Linux ns8.secondary29.go.th 2.6.32-754.28.1.el6.x86_64 #1 SMP Wed Mar 11 18:38:45 UTC 2020 x86_64
Apache/2.2.15 (CentOS)
: 122.154.134.11 | : 122.154.134.9
Cant Read [ /etc/named.conf ]
5.6.40
apache
www.github.com/MadExploits
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
CPANEL RESET
CREATE WP USER
README
+ Create Folder
+ Create File
/
var /
www /
html /
amss /
modules /
person /
[ HOME SHELL ]
Name
Size
Permission
Action
images
[ DIR ]
drwxr-xr-x
manual
[ DIR ]
drwxr-xr-x
picture
[ DIR ]
drwxrwxrwx
signature
[ DIR ]
drwxr-xr-x
upload
[ DIR ]
drwxrwxrwx
birthday_import.php
4.08
KB
-rw-r--r--
change_status_person.php
11.65
KB
-rwxr-xr-x
change_status_person_sch.php
18.67
KB
-rwxr-xr-x
default.php
258
B
-rwxr-xr-x
delegate_sch.php
15.53
KB
-rwxr-xr-x
export_to_excel.php
1.99
KB
-rwxr-xr-x
getxml_person.php
10.53
KB
-rw-r--r--
getxml_person.phpฯศฏ
8.94
KB
-rwxr-xr-x
index.php
337
B
-rwxr-xr-x
lack_person.php
10.24
KB
-rw-r--r--
livesearch.php
616
B
-rwxr-xr-x
livesearch_2.php
608
B
-rwxr-xr-x
livesearch_3.php
622
B
-rwxr-xr-x
livesearch_4.php
630
B
-rwxr-xr-x
livesearch_mobile.php
623
B
-rwxr-xr-x
menu.php
6.16
KB
-rw-r--r--
menu_mobile.php
960
B
-rwxr-xr-x
permission.php
8.55
KB
-rwxr-xr-x
person.php
19.45
KB
-rwxr-xr-x
person1111.php
16.77
KB
-rwxr-xr-x
person_import.php
4.46
KB
-rwxr-xr-x
person_report1.php
5.5
KB
-rwxr-xr-x
person_report1_mobile.php
1.89
KB
-rwxr-xr-x
person_sch.php
29.12
KB
-rwxr-xr-x
person_sch111.php
25.17
KB
-rwxr-xr-x
person_sch2.php
8.2
KB
-rwxr-xr-x
person_sch_import.php
4.55
KB
-rwxr-xr-x
person_sch_other.php
12.11
KB
-rwxr-xr-x
person_sch_report1.php
12.47
KB
-rwxr-xr-x
person_sch_report1_mobile.php
8.76
KB
-rwxr-xr-x
pic_show.php
1.26
KB
-rwxr-xr-x
pic_show.php~
871
B
-rwxr-xr-x
pic_show_2.php
1.13
KB
-rwxr-xr-x
pic_show_2.php~
871
B
-rwxr-xr-x
position.php
6.36
KB
-rwxr-xr-x
return_ajax_schperson.php
710
B
-rwxr-xr-x
sch_position.php
11.23
KB
-rwxr-xr-x
school.php
3.11
KB
-rwxr-xr-x
signature.php
5.94
KB
-rw-r--r--
signature_show.php
1.33
KB
-rw-r--r--
time_inc.php
955
B
-rw-r--r--
update_picture1.php
1.73
KB
-rwxr-xr-x
update_picture2.php
1.74
KB
-rwxr-xr-x
Delete
Unzip
Zip
${this.title}
Close
Code Editor : person.php
<?php /** ensure this file is being included by a parent file */ defined( '_VALID_' ) or die( 'Direct Access to this location is not allowed.' ); require_once "modules/person/time_inc.php"; ?> <link type="text/css" href="./datepicker_thaiyear/css/ui-lightness/jquery-ui-1.8.10.custom.css" rel="stylesheet" /> <script type="text/javascript" src="./datepicker_thaiyear/js/jquery-1.4.4.min.js"></script> <script type="text/javascript" src="./datepicker_thaiyear/js/jquery-ui-1.8.10.offset.datepicker.min.js"></script> <script type="text/javascript"> $(function () { var d = new Date(); var toDay = d.getDate() + '/' + (d.getMonth() + 1) + '/' + (d.getFullYear() + 543); $("#datepicker-th-1").datepicker({ changeMonth: true, changeYear: true,dateFormat: 'dd/mm/yy', isBuddhist: true, defaultDate: toDay,dayNames: ['อาทิตย์','จันทร์','อังคาร','พุธ','พฤหัสบดี','ศุกร์','เสาร์'], dayNamesMin: ['อา.','จ.','อ.','พ.','พฤ.','ศ.','ส.'], monthNames: ['มกราคม','กุมภาพันธ์','มีนาคม','เมษายน','พฤษภาคม','มิถุนายน','กรกฎาคม','สิงหาคม','กันยายน','ตุลาคม','พฤศจิกายน','ธันวาคม'], monthNamesShort: ['ม.