Linux ns8.secondary29.go.th 2.6.32-754.28.1.el6.x86_64 #1 SMP Wed Mar 11 18:38:45 UTC 2020 x86_64
Apache/2.2.15 (CentOS)
: 122.154.134.11 | : 122.154.134.9
Cant Read [ /etc/named.conf ]
5.6.40
apache
www.github.com/MadExploits
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
CPANEL RESET
CREATE WP USER
README
+ Create Folder
+ Create File
/
var /
www /
html /
amss /
modules /
building /
main /
[ HOME SHELL ]
Name
Size
Permission
Action
affair.php
13.31
KB
-rw-r--r--
b_pic.php
5.98
KB
-rw-r--r--
building_building.php
16.72
KB
-rw-r--r--
building_building_report.php
5.4
KB
-rw-r--r--
building_fix.php
15.92
KB
-rw-r--r--
building_fix_report.php
6.52
KB
-rw-r--r--
building_heavy.php
16
KB
-rw-r--r--
building_heavy_report.php
6.55
KB
-rw-r--r--
building_main.php
30.9
KB
-rw-r--r--
category.php
6.52
KB
-rw-r--r--
livesearch_2.php
659
B
-rw-r--r--
livesearch_3.php
667
B
-rw-r--r--
livesearch_4.php
667
B
-rw-r--r--
model.php
15.4
KB
-rw-r--r--
pic_show.php
709
B
-rw-r--r--
report_1.php
13.61
KB
-rw-r--r--
report_1_mobile.php
12.38
KB
-rw-r--r--
report_affair.php
5.02
KB
-rw-r--r--
report_affair_mobile.php
4.87
KB
-rw-r--r--
report_affair_web.php
5.31
KB
-rw-r--r--
return_ajax_cate.php
614
B
-rw-r--r--
return_ajax_type.php
620
B
-rw-r--r--
Delete
Unzip
Zip
${this.title}
Close
Code Editor : building_building.php
<?php /** ensure this file is being included by a parent file */ defined( '_VALID_' ) or die( 'Direct Access to this location is not allowed.' ); if($result_permission['p3']!=1){ exit(); } $officer=$_SESSION['login_user_id']; require_once "modules/building/time_inc.php"; ?> <script type="text/javascript" src="jquery/jquery-1.5.1.js"></script> <script type="text/javascript"> function showResult(str) { if (str.length==0) { document.getElementById("livesearch").innerHTML=""; document.getElementById("livesearch").style.border="0px"; return; } if (window.XMLHttpRequest) { // code for IE7+, Firefox, Chrome, Opera, Safari xmlhttp=new XMLHttpRequest(); } else { // code for IE6, IE5 xmlhttp=new ActiveXObject("Microsoft.XMLHTTP"); } xmlhttp.onreadystatechange=function() { if (this.readyState==4 && this.status==200) { document.getElementById("livesearch").innerHTML=this.responseText; document.getElementById("livesearch").style.border="1px solid #A5ACB2"; } } xmlhttp.open("GET","modules/building/main/livesearch_2.php?q="+str+"&return_file=building_building",true); xmlhttp.send(); } function showResult2(str) { if (str.length==0) { document.getElementById("livesearch2").innerHTML=""; document.getElementById("livesearch2").style.border="0px"; return; } if (window.XMLHttpRequest) { // code for IE7+, Firefox, Chrome, Opera, Safari xmlhttp=new XMLHttpRequest(); } else { // code for IE6, IE5 xmlhttp=new ActiveXObject("Microsoft.XMLHTTP"); } xmlhttp.onreadystatechange=function() { if (this.readyState==4 && this.status==200) { document.getElementById("livesearch2").innerHTML=this.responseText; document.getElementById("livesearch2").style.border="1px solid #A5ACB2"; } } xmlhttp.open("GET","modules/building/main/livesearch_3.php?q="+str+"&return_file=building_building",true); xmlhttp.send(); } </script> <?php if(!(isset($_REQUEST['school_code']))){ $_REQUEST['school_code']=""; } //ส่วนหัว echo "<br />"; if(!(($index==1) or ($index==2) or ($index==5))){ echo "<table width='50%' border='0' align='center'>"; echo "<tr align='center'><td><font color='#006666' size='3'><strong>ข้อมูลงบสิ่งก่อสร้างโรงเรียน</strong></font></td></tr>"; echo "</table>"; } //ส่วนฟอร์มรับข้อมูล if($index==1){ echo "<Table width='80%' align='center'>"; echo "<tr><td>"; echo "<fieldset>"; echo "<legend> <B>กรอกข้อมูล</B>: </legend>"; echo "<form id='frm1' name='frm1'>"; echo "<Center>"; echo "<Font color='#006666' Size='3'><B>รายการงบสิ่งก่อสร้างโรงเรียน</B></Font>"; echo "</Cener>"; echo "<Br>"; echo "<Table width='80%' Border='0' align='center'>"; $sql = "select get_year from building_building order by id desc limit 1"; $dbquery = mysqli_query($connect,$sql); $result_ref = mysqli_fetch_array($dbquery); if(!