กรุณาระบุรายละเอียด</font></td>"; echo "</tr>"; // *ผู้ส่งเป็น สพท. if($_SESSION['login_status']<=4){ echo "<tr>"; echo "<td width='94' align='right'><span lang='th'><font size='2' color='#0000FF'>จาก </font></span></td>"; echo "<td width='514' colspan='3' align='left'>"; $sql_workgroup= "select * from system_workgroup"; $dbquery_workgroup = mysqli_query($connect,$sql_workgroup); While ($result_workgroup = mysqli_fetch_array($dbquery_workgroup)){ if($result_workgroup['workgroup']==$result_ref['workgroup']){ echo " <input type='radio' name='workgroup' value='$result_workgroup[workgroup]' checked> $result_workgroup[workgroup_desc]<br>"; } else{ echo " <input type='radio' name='workgroup' value='$result_workgroup[workgroup]'> $result_workgroup[workgroup_desc]<br>"; } } echo "</td>"; echo "</tr>"; echo "<tr>"; echo "<td width='94' align='right'><font size='2' color='#0000FF'>ถึง </font></span></td>"; echo "<td colspan='3' align='left'> <input type='radio' value='all' name='sendto'> สถานศึกษารัฐบาลทุกแห่ง"; echo "<br> <input type='radio' value='some' name='sendto' onClick=\"window.open('modules/book/main/select_send_2.php?sd_index=some','PopUp','width=900,height=600,scrollbars,status'); \"> สถานศึกษาบางแห่ง"; $sql_group= "select * from book_group"; $dbquery_group = mysqli_query($connect,$sql_group); While ($result_group = mysqli_fetch_array($dbquery_group)){ echo "<br> <input type='radio' name='sendto' value='$result_group[grp_id]' onClick=\"window.open('modules/book/main/select_send_2.php?sd_index=$result_group[grp_id]','PopUp','width=900,height=600,scrollbars,status'); \"> $result_group[grp_name]"; } echo "</td></tr>"; } //end * echo "<tr>"; echo "<td align='right'><span lang='th'><font size='2' color='#0000FF'>ระดับความสำคัญ </font></span></td>"; echo "<td colspan='3' align='left'> <input type='radio' name='level' value='1' checked><font size='2' color='#006600'>ปกติ</font><span lang='en-us'><font size='2'> </font><input type='radio' name='level' value='2'></span><font size='2'><font color='#780634'>ด่วน</font> </font><input type='radio' name='level' value='3'><font size='2'><font color='#993300'>ด่วนมาก</font> </font><input type='radio' name='level' value='4'><font size='2' color='#FF0000'>ด่วนที่สุด</font></td>"; echo "</tr>"; if($result_ref['secret']==1){ $check_0=""; $check_1="checked"; } else{ $check_0="checked"; $check_1=""; } echo "<tr>"; echo "<td align='right'><span lang='th'><font size='2' color='#0000FF'>ความลับ </font></span></td>"; echo "<td colspan='3' align='left'> <input type='radio' name='secret' value='0' $check_0><font size='2' color='#006600'>ไม่ลับ</font><span lang='en-us'><font size='2'> </font><input type='radio' name='secret' value='1' $check_1><font size='2' color='#FF0000'>ลับ</font></td>"; echo "</tr>"; echo "<tr>"; echo "<td align='right'><span lang='th'><font size='2' color='#0000FF'>เลขที่หนังสือ </font></span></td><td> <FONT SIZE='2' COLOR=''></FONT><input type='text' name='bookno' size='20' value='$result_ref[book_no]' style='background-color: #99ccff'> ลงวันที่</td>"; echo "<td colspan='2' align='left'>"; $f_date=explode("-", $result_ref['signdate']); $y_year=$f_date[0]; $m_year=$f_date[1]; $d_year=$f_date[2]; ?