Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/ drwxr-xr-x | |
| Viewing file: Select action/file-type: <?php
session_start();
/** Define Validate Access */
define( '_VALID_ACCESS', 1 );
/** Check Session User Login */
if( !session_is_registered("valid_user") && !session_is_registered("Priority") ) {
echo "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-874\" />";
echo "<p style=padding-top:115px><p align=center><br /><font color=red><strong>กรุณาทำการ Login ก่อน</strong></font></p></p>";
echo "<meta http-equiv=\"refresh\" content=\"1; URL=../login.php\" />";
exit();
}
else {
/** Configuration */
include( "configuration.php" );
require_once( $_Config_absolute_path . "/includes/framework.php" );
/** Create Database Object */
$dbObj = new DBConn;
/** Config Table for This Page */
$myTable = "personal_tb";
$myTable1 = "research_char_tb";
$myTable2 = "degree_his_tb";
$myTableFK = "Teacher_code";
$query = " SELECT * FROM $myTable WHERE Teacher_code='$Teacher_code' ";
$result = $dbObj->execQuery($query);
$rs = $dbObj->fetchArray($result);
/** โฟลเดอร์ไฟล์เอกสาร */
$doc_path = $_Config_live_site."/personal_pic";
} # else
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=windows-874" />
<title><?=$_Config_sitename;?> - ข้อมูลฝ่ายวิชาการ - ข้อมูลในหน่วยงาน - ข้อมูลภารงาน</title>
<script type="text/javascript" src="./js/utilities.js"></script>
<link href="./css/default.css" rel="stylesheet" type="text/css" />
</head>
<body topmargin="0" rightmargin="0" bottommargin="0" leftmargin="0">
<?php
include( "./templates/incHeader.php" );
?>
<table width="1003" border="0" cellspacing="0" cellpadding="0">
<tr>
<td width="215" align="left" valign="top" style="padding:10px 0px 0px 5px"><?php include( "templates/incMainMenuLeft.php" );?></td>
<td width="788" height="300" align="center" valign="top" style="padding:10px 0px 5px 10px"><fieldset><table width="770" border="0" cellspacing="0" cellpadding="0">
<form id="myForm" name="myForm" method="post" action="">
<tr>
<td height="5"></td>
</tr>
<tr>
<td height="30" background="images/background/bg-head-topic-w780.gif"><span class="PADDING-LEFT-10"><strong><a href="index.php">หน้าหลัก</a></strong> <strong>» <a href="PersonalData.php">ข้อมูลฝ่ายวิชาการ</a> » <a href="Menu_Edu_Faculty.php">ข้อมูลในหน่วยงาน</a> » <span class="NOTE">ข้อมูลภาระงาน</span></strong></span></td>
</tr>
<tr>
<td> </td>
</tr>
<tr>
<td align="center" valign="top"><table width="95%" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<td width="76%"><table width="100%" border="0" align="center" cellpadding="1" cellspacing="1" bgcolor="#E4E4E4">
<tr bordercolor="#E7FAFE">
<td height="20" align="left" bordercolor="#FFFFFF" bgcolor="#FFFFFF"><strong>ภาระงาน</strong></td>
<td width="2" bgcolor="#FFFFFF"> </td>
<td width="439" bgcolor="#FFFFFF" class="TEXT-HEADER11-BLUE"><strong><?=$rs['First_name'];?><?=$rs['Teacher_name'];?> <?=$rs['Teacher_lastname'];?></strong></td>
</tr>
<tr bordercolor="#E7FAFE">
<td width="105" height="20" align="right" nowrap="nowrap" bordercolor="#FFFFFF" bgcolor="#FFFFFF"> </td>
<td nowrap="nowrap" bgcolor="#FFFFFF"> </td>
<td nowrap="nowrap" bgcolor="#FFFFFF" class="TEXT-DARK-BLUE10"><table width="100%" border="0" cellspacing="1" cellpadding="1">
<tr>
<td width="65%" align="left">• <?php
$sql = " SELECT * FROM training_tb WHERE Teacher_code='$rs[Teacher_code]' ";
