Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/ drwxr-xr-x |
Viewing file: Select action/file-type: <?php include("./include/FunctionDB.php"); include("./include/Function.php"); ConnectDB(); $sql = " SELECT * FROM personal_tb AS t,training_tb AS r WHERE t.Teacher_code=r.Teacher_code AND r.Training_code='$Training_code' "; $result = mysql_query($sql) or die(" Error").mysql_error(); $rs = mysql_fetch_array($result); ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html> <head> <title>Training Detail</title> <meta http-equiv="Content-Type" content="text/html; charset=tis-620" /> <link href="./css/default.css" rel="stylesheet" type="text/css"> <body> <table width="680" border="0" cellspacing="0" align="center" cellpadding="0"> <tr> <td height="5"></td> </tr> </table> <table width="680" border="0" align="center" cellpadding="0" cellspacing="0"> <tr> <th align="center" scope="col"><fieldset> <table width="100%" border="0" align="center" cellpadding="2" cellspacing="1" bordercolor="#FFFFFF" bgcolor="#F7F7F7"> <tr> <td height="25" colspan="2" align="center"><strong class="NOTE">แสดงรายละเอียดการพัฒนาบุคลากร</strong></td> </tr> <tr> <td width="160" height="20" align="right" nowrap bordercolor="#D8D2A9">ปี พ.ศ</a></td> <td width="507" nowrap bordercolor="#DDF8D1" bgcolor="#FFFFFF" class="PADDING-LEFT-10"> <?php echo "$rs[Year_std]"; ?></a></td> </tr> <tr> <td height="20" align="right" nowrap bordercolor="#D8D2A9">ชื่อ-นามสกุล</a></td> <td nowrap bordercolor="#DDF8D1" bgcolor="#FFFFFF" class="PADDING-LEFT-10"> <?php echo "$rs[First_name]"; ?> <?php echo "$rs[Teacher_name]"; ?> <?php echo "$rs[Teacher_lastname]"; ?></a></td> </tr> <tr> <td height="25" align="right" valign="top">ชื่อเรื่อง</a></td> <td valign="top" bgcolor="#FFFFFF" class="PADDING-LEFT-10"> <?php //$Project_code = $rss["Project_code"]; $sql = " SELECT * FROM training_tb WHERE Training_code='$Training_code' "; $result1 = mysql_query($sql) or die("Error".mysql_error()); $rss = mysql_fetch_array($result1); echo "$rss[Training_name]"; ?></a></td> </tr> <tr> <td height="20" align="right" nowrap bordercolor="#D8D2A9">ประเภท</a></td> <td nowrap bordercolor="#DDF8D1" bgcolor="#FFFFFF" class="PADDING-LEFT-10"> <?php $Training_type = $rs["Training_type"]; $sql = " SELECT * FROM training_type_tb WHERE Training_type='$Training_type' "; $result1 = mysql_query($sql) or die("Error".mysql_error()); $rs2 = mysql_fetch_array($result1); echo "$rs2[Detail]"; ?></a></td> </tr> <tr> <td height="20" align="right" nowrap bordercolor="#D8D2A9">สาขาวิชา</a></td> <td nowrap bordercolor="#DDF8D1" bgcolor="#FFFFFF" class="PADDING-LEFT-10"> <?php echo $rs['Major']; ?></a></td> </tr> <tr> <td height="20" align="right" nowrap bordercolor="#D8D2A9">วันทีเริ่ม-วันที่สิ้นสุด</a></td> <td nowrap bordercolor="#DDF8D1" bgcolor="#FFFFFF" class="PADDING-LEFT-10"> <?php $sday = $rs['Date_start']; $yearthai = explode("-",$sday); $day = intval($yearthai[2]); $month = intval($yearthai[1]); $year = intval($yearthai[0]); $m = getThaiSubMonth($month); echo "$day"." "."$m"." "."$year"; ?> <font color="#000000">ถึง</font> <?php $sday = $rs['Date_finish']; $yearthai = explode("-",$sday); $day = intval($yearthai[2]); $month = intval($yearthai[1]); $year = intval($yearthai[0]); $m = getThaiSubMonth($month); echo "$day"." "."$m"." "."$year"; ?></a></td> </tr> <tr> <td height="20" align="right" nowrap>สถานที่จัด</a></td> <td nowrap bordercolor="#DDF8D1" bgcolor="#FFFFFF" class="PADDING-LEFT-10"><?php echo $rs['CNEU']; ?></a></td> </tr> <tr> <td height="20" align="right" nowrap bordercolor="#D8D2A9"> จำนวชั่วโมง</a></td> <td nowrap bordercolor="#DDF8D1" bgcolor="#FFFFFF" class="PADDING-LEFT-10"><?php echo $rs['Total_hour']; ?> ชั่วโมง</a></td> </tr> <tr> <td height="20" align="right" nowrap bordercolor="#D8D2A9">จำนวนเงินที่ใช้</a></td> <td nowrap bordercolor="#DDF8D1" bgcolor="#FFFFFF" class="PADDING-LEFT-10"> <?php echo number_format($rs['Budget_use'],2,'.',','); ?> บาท</a> </td> </tr> <tr> <td height="20" align="right" nowrap bordercolor="#D8D2A9">แหล่งเงินสนับสนุน</a></td> <td nowrap bordercolor="#DDF8D1" bgcolor="#FFFFFF" class="PADDING-LEFT-10"><?php echo $rs['Fund_resource']; ?></a></td> </tr> <tr> <td height="20" align="right" nowrap bordercolor="#D8D2A9">หน่วยงานที่จัด</a></td> <td nowrap bgcolor="#FFFFFF" class="PADDING-LEFT-10"><?php echo $rs[Organiz] ?></a></td> </tr> <tr> <td height="20" align="right" nowrap bordercolor="#D8D2A9"> วันที่ส่งรายงาน</a></td> <td nowrap bgcolor="#FFFFFF" class="PADDING-LEFT-10"> <?php /* $sday = $rs['Date_send']; $yearthai = explode("-",$sday); $day = intval($yearthai[2]); $month = intval($yearthai[1]); $year = intval($yearthai[0]); $m = getThaiSubMonth($month); echo "$day"." "."$m"." "."$year"; */ echo $rs['Date_send']; ?></a></td> </tr> <tr> <td height="20" align="right" nowrap bordercolor="#D8D2A9">เวลาที่เผยแพร่ในหน่วยงาน</a></td> <td nowrap bgcolor="#ffffff" class="PADDING-LEFT-10"> <?php switch ($rs['Period_prop']) { case 1 : echo "<font color=\"#003399\">น้อยกว่า 2 สัปดาห์ </font>"; break; case 2 : echo "<font color=\"#006633\">2 สัปดาห์</font>"; break; case 3 : echo "<font color=\"#333333\">มากกว่า 4 สัปดาห์</font>"; break; } ?></a></td> </tr> <tr> <td height="20" align="right" valign="top" nowrap bordercolor="#D8D2A9">การประยุกต์นำไปใช้งาน</a></td> <td valign="top" nowrap bgcolor="#FFFFFF" class="PADDING-LEFT-10"><?php echo htmlspecialchars_decode( nl2br( $rs['Apply'] ) ); ?></a></td> </tr> <tr> <td height="10" colspan="2" bgcolor="#FFFFFF"></td> </tr> </table> </fieldset> <br> <input name="Close" type="button" class="CURSOR-HAND" onClick="window.close();" value="ปิดหน้าต่าง" /></th> </tr> </table> </body> </html> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0062 ]-- |