> <script> var Y_date var y_year=<?php echo $y_year;?> var m_year=<?php echo $m_year;?> var d_year=<?php echo $d_year;?> Y_date= y_year+'/'+m_year+'/'+d_year DateInput('signdate', true, 'YYYY-MM-DD' ,Y_date) </script> <?php echo "</td>"; echo "</tr>"; echo "<tr>"; echo "<td align='right'><span lang='th'><font size='2' color='#0000FF'>เรื่อง </font></span></td>"; echo "<td colspan='3' align='left'> <input type='text' name='subject' size='76' style='background-color: #99ccff' value='$result_ref[subject]'></td>"; echo "</tr>"; echo "<tr>"; echo "<td width='94' align='right' height='47'><span lang='th'><font size='2' color='#0000FF'>เนื้อหาโดยสรุป </font></span></td>"; echo "<td height='47' width='514' colspan='3' align='left'> <textarea rows='5' name='detail' cols='55' style='background-color: #99ccff' ></textarea></td>"; echo "</tr>"; $sql = "select * from bookregister_send_filebook where ref_id='$result_ref[ref_id]' order by id"; $dbquery = mysqli_query($connect,$sql); $file_name[1]=""; $file_name[2]=""; $file_name[3]=""; $file_name[4]=""; $file_name[5]=""; $file_number[1]=""; $file_number[2]=""; $file_number[3]=""; $file_number[4]=""; $file_number[5]=""; while($result_file = mysqli_fetch_array($dbquery)){ $file=$result_file['file_name']; $file1=explode("_", $file); $file2=explode(".", $file1[1]); $file3=$file2[0]; if($file3==1){ $file_name[1]=$file; $file_number[1]=$result_file['file_des']; } else if($file3==2){ $file_name[2]=$file; $file_number[2]=$result_file['file_des']; } else if($file3==3){ $file_name[3]=$file; $file_number[3]=$result_file['file_des']; } else if($file3==4){ $file_name[4]=$file; $file_number[4]=$result_file['file_des']; } else if($file3==5){ $file_name[5]=$file; $file_number[5]=$result_file['file_des']; } } echo "<tr>"; echo "<td width='371' align='right' colspan='2'><p align='center'><font size='2' color='#800000'>ไฟล์แนบ</font></td>"; echo "<td width='238' align='center' colspan='2'><p align='center'><font size='2' color='#800000'>คำอธิบายไฟล์</font></td>"; echo "</tr>"; echo "<tr>"; echo "<td width='94' align='right'><font size='2' color='#0000FF'>ไฟล์แนบ 1 </font></td>"; echo "<td width='274' align='left' bgcolor='#E5E5FF'> $file_name[1]</td>"; echo "<td width='238' align='left' colspan='2' bgcolor='#E5E5FF'>$file_number[1]</td>"; echo "</tr>"; echo "<tr>"; echo "<td width='94' align='right'><font size='2' color='#0000FF'>ไฟล์แนบ 2 </font></td>"; echo "<td width='274' align='left' bgcolor='#E5E5FF'> $file_name[2]</td>"; echo "<td width='238' align='left' colspan='2' bgcolor='#E5E5FF'>$file_number[2]</td>"; echo "</tr>"; echo "<tr>"; echo "<td width='94' align='right'><font size='2' color='#0000FF'>ไฟล์แนบ 3 </font></td>"; echo "<td width='274' align='left' bgcolor='#E5E5FF'> $file_name[3]</td>"; echo "<td width='238' align='left' colspan='2' bgcolor='#E5E5FF'>$file_number[3]</td>"; echo "</tr>"; echo "<tr>"; echo "<td width='94' align='right'><font size='2' color='#0000FF'>ไฟล์แนบ 4 </font></td>"; echo "<td width='274' align='left' bgcolor='#E5E5FF'> $file_name[4]</td>"; echo "<td width='238' align='left' colspan='2' bgcolor='#E5E5FF'>$file_number[4]</td>"; echo "</tr>"; echo "<tr>"; echo "<td width='94' align='right'><font size='2' color='#0000FF'>ไฟล์แนบ 5 </font></td>"; echo "<td width='274' align='left' bgcolor='#E5E5FF'> $file_name[5]</td>"; echo "<td width='238' align='left' colspan='2' bgcolor='#E5E5FF'>$file_number[5]</td>"; echo "</tr>"; echo "<input name='ref_id' type='hidden' value='$result_ref[ref_id]'>"; echo "<tr>"; echo "<td align='center' colspan='4'><BR><INPUT TYPE='button' name='smb' id='smb' value='ตกลง' onclick='goto_url(1)'> <input type='button' value='กลับไปทะเบียนหนังสือส่ง' name='smb' onclick='goto_url(0)'></td>"; echo "</tr>"; echo "</Table>"; echo "</form>"; } //ส่วนบันทึกข้อมูล if($index==4){ if(!(isset($_POST['sendto']))){ $_POST['sendto']=""; } //ตรวจสอบว่ามีผู้รับหรือยัง สำหรับสพท.ส่ง // *** if($_SESSION['login_status']<=4){ $sql_send_num = mysqli_query($connect,"SELECT * FROM book_sendto_answer WHERE ref_id='$_POST[ref_id]' ") ; $send_num = mysqli_num_rows ($sql_send_num) ; if ($send_num==0 and $_POST['sendto']!='all') { echo "<div align='center'>"; echo "<B><FONT SIZE=2 COLOR=#990000>ยังไม่ได้ระบุผู้รับหนังสือ</FONT></B><BR><BR>" ; echo " <input type=\"button\" value=\" แก้ไข \" onClick=\"javascript:history.go(-1)\" ></CENTER>" ; echo "</div>"; exit () ; } } //end *** //ส่วนการบันทึก $day_now=date("Y-m-d H:i:s"); $book_type=1; //ผู้ส่งคือสพท //ตรวจสอบ ref_id if(!(isset($_POST['ref_id']))){ echo "<script>alert('มีข้อผิดพลาดเกี่ยวกับเลขอ้างอิงในระบบ ยกเลิกการส่งหนังสือในครั้งนี้ กรุณาส่งใหม่อีกครั้ง'); document.location.href='?option=book&task=main/send&index=1';</script>"; exit(); } if($_POST['ref_id']==""){ echo "<script>alert('มีข้อผิดพลาดเกี่ยวกับเลขอ้างอิงในระบบ ยกเลิกการส่งหนังสือในครั้งนี้ กรุณาส่งใหม่อีกครั้ง'); document.location.href='?option=book&task=main/send&index=1';</script>"; exit(); } $sql = "insert into book_main (book_type, office, sender, level, secret, bookno, signdate, subject, detail, ref_id, send_date, bookregis_link) values ('$book_type', $_POST[workgroup], '$user', '$_POST[level]', '$_POST[secret]', '$_POST[bookno]', '$_POST[signdate]','$_POST[subject]','$_POST[detail]','$_POST[ref_id]','$day_now', '1')"; $dbquery = mysqli_query($connect,$sql); // **ส่วนของการย้ายข้อมูลไป amssplus_reserve $connect_reserve=@mysqli_connect($hostname,$user_db,$password,'amssplus_reserve'); if($connect_reserve){ mysqli_query($connect_reserve,"SET NAMES utf8"); $date_now=date('Y-m-d'); $f_date_now=explode("-", $date_now); $y_date[0]=$f_date_now[0]-2; //ย้อนหลัง 2 ปี $previous_date=$y_date[0]."-".$f_date_now[1]."-".$f_date_now[2]." "." 00:00:00"; $sql= "select * from book_main where send_date<'$previous_date' limit 50"; $dbquery_bookmain = mysqli_query($connect,$sql); While ($result_bookmain = mysqli_fetch_array($dbquery_bookmain)){ $answer_del=0; $file_del=0; $sql = "insert into book_main (book_type, sender, office, level, secret, bookno, signdate, subject, detail, ref_id, send_date,bookregis_link) values ('$result_bookmain[1]','$result_bookmain[2]', '$result_bookmain[3]','$result_bookmain[4]', '$result_bookmain[5]', '$result_bookmain[6]', '$result_bookmain[7]','$result_bookmain[8]','$result_bookmain[9]','$result_bookmain[10]','$result_bookmain[11]','$result_bookmain[12]')"; if($dbquery = mysqli_query($connect_reserve,$sql)){ //book_sendto_answer $sql= "select * from book_sendto_answer where ref_id='$result_bookmain[ref_id]' "; $dbquery_ref = mysqli_query($connect,$sql); While ($result_ref = mysqli_fetch_array($dbquery_ref)){ $sql_ref2 = "insert into book_sendto_answer (send_level,ref_id,send_to,school,status,answer,answer_time,forward_from,rec_forward_date) values ('$result_ref[1]','$result_ref[2]','$result_ref[3]','$result_ref[4]','$result_ref[5]','$result_ref[6]','$result_ref[7]','$result_ref[8]','$result_ref[9]')"; if($dbquery_ref_2 = mysqli_query($connect_reserve,$sql_ref2)){ $answer_del=1; }//end if }//end while //book_filebook $sql= "select * from book_filebook where ref_id='$result_bookmain[ref_id]' "; $dbquery_ref3 = mysqli_query($connect,$sql); While ($result_ref3= mysqli_fetch_array($dbquery_ref3)){ $sql_ref4 = "insert into book_filebook (ref_id,file_name,file_des) values ('$result_ref3[1]','$result_ref3[2]','$result_ref3[3]')"; if($dbquery_ref_4 = mysqli_query($connect_reserve,$sql_ref4)){ $file_del=1; }//end if }//end while } //end if //ลบข้อมูล if($answer_del==1){ $sql = "delete from book_sendto_answer where ref_id='$result_bookmain[ref_id]' "; $dbquery = mysqli_query($connect,$sql); } if($file_del==1){ $sql = "delete from book_filebook where ref_id='$result_bookmain[ref_id]' "; $dbquery = mysqli_query($connect,$sql); } $sql = "delete from book_main where ref_id='$result_bookmain[ref_id]' "; $dbquery = mysqli_query($connect,$sql); } //end while main mysqli_close($connect_reserve); } // ** //สำหรับสพท if($_SESSION['login_status']<=4){ if($_POST['sendto']=='all') { $sql_sendto = "select school_code from system_school where school_type='1' order by school_type,school_code"; $dbquery_sendto = mysqli_query($connect,$sql_sendto); While ($result_sendto = mysqli_fetch_array($dbquery_sendto)){ $sql= "insert into book_sendto_answer (send_level, ref_id, send_to) values ('1', '$_POST[ref_id]','$result_sendto[school_code]')"; $dbquery = mysqli_query($connect,$sql); } } } echo "<script>document.location.href='?option=book&task=main/send'</script>\n"; } //end index4 ?> <script> function goto_url(val){ if(val==0){ callfrm("?option=bookregister&task=main/send"); // page ย้อนกลับ }else if(val==1){ var v2 = document.frm1.subject.value; var v3 = document.frm1.detail.value; var w_group=document.getElementsByName("workgroup"); var wg=0; for(i=0;i<w_group.length;i++){ if(w_group[i].checked==true){ wg=1; } } if (wg==0) { alert("กรุณาเลือกผู้ส่ง (จาก)"); } else if (document.frm1.bookno.value=="") { alert("กรุณากรอกเลขที่หนังสือ"); document.frm1.bookno.focus(); } else if (v2.length==0) { alert("กรุณากรอกชื่อเรื่อง"); document.frm1.subject.focus(); } else if (v3.length==0) { alert("กรุณากรอกเนื้อหาโดยสรุป"); document.frm1.detail.focus(); } else{ document.getElementById("smb").style.display="none"; callfrm("?option=book&task=main/send_2&index=4"); //page ประมวลผล } } } </script>
Close