$result6 = $dbObj->execQuery($sql);
$numTraining = $dbObj->_numrows;
$dbObj->freeresult($result6);
if( $numTraining > 0 ) {
?><a href="showTrainingList.php?Teacher_code=<?php echo $rs['Teacher_code']; ?>">ประวัติการพัฒนาตนเอง</a><?php } else { ?>ประวัติการพัฒนาตนเอง<?php } ?></td>
<td width="35%" align="left"><?php echo $numTraining; ?> ระเบียน</td>
</tr>
<tr>
<td align="left">• <?php
$sql = " SELECT * FROM $myTable1 WHERE Teacher_code='$rs[Teacher_code]' ";
$result7 = $dbObj->execQuery($sql);
$numResearch = $dbObj->_numrows;
$dbObj->freeresult($result7);
if( $numResearch > 0 ) {
?><a href="ResearchList.php?Teacher_code=<?php echo $rs['Teacher_code']; ?>">งานวิจัย</a><?php } else { ?>งานวิจัย<?php } ?></td>
<td align="left"><?php echo $numResearch; ?> ระเบียน</td>
</tr>
<tr>
<td align="left">• <?php
$sql = " SELECT * FROM edu_product_tb WHERE Teacher_code='$rs[Teacher_code]' ";
$result8 = $dbObj->execQuery($sql);
$numEduProduct = $dbObj->_numrows;
$dbObj->freeresult($result8);
if( $numEduProduct > 0 ) {
?><a href="ShowProductionMe.php?Teacher_code=<?php echo $rs['Teacher_code']; ?>">ผลงานวิชาการ</a><?php } else { ?>ผลงานวิชาการ<?php } ?></td>
<td align="left"><?php echo $numEduProduct; ?> ระเบียน</td>
</tr>
<tr>
<td align="left">• <?php
$sql = " SELECT * FROM committee_tb WHERE Teacher_code='$rs[Teacher_code]' ";
$result9 = $dbObj->execQuery($sql);
$numCommittee = $dbObj->_numrows;
$dbObj->freeresult($result9);
if( $numCommittee > 0 ) {
?><a href="CommitByYearDetail.php?Teacher_code=<?php echo $rs['Teacher_code']; ?>">งานบริการวิชาการ</a><?php } else { ?>งานบริการวิชาการ<?php } ?></td>
<td align="left"><?php echo $numCommittee; ?> ระเบียน</td>
</tr>
<tr>
<td align="left">• <?php
$sql = " SELECT * FROM tech_plan_tb WHERE Teacher_code='$rs[Teacher_code]' ";
$result10 = $dbObj->execQuery($sql);
$numTechPlan = $dbObj->_numrows;
$dbObj->freeresult($result10);
if( $numTechPlan > 0 ) {
?> <a href="PlanList.php?Teacher_code=<?php echo $rs['Teacher_code']; ?>">แผนการสอนรายวิชา</a><?php } else { ?>แผนการสอนรายวิชา<?php } ?></td>
<td align="left"><?php echo $numTechPlan; ?> ระเบียน</td>
</tr>
<tr>
<td align="left">• <a href="/mis/eregis/showTimeTableT.php?programId=&studentYear=&acadYear=2552&coId=&ttClId=&ttRmId=&ttEpMepId=&ttEpSepId=&ttOfId=<?=$rs['officerId1'];?>&ttWdAcYWeekNo=&view=t">ตารางสอนนักศึกษา</a></td>
<td align="left"> </td>
</tr>
<tr>
<td align="left">• <a href="StdAdviceList.php?officerId1=<?=$rs['officerId1'];?>">นักศึกษาในความรับผิดชอบที่ปรึกษา</a></td>
<td align="left"> </td>
</tr>
</table></td>
</tr>
<?php if( $rs['Degree_His2'] != "" ) { ?>
<?php
} #if
if( $rs['Degree_His3'] != "" ) {
?>
<?php } #if ?>
<tr bordercolor="#E7FAFE">
<td height="20" align="left" nowrap="nowrap" bordercolor="#FFFFFF" bgcolor="#FFFFFF" class="PADDING-TOP-5"><strong>วุฒิการศึกษา</strong></td>
<td nowrap="nowrap" bgcolor="#FFFFFF"> </td>
<td nowrap="nowrap" bgcolor="#FFFFFF" class="TEXT-DARK-BLUE10 PADDING-TOP-5"> </td>
</tr>
<tr bordercolor="#E7FAFE">
<td height="20" colspan="3" align="right" nowrap="nowrap" bordercolor="#FFFFFF" bgcolor="#FFFFFF" class="PADDING-TOP-5"><table width="99%" border="0" align="left" cellpadding="1" cellspacing="0" bgcolor="#FFFFFF" style="background-color:#eeeeee; border:0px solid gray">
<?php
$query5 = " SELECT * FROM $myTable2 WHERE Teacher_code='$Teacher_code' ";
$result5 = $dbObj->execQuery($query5);