ค.','ก.พ.','มี.ค.','เม.ย.','พ.ค.','มิ.ย.','ก.ค.','ส.ค.','ก.ย.','ต.ค.','พ.ย.','ธ.ค.']}); }); </script> <?php if(!(($_SESSION['admin_person']=="person") or ($_SESSION['login_status']==99) or ($_SESSION['login_status']<=4 and $result_permission['p1']==1))){ exit(); } $officer=$_SESSION['login_user_id']; $sql = "select * from person_position order by position_code"; $dbquery = mysqli_query($connect,$sql); While ($result = mysqli_fetch_array($dbquery)){ $position_ar[$result['position_code']]=$result['position_name']; } $sql = "select * from system_workgroup order by workgroup_order"; $dbquery = mysqli_query($connect,$sql); While ($result = mysqli_fetch_array($dbquery)){ $department_ar[$result['workgroup']]=$result['workgroup_desc']; } echo "<br />"; if(!(($index==1) or ($index==2) or ($index==2.1) or ($index==5))){ echo "<table width='50%' border='0' align='center'>"; echo "<tr align='center'><td><font color='#006666' size='3'><strong>ข้อมูลครูและบุคลากรในสำนักงานเขตพื้นที่การศึกษา (ปัจจุบัน)</strong></font></td></tr>"; echo "</table>"; } //ฟังชั่นupload function file_upload() { $uploaddir = 'modules/person/picture/'; //ที่เก็บไไฟล์ $uploadfile = $uploaddir.basename($_FILES['userfile']['name']); $basename = basename($_FILES['userfile']['name']); $pic_code=$_POST['person_id']; //ลบไฟล์เดิม $exists_file=$uploaddir.$pic_code.substr($basename,-4); if(file_exists($exists_file)){ unlink($exists_file); } if (move_uploaded_file($_FILES['userfile']['tmp_name'], $uploadfile)) { $before_name = $uploaddir.$basename; $changed_name = $uploaddir.$pic_code.substr($basename,-4) ; rename("$before_name" , "$changed_name"); //ลดขนาดภาพ if(substr($basename,-3)=="JPG" or substr($basename,-3)=="jpg"){ $ori_file=$changed_name; $ori_size=getimagesize($ori_file); $ori_w=$ori_size[0]; $ori_h=$ori_size[1]; if($ori_w>500){ $new_w=500; $new_h=round(($new_w/$ori_w)*$ori_h); $ori_img=imagecreatefromjpeg($ori_file); $new_img=imagecreatetruecolor($new_w, $new_h); imagecopyresized($new_img, $ori_img,0,0, 0,0, $new_w, $new_h, $ori_w, $ori_h); $new_file=$ori_file; imagejpeg($new_img, $new_file); imagedestroy($ori_img); imagedestroy($new_img); } } return $changed_name; } } //ส่วนเพิ่มข้อมูล if($index==1){ echo "<form Enctype = multipart/form-data id='frm1' name='frm1'>"; echo "<Center>"; echo "<Font color='#006666' Size=3><B>เพิ่มข้อมูลครูและบุคลากร</B></Font>"; echo "</Cener>"; echo "<Br><Br>"; echo "<Table width='60%' Border='0'>"; echo "<Tr align='left'><Td width=30></Td><Td align='right'>เลขประจำตัวประชาชน </Td><Td><Input Type='Text' Name='person_id' Size='13' maxlenght='13' onkeydown='integerOnly()'></Td></Tr>"; echo "<Tr align='left'><Td width=30></Td><Td align='right'>คำนำหน้าชื่อ </Td><Td><Input Type='Text' Name='prename' Size='15'></Td></Tr>"; echo "<Tr align='left'><Td ></Td><Td align='right'>ชื่อ </Td><Td><Input