($result_ref['get_year'])){ $result_ref['get_year']=""; } if(isset($_GET['school_code'])){ $result_ref['school_code']=$_GET['school_code']; } echo "<Tr align='left'><Td ></Td><Td align='right'>สถานศึกษา </Td><Td>"; echo "<Select name='school_code' size='1'>"; echo "<option value = ''>เลือก</option>" ; $sql = "select * from system_school where school_type='1' order by school_code"; $dbquery = mysqli_query($connect,$sql); While ($school_result = mysqli_fetch_array($dbquery)){ if($school_result['school_code']==$result_ref['school_code']){ echo "<option value ='$school_result[school_code]' selected>$school_result[school_code] $school_result[school_name]</option>" ; } else{ echo "<option value ='$school_result[school_code]'>$school_result[school_code] $school_result[school_name]</option>" ; } } echo "</select>"; ?> ค้นหาโรงเรียน <input type="text" size="15" onkeyup="showResult2(this.value)"> <div id="livesearch2"></div> <?php echo "</Td></Tr>"; echo "<Tr align='left'><Td ></Td><Td align='right'>"; echo "ปีงบประะมาณที่ได้รับงบ "; echo "</Td><Td>"; echo "<Input Type='Text' Name='get_year' Size='4' maxlength='4' value='$result_ref[get_year]'>"; echo "</Td></Tr>"; echo "<Tr align='left'><Td ></Td><Td align='right'>"; echo "รายการสิ่งก่อสร้าง "; echo "</Td><Td>"; echo "<Input Type='Text' Name='item' Size='50'>"; echo "</Td></Tr>"; echo "<Tr align='left'><Td ></Td><Td align='right'>"; echo "จำนวนเงิน "; echo "</Td><Td>"; echo "<Input Type='Text' Name='budget' Size='10'> บาท"; echo "</Td></Tr>"; echo "<Tr align='left'><Td ></Td><Td align='right'>ข้อมูลเพิ่มเติม </Td><Td><Input Type='Text' Name='other' Size='50'> (ถ้ามี)</Td></Tr>"; echo "<Br>"; echo "</Table>"; echo "<Br>"; echo "<INPUT TYPE='button' name='smb' value='ตกลง' onclick='goto_url(1)'> <INPUT TYPE='button' name='back' value='ย้อนกลับ' onclick='goto_url(0)'>"; echo "</form>"; echo "</fieldset>"; echo "</td></tr>"; echo "</table>"; } //ส่วนยืนยันการลบข้อมูล if($index==2) { echo "<table width='500' border='0' align='center'>"; echo "<tr><td align='center'><font color='#990000' size='4'>โปรดยืนยันความต้องการลบข้อมูลอีกครั้ง</font><br></td></tr>"; echo "<tr><td align=center>"; echo "<INPUT TYPE='button' name='smb' value='ยืนยัน' onclick='location.href=\"?option=building&task=main/building_building&index=3&id=$_GET[id]\"'> <INPUT TYPE='button' name='back' value='ยกเลิก' onclick='location.href=\"?option=building&task=main/building_building\"'"; echo "</td></tr></table>"; } //ส่วนลบข้อมูล if($index==3){ $sql = "delete from building_building where id='$_GET[id]'"; $dbquery = mysqli_query($connect,$sql); } //ส่วนบันทึกข้อมูล if($index==4){ $rec_date = date("Y-m-d"); $sql = "insert into building_building(school_code,get_year,item,budget,other,officer,rec_date) values ('$_POST[school_code]', '$_POST[get_year]','$_POST[item]','$_POST[budget]','$_POST[other]','$officer','$rec_date')"; $dbquery = mysqli_query($connect,$sql); } //ส่วนฟอร์มแก้ไขข้อมูล if($index==5){ $sql = "select * from building_building where id='$_GET[id]' "; $dbquery = mysqli_query($connect,$sql); $result_ref = mysqli_fetch_array($dbquery); echo "<Table width='60%' align='center'>"; echo "<tr><td>"; echo "<fieldset>"; echo "<legend> <B>แก้ไขข้อมูล</B>: </legend>"; echo "<form id='frm1' name='frm1'>"; echo "<Table width='80%' Border='0' align='center'>"; echo "<Tr align='left'><Td ></Td><Td align='right'>สถานศึกษา </Td><Td>"; echo "<Select name='school_code' size='1'>"; echo "<option value = ''>เลือก</option>" ; $sql = "select * from system_school where school_type='1' order by school_code"; $dbquery = mysqli_query($connect,$sql); While ($school_result = mysqli_fetch_array($dbquery)){ if($school_result['school_code']==$result_ref['school_code']){ echo "<option value ='$school_result[school_code]' selected>$school_result[school_code] $school_result[school_name]</option>" ; } else{ echo "<option value ='$school_result[school_code]'>$school_result[school_code] $school_result[school_name]</option>" ; } } echo "</select>"; echo "</Td></Tr>"; echo "<Tr align='left'><Td ></Td><Td align='right'>"; echo "ปีงบประะมาณที่ได้รับงบ "; echo "</Td><Td>"; echo "<Input Type='Text' Name='get_year' Size='4' maxlength='4' value='$result_ref[get_year]'>"; echo "</Td></Tr>"; echo "<Tr align='left'><Td ></Td><Td align='right'>"; echo "รายการสิ่งก่อสร้าง "; echo "</Td><Td>"; echo "<Input Type='Text' Name='item' Size='50' value='$result_ref[item]'>"; echo "</Td></Tr>"; echo "<Tr align='left'><Td ></Td><Td align='right'>"; echo "จำนวนเงิน "; echo "</Td><Td>"; echo "<Input Type='Text' Name='budget' Size='10' value='$result_ref[budget]'> บาท"; echo "</Td></Tr>"; echo "<Tr align='left'><Td ></Td><Td align='right'>ข้อมูลเพิ่มเติม </Td><Td><Input Type='Text' Name='other' Size='50' value='$result_ref[other]'></Td></Tr>"; echo "<Br>"; echo "</Table>"; echo "<Br>"; echo "<div align='center'>"; echo "<INPUT TYPE='Hidden' name='id' value='$_GET[id]'>"; echo "<INPUT TYPE='button' name='smb' value='ตกลง' onclick='goto_url_update(1)'> <INPUT TYPE='button' name='back' value='ย้อนกลับ' onclick='goto_url_update(0)'>"; echo "</div>"; echo "</form>"; echo "</fieldset>"; echo "</td></tr>"; echo "</table>"; } //ส่วนปรับปรุงข้อมูล if ($index==6){ $rec_date = date("Y-m-d"); $sql = "update building_building set school_code='$_POST[school_code]', get_year='$_POST[get_year]', item='$_POST[item]', budget='$_POST[budget]', other='$_POST[other]', officer='$officer', rec_date='$rec_date' where id='$_POST[id]'"; $dbquery = mysqli_query($connect,$sql); } //ส่วนแสดงผล if(!(($index==1) or ($index==2) or ($index==5) or ($index==7))){ //ส่วนของการแยกหน้า if($_REQUEST['school_code']==""){ $sql = "select *,building_building.id from building_building left join system_school on building_building.school_code=system_school.school_code"; } else{ $sql = "select *,building_building.id from building_building left join system_school on building_building.school_code=system_school.school_code where building_building.school_code='$_REQUEST[school_code]' "; } $dbquery= mysqli_query($connect,$sql); $num_rows=mysqli_num_rows($dbquery); $pagelen=20; // กำหนดแถวต่อหน้า $url_link="option=building&task=main/building_building"; $totalpages=ceil($num_rows/$pagelen); if(!(isset($_REQUEST['page']))){ $_REQUEST['page']=""; } if($_REQUEST['page']==""){ $page=$totalpages; if($page<2){ $page=1; } } else{ if($totalpages<$_REQUEST['page']){ $page=$totalpages; if($page<1){ $page=1; } } else{ $page=$_REQUEST['page']; } } $start=($page-1)*$pagelen; if(($totalpages>1) and ($totalpages<16)){ echo "<div align=center>"; echo "หน้า "; for($i=1; $i<=$totalpages; $i++) { if($i==$page){ echo "[<b><font size=+1 color=#990000>$i</font></b>]"; } else { echo "<a href=$PHP_SELF?$url_link&page=$i>[$i]</a>"; } } echo "</div>"; } if($totalpages>15){ if($page <=8){ $e_page=15; $s_page=1; } if($page>8){ if($totalpages-$page>=7){ $e_page=$page+7; $s_page=$page-7; } else{ $e_page=$totalpages; $s_page=$totalpages-15; } } echo "<div align=center>"; if($page!=1){ $f_page1=$page-1; echo "<<a href=$PHP_SELF?$url_link&page=1>หน้าแรก </a>"; echo "<<<a href=$PHP_SELF?$url_link&page=$f_page1>หน้าก่อน </a>"; } else { echo "หน้า "; } for($i=$s_page; $i<=$e_page; $i++){ if($i==$page){ echo "[<b><font size=+1 color=#990000>$i</font></b>]"; } else { echo "<a href=$PHP_SELF?$url_link&page=$i>[$i]</a>"; } } if($page<$totalpages) { $f_page2=$page+1; echo "<a href=$PHP_SELF?$url_link&page=$f_page2> หน้าถัดไป</a>>>"; echo "<a href=$PHP_SELF?$url_link&page=$totalpages> หน้าสุดท้าย</a>>"; } echo "</div>"; } //จบแยกหน้า echo "<form id='frm1' name='frm1'>"; echo "<table width='85%' align='center'>"; echo "<tr><td colspan='2' align='right'>"; ?