$numrows = $dbObj->_numrows;
?>
<?php
$no = 1+($display-1)*$limit;
while( $rss = $dbObj->fetchArray($result5) ) {
$bgColor = ( $bgColor == "#FFFFFF" ) ? "#F9FBFB" : "#FFFFFF";
?>
<tr bgcolor="<?=$bgColor;?>">
<td width="15%" height="20" align="left"><img src="./images/icons/linesub.gif" width="16" height="16" border="0" align="absmiddle" /> <?php
$Degree_code = $rss['Degree_code'] ;
$sql11 = " Select Degree_name From degree_tb Where Degree_code='$Degree_code' ";
$result11 = mysql_query($sql11);
$rs11 = mysql_fetch_array($result11);
echo"$rs11[Degree_name] ";
?></td>
<td width="77%" align="left" class="PADDING-LEFT-5"><? echo $rss['Degree_His'] ; ?> สาขา</font></a><font color="#000000" size="2" face="Tahoma"><? echo $rss['Degree_Major']?></font></td>
<td width="8%" align="left" class="PADDING-LEFT-5"><font color="#000000" size="2" face="Tahoma"><? echo $rss[Degree_Year]?></font></td>
</tr>
<?php
//$no++;
} # while
?>
</table></td>
</tr>
<?php if( $rs['Degree_His1'] != "" ) { ?>
<?php
} #if
if( $rs['Degree_His2'] != "" ) {
?>
<?php
} #if
if( $rs['Degree_His3'] != "" ) {
?>
<?php } #if ?>
<tr bordercolor="#E7FAFE">
<td align="right" nowrap="nowrap" bordercolor="#FFFFFF" bgcolor="#FFFFFF" class="PADDING-TOP-5">ความสามารถพิเศษ</td>
<td nowrap="nowrap" bgcolor="#FFFFFF">:</td>
<td nowrap="nowrap" bgcolor="#FFFFFF" class="TEXT-DARK-BLUE10 PADDING-TOP-5"><?php echo htmlspecialchars_decode( nl2br( $rs['Skill'] ) ); ?></td>
</tr>
<tr bordercolor="#E7FAFE">
<td height="20" align="right" nowrap="nowrap" bordercolor="#FFFFFF" bgcolor="#FFFFFF" class="PADDING-TOP-5">ความเชี่ยวชาญ</td>
<td nowrap="nowrap" bgcolor="#FFFFFF">:</td>
<td nowrap="nowrap" bgcolor="#FFFFFF" class="TEXT-DARK-BLUE10 PADDING-TOP-5"><?php echo htmlspecialchars_decode( nl2br( $rs['Propessnal'] ) ); ?></td>
</tr>
<tr bordercolor="#E7FAFE">
<td height="20" align="right" nowrap="nowrap" bordercolor="#FFFFFF" bgcolor="#FFFFFF" class="PADDING-TOP-5">สังกัดหน่วยงาน</td>
<td nowrap="nowrap" bgcolor="#FFFFFF">:</td>
<td nowrap="nowrap" bgcolor="#FFFFFF" class="TEXT-DARK-BLUE10 PADDING-TOP-5"><?php
$sql = " SELECT * FROM faculty_tb WHERE Faculty_code='$rs[Faculty_code]' ";
$result5 = $dbObj->execQuery($sql);
$rs5 = $dbObj->fetchArray($result5);
$dbObj->freeresult($result5);
echo $rs5['Faculty_name'];
?></td>
</tr>
<tr bordercolor="#E7FAFE">
<td align="right" nowrap="nowrap" bordercolor="#FFFFFF" bgcolor="#FFFFFF"> </td>
<td nowrap="nowrap" bgcolor="#FFFFFF"> </td>
<td nowrap="nowrap" bgcolor="#FFFFFF" class="TEXT-DARK-BLUE10"> </td>
</tr>
</table>
<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr>
<td> </td>
</tr>
<tr>
<td align="center"><input type="button" name="button" id="button" value="« ย้อนกลับ" class="CURSOR-HAND" onclick="window.history.back();" /></td>
</tr>
</table></td>
<td width="24%" valign="top" align="center"><table width="150" border="0" cellspacing="0" cellpadding="0">
<tr>
<td><img src="<?=$doc_path;?>/<?php echo $rs['Img1']; ?>" width="150" height="170" /></td>
</tr>
</table></td>
</tr>
</table></td>
</tr>
<tr>
<td> </td>
</tr></form>
</table>
</fieldset></td>
</tr>
</table>
<?php include( "./templates/incFooter.php" ); ?>
</body>
</html>
<?php
/** Free Resource */
$dbObj->freeresult($result);
/** Close the Database */
$dbObj->disconn();
/** Unset Class */
unset($dbObj);
?> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0057 ]-- |