Type='Text' Name='name' Size='40'></Td></Tr>"; echo "<Tr align='left'><Td ></Td><Td align='right'>นามสกุล </Td><Td><Input Type='Text' Name='surname' Size='40'></Td></Tr>"; echo "<Tr align='left'><Td ></Td><Td align='right'>วันเดือนปีเกิด </Td><Td><Input Type='Text' Name='birthday' id='datepicker-th-1' Size='10'></Td></Tr>"; echo "<Tr align='left'><Td ></Td><Td align='right'>ตำแหน่ง </Td><Td>"; echo "<Select name='position_code' size='1'>"; echo "<option value = ''>เลือก</option>" ; $sql = "select * from person_position order by position_code"; $dbquery = mysqli_query($connect,$sql); While ($person_result = mysqli_fetch_array($dbquery)){ echo "<option value ='$person_result[position_code]'>$person_result[position_code] $person_result[position_name]</option>" ; } echo "</select>"; echo "</Td></Tr>"; echo "<Tr align='left'><Td ></Td><Td align='right'>ลำดับบุคคลในตำแหน่ง </Td><Td><Input Type='Text' Name='person_order' Size='4'></Td></Tr>"; echo "<Tr align='left'><Td ></Td><Td align='right'>กลุ่ม(ถ้ามี) </Td><Td>"; echo "<Select name='department' size='1'>"; echo "<option value = ''>เลือก</option>" ; $sql = "select * from system_workgroup order by workgroup_order"; $dbquery = mysqli_query($connect,$sql); While ($work_group_result = mysqli_fetch_array($dbquery)){ echo "<option value ='$work_group_result[workgroup]'>$work_group_result[workgroup_desc]</option>" ; } echo "</select>"; echo "</Td></Tr>"; echo "<tr align='left'>"; echo "<Td ></Td><td align='right'>ไฟล์รูปภาพ </td>"; echo "<td align='left'><input name = 'userfile' type = 'file'></td>"; echo "</tr>"; echo "<Br>"; echo "</Table>"; echo "<Br>"; echo "<INPUT TYPE='button' name='smb' value='ตกลง' onclick='goto_url(1)'> <INPUT TYPE='button' name='back' value='ย้อนกลับ' onclick='goto_url(0)'>"; echo "</form>"; } //ส่วนยืนยันการลบข้อมูล if($index==2) { echo "<table width='500' border='0' align='center'>"; echo "<tr><td align='center'><font color='#990000' size='4'>โปรดยืนยันความต้องการลบข้อมูลอีกครั้ง</font><br></td></tr>"; echo "<tr><td align=center>"; echo "<INPUT TYPE='button' name='smb' value='ยืนยัน' onclick='location.href=\"?option=person&task=person&index=3&id=$_GET[id]\"'> <INPUT TYPE='button' name='back' value='ยกเลิก' onclick='location.href=\"?option=person&task=person\"'"; echo "</td></tr></table>"; } //ส่วนลบข้อมูล if($index==3){ $sql = "delete from person_main where id=$_GET[id]"; $dbquery = mysqli_query($connect,$sql); } if($index==3.1){ foreach ($_POST as $person_id =>$person_value){ $sql = "delete from person_main where person_id='$person_id'"; $dbquery = mysqli_query($connect,$sql); } } //ส่วนเพิ่มข้อมูล if($index==4){ $rec_date = date("Y-m-d"); if($_POST['birthday']>0){ $_POST['birthday']=getDateEng($_POST['birthday']); } $sql = "select * from person_main where person_id='$_POST[person_id]' "; $dbquery = mysqli_query($connect,$sql); if(mysqli_num_rows($dbquery)>=1){ echo "<br /><div align='center'>มีเลขประจำตัวประชาชนซ้ำกับรายการที่มีอยู่แล้ว ตรวจสอบอีกครั้ง</div>"; exit(); } $basename = basename($_FILES['userfile']['name']); if ($basename!