> ค้นหาโรงเรียน <input type="text" size="15" onkeyup="showResult(this.value)"> <div id="livesearch"></div> <?php echo "</td></tr>"; echo "<tr><Td align='left'></Td><td align='right'>"; echo "เลือกโรงเรียน "; echo "<Select name='school_code' size='1' onchange='goto_display(1)'>"; echo '<option value ="" >ทั้งหมด</option>' ; $sql = "select * from system_school"; $dbquery = mysqli_query($connect,$sql); While ($result = mysqli_fetch_array($dbquery)){ if($_REQUEST['school_code']==""){ echo "<option value=$result[school_code]>$result[school_code] $result[school_name]</option>"; } else{ if($_REQUEST['school_code']==$result['school_code']){ echo "<option value=$result[school_code] selected>$result[school_code] $result[school_name]</option>"; } else{ echo "<option value=$result[school_code]>$result[school_code] $result[school_name]</option>"; } } } echo "</select>"; echo "</td></tr></table>"; echo "</form>"; echo "<table width='85%' border='0' align='center'>"; echo "<Tr><Td align='left'><INPUT TYPE='button' name='smb' value='เพิ่มรายการ' onclick='location.href=\"?option=building&task=main/building_building&index=1\"'></Td><td align='right'>"; echo "</td></Tr></Table>"; echo "<table width='85%' border='1' align='center' style='border-collapse: collapse'>"; if($_REQUEST['school_code']==""){ $sql = "select *,building_building.id from building_building left join system_school on building_building.school_code=system_school.school_code order by building_building.id limit $start,$pagelen"; } else{ $sql = "select *,building_building.id from building_building left join system_school on building_building.school_code=system_school.school_code where building_building.school_code='$_REQUEST[school_code]' order by building_building.get_year desc, building_building.id limit $start,$pagelen"; } $dbquery = mysqli_query($connect,$sql); echo "<Tr bgcolor='#ddd' align='center' height='30' class='subHeader'><Td width='60'>ที่</Td><Td>โรงเรียน</Td><td width='100'>ปีงบประมาณ</td><Td>รายการสิ่งก่อสร้าง</Td><Td width='150'>จำนวนเงิน</Td><Td>ข้อมูลเพิ่มเติม</Td><td width='50'>ลบ</td><Td width='50'>แก้ไข</Td></Tr>"; $N=(($page-1)*$pagelen)+1; //*เกี่ยวข้องกับการแยกหน้า $M=1; While ($result = mysqli_fetch_array($dbquery)) { $id = $result['id']; $school_code= $result['school_code']; $school_name= $result['school_name']; $get_year= $result['get_year']; $item= $result['item']; $budget= $result['budget']; $other= $result['other']; $budget=number_format($budget,2); if(($N%2) == 0) $color="#FFFFC"; else $color="#FFFFFF"; echo "<Tr bgcolor='$color' align='center' valign='top'><Td >$N</Td><Td align='left'>$school_name</Td><td>$get_year</td><td align='left'>$item</td><td align='right'>$budget</td><td align='left'>$other</td>"; echo "<td><a href=?option=building&task=main/building_building&id=$id&index=2><img src=./images/drop.png border='0'></a></td>"; echo "<td><a href=?option=building&task=main/building_building&id=$id&index=5><img src=./images/edit.png border='0'></a></Td</Tr>"; $M++; $N++; } } ?> <script> function goto_url(val){ if(val==0){ callfrm("?option=building&task=main/building_building"); }else if(val==1){ if(frm1.school_code.value==""){ alert("กรุณาเลือกสถานศึกษา"); }else if(frm1.get_year.value==""){ alert("กรุณากรอกปีงบประมาณ"); }else if(frm1.budget.value==""){ alert("กรุณากรอกจำนวนเงิน"); }else{ callfrm("?option=building&task=main/building_building&index=4"); //page ประมวลผล } } } function goto_url_update(val){ if(val==0){ callfrm("?option=building&task=main/building_building"); }else if(val==1){ if(frm1.school_code.value==""){ alert("กรุณาเลือกสถานศึกษา"); }else if(frm1.get_year.value==""){ alert("กรุณากรอกปีงบประมาณ"); }else if(frm1.budget.value==""){ alert("กรุณากรอกจำนวนเงิน"); }else{ callfrm("?option=building&task=main/building_building&index=6"); } } } function goto_display(val){ if(val==1){ callfrm("?option=building&task=main/building_building"); } } </script>
Close