="") { $changed_name = file_upload(); } if(!(isset($changed_name))){ $changed_name=""; } if($_POST['person_order']==""){ $_POST['person_order']=0; } if($_POST['department']==""){ $_POST['department']=0; } $sql = "insert into person_main (person_id,prename,name,surname,position_code,pic,department,status,person_order,officer,rec_date,birthday) values ( '$_POST[person_id]','$_POST[prename]','$_POST[name]','$_POST[surname]','$_POST[position_code]','$changed_name','$_POST[department]','0','$_POST[person_order]','$officer','$rec_date','$_POST[birthday]')"; $dbquery = mysqli_query($connect,$sql); } //ส่วนฟอร์มแก้ไขข้อมูล if ($index==5){ echo "<form Enctype = multipart/form-data id='frm1' name='frm1'>"; echo "<Center>"; echo "<Font color='#006666' Size=3><B>แก้ไขข้อมูลครูและบุคลากร</B></Font>"; echo "</Cener>"; echo "<Br><Br>"; $sql = "select * from person_main where id='$_GET[id]'"; $dbquery = mysqli_query($connect,$sql); $result = mysqli_fetch_array($dbquery); $birthday=$result['birthday']; echo "<Table width='70%' Border='0'>"; echo "<Tr align='left'><Td width=30></Td><Td align='right'>เลขประจำตัวประชาชน </Td><Td><Input Type='Text' Name='person_id' Size='13' maxlenght='13' onkeydown='integerOnly()' value='$result[person_id]'></Td></Tr>"; echo "<Tr align='left'><Td width=30></Td><Td align='right'>คำนำหน้าชื่อ </Td><Td><Input Type='Text' Name='prename' Size='15' value='$result[prename]'></Td></Tr>"; echo "<Tr align='left'><Td ></Td><Td align='right'>ชื่อ </Td><Td><Input Type='Text' Name='name' Size='40' value='$result[name]'></Td></Tr>"; echo "<Tr align='left'><Td ></Td><Td align='right'>นามสกุล </Td><Td><Input Type='Text' Name='surname' Size='40' value='$result[surname]'></Td></Tr>"; if($birthday>0){ $birthday=getDateThai($birthday); } echo "<Tr align='left'><Td ></Td><Td align='right'>วันเดือนปีเกิด </Td><Td><Input Type='Text' Name='birthday' id='datepicker-th-1' Size='10' value='$birthday'></Td></Tr>"; echo "<Tr align='left'><Td ></Td><Td align='right'>ตำแหน่ง </Td><Td>"; echo "<Select name='position_code' size='1'>"; echo "<option value = ''>เลือก</option>" ; $sql = "select * from person_position order by position_code"; $dbquery = mysqli_query($connect,$sql); While ($person_result = mysqli_fetch_array($dbquery)){ if($person_result['position_code']==$result['position_code']){ echo "<option value ='$person_result[position_code]' selected>$person_result[position_name]</option>" ; } else { echo "<option value ='$person_result[position_code]'>$person_result[position_name]</option>" ; } } echo "</select>"; echo "</Td></Tr>"; echo "<Tr align='left'><Td ></Td><Td align='right'>ลำดับบุคคลในตำแหน่ง </Td><Td><Input Type='Text' Name='person_order' Size='4' value='$result[person_order]'></Td></Tr>"; echo "<Tr align='left'><Td ></Td><Td align='right'>กลุ่ม(ถ้ามี) </Td><Td>"; echo "<Select name='department' size='1'>"; echo "<option value = ''>เลือก</option>" ; $sql = "select * from system_workgroup order by workgroup_order"; $dbquery = mysqli_query($connect,$sql); While ($work_group_result = mysqli_fetch_array($dbquery)){ if($work_group_result['workgroup']==$result['department']){ echo "<option value ='$work_group_result[workgroup]' selected>$work_group_result[workgroup_desc]</option>" ; } else{ echo "<option value ='$work_group_result[workgroup]'>$work_group_result[workgroup_desc]</option>" ; } } echo "</select>"; echo "</Td></Tr>"; echo "<tr align='left'>"; echo "<Td ></Td><td align='right'>ไฟล์รูปภาพ </td>"; echo "<td align='left'><input name = 'userfile' type = 'file'></td>"; echo "</tr>"; echo "</Table>"; echo "<Br />"; echo "<Input Type=Hidden Name='id' Value='$_GET[id]'>"; echo "<INPUT TYPE='button' name='smb' value='ตกลง' onclick='goto_url_update(1)'> <INPUT TYPE='button' name='back' value='ย้อนกลับ' onclick='goto_url_update(0)'>"; echo "</form>"; } //ส่วนปรับปรุงข้อมูล if ($index==6){ if($_POST['birthday']>0){ $_POST['birthday']=getDateEng($_POST['birthday']); } $sql = "select * from person_main where person_id='$_POST[person_id]' and id!='$_POST[id]' "; $dbquery = mysqli_query($connect,$sql); if(mysqli_num_rows($dbquery)>=1){ echo "<br /><div align='center'>มีเลขประจำตัวประชาชนซ้ำกับรายการที่มีอยู่แล้ว ตรวจสอบอีกครั้ง</div>"; exit(); } if($_POST['person_order']==""){ $_POST['person_order']=0; } if($_POST['department']==""){ $_POST['department']=0; } $basename = basename($_FILES['userfile']['name']); if ($basename!=""){ $changed_name = file_upload(); if(!(isset($changed_name))){ $changed_name=""; } $sql = "update person_main set person_id='$_POST[person_id]', prename='$_POST[prename]', name='$_POST[name]', surname='$_POST[surname]', pic='$changed_name', position_code='$_POST[position_code]', person_order='$_POST[person_order]',department='$_POST[department]',officer='$officer',birthday='$_POST[birthday]' where id='$_POST[id]'"; } else{ $sql = "update person_main set person_id='$_POST[person_id]', prename='$_POST[prename]', name='$_POST[name]', surname='$_POST[surname]', position_code='$_POST[position_code]', person_order='$_POST[person_order]',department='$_POST[department]',officer='$officer',birthday='$_POST[birthday]' where id='$_POST[id]'"; } $dbquery = mysqli_query($connect,$sql); } //ส่วนการแสดงผล if(!(($index==1) or ($index==2) or ($index==2.1) or ($index==5))){ echo "<form id='frm1' name='frm1'>"; $sql = "select * from person_main where status='0' order by department, position_code,person_order"; $dbquery = mysqli_query($connect,$sql); echo "<table width='95%' border='0' align='center'>"; echo "<Tr><Td colspan='9' align='left'><INPUT TYPE='button' name='smb' value='เพิ่มข้อมูล' onclick='location.href=\"?option=person&task=person&index=1\"'></Td>"; echo "</Tr>"; echo "</Table>"; echo "<table width='95%' border='1' align='center' style='border-collapse: collapse'>"; echo "<Tr bgcolor='#FFCCCC' align='center'><Td width='70'>ที่</Td><Td width='120'>เลขประชาชน</Td><Td width='150'>ชื่อ</Td><Td width='100'>วดป เกิด</Td><Td width='300'>ตำแหน่ง</Td><Td width='50'>ลำดับ</Td><Td width='200'>กลุ่ม</Td><Td width='50'>รูปภาพ</Td><Td width='60'>ลบ</Td><Td width='60'>แก้ไข</Td></Tr>"; $N=1; $M=1; While ($result = mysqli_fetch_array($dbquery)) { $id = $result['id']; $person_id = $result['person_id']; $prename=$result['prename']; $name= $result['name']; $surname = $result['surname']; $position_code= $result['position_code']; $person_order= $result['person_order']; $department= $result['department']; $birthday= $result['birthday']; if(($M%2) == 0) $color="#FFFFC"; else $color="#FFFFFF"; echo "<Tr bgcolor='$color' align='center'><Td><input type='checkbox' name='$person_id' value='1'>$N</Td><Td align='left'>$person_id</Td><Td align='left'>$prename $name $surname</Td>"; echo "<td>"; if($birthday!="0000-00-00"){ echo thai_date_3($birthday); } echo "</td>"; echo "<Td align='left'>"; if(isset($position_ar[$position_code])){ echo $position_ar[$position_code]; } echo "</Td>"; if($person_order!=0){ echo "<Td align='center'>$person_order</Td>"; } else{ echo "<Td align='center'></Td>"; } if(isset($department_ar[$department])){ echo "<Td align='left'>$department_ar[$department]</Td>"; } else{ echo "<Td align='left'></Td>"; } if($result['pic']!=""){ echo "<Td align='center'><a href='modules/person/pic_show.php?&person_id=$person_id' target='_blank'><img src=images/admin/user.gif border='0' alt='รูปภาพ'></a></Td>"; } else{ echo "<Td align='center'> </Td>"; } echo "<Td><div align='center'><a href=?option=person&task=person&index=2&id=$id><img src=images/drop.png border='0' alt='ลบ'></a></div></Td> <Td><a href=?option=person&task=person&index=5&id=$id><img src=images/edit.png border='0' alt='แก้ไข'></a></div></Td> </Tr>"; $M++; $N++; } echo "<Tr bgcolor='#FFCCCC'><Td colspan='10'><input type='checkbox' name='allchk' id='allchk' onclick='CheckAll()'>เลือก/ไม่เลือกทั้งหมด <INPUT TYPE='button' name='smb' value='ลบทั้งหมดที่เลือก' onclick='goto_delete_all()'></Td></Tr>"; echo "</Table>"; echo "</form>"; } ?> <script> function goto_url(val){ if(val==0){ callfrm("?option=person&task=person"); // page ย้อนกลับ }else if(val==1){ if(frm1.person_id.value == ""){ alert("กรุณากรอกเลขประจำตัวประชาชน"); }else if(frm1.prename.value==""){ alert("กรุณากรอกคำนำหน้าชื่อ"); }else if(frm1.name.value==""){ alert("กรุณากรอกชื่อ"); }else if(frm1.surname.value==""){ alert("กรุณากรอกนามสกุล"); }else if(frm1.position_code.value==""){ alert("กรุณาเลือกตำแหน่ง"); }else{ callfrm("?option=person&task=person&index=4"); //page ประมวลผล } } } function goto_url_update(val){ if(val==0){ callfrm("?option=person&task=person"); // page ย้อนกลับ }else if(val==1){ if(frm1.person_id.value == ""){ alert("กรุณากรอกเลขประจำตัวประชาชน"); }else if(frm1.prename.value==""){ alert("กรุณากรอกคำนำหน้าชื่อ"); }else if(frm1.name.value==""){ alert("กรุณากรอกชื่อ"); }else if(frm1.surname.value==""){ alert("กรุณากรอกนามสกุล"); }else{ callfrm("?option=person&task=person&index=6"); //page ประมวลผล } } } function goto_delete_all(){ callfrm("?option=person&task=person&index=3.1"); } function CheckAll() { for (var i = 0; i < document.frm1.elements.length; i++) { var e = document.frm1.elements[i]; if (e.name != "allchk") if(e.value==1 && e.type=="checkbox"){ e.checked = document.frm1.allchk.checked; } } } </script>
Close
