Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/ drwxr-xr-x |
Viewing file: Select action/file-type: <?php session_start(); if(session_is_registered("isAdmin")) { include('../include/config.php'); include('../include/functionDB.php'); ConnectDB(); ?> <html> <head> <title>::: Doggy Genius =>> Edit Stories :::</title> <meta http-equiv="Content-Type" content="text/html; charset=windows-874"> <link href="../css/myStyle.css" rel="stylesheet" type="text/css"> <script language="JavaScript" type="text/JavaScript"> function browseImage() { form1.show_image.src = form1.about_story_image.value; } </script> <script language="JavaScript" src="./calendar/ew.js"></script> <script language="JavaScript" src="./calendar/popcalendar.js"></script> </head> <body> <table width="760" border="0" align="center" cellpadding="0" cellspacing="0" style="border:1px solid #7F9DB9"> <tr> <td><div align="center"> <?php include('./menu.php');?> <table width="750" border="0" cellspacing="0" cellpadding="0"> <tr> <td> </td> </tr> </table> <table width="760" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="60"><div align="left"><img src="images/editnews.gif" width="48" height="48" border="0"></div></td> <td width="224"><div align="left"> <table width="150" border="0" align="left" cellpadding="0" cellspacing="0" bgcolor="#F7F6F4"> <tr> <td height="25"><div align="center" class="button"><br> Adding Stories<br> <br> </div></td> </tr> </table> </div></td> <td width="125"><div align="center"> </div></td> <td width="75"> </td> <td width="125"> </td> <td width="125"> </td> <td width="26"> </td> </tr> <tr> <td height="10" colspan="7"> </td> </tr> </table> <?php // query ดึงข้อมูลจาก about_story table $sql = " SELECT * FROM about_story WHERE about_story_id='$about_story_id' "; $result = mysql_query($sql) or die("Error $result".mysql_error()); $rs = mysql_fetch_array($result); $num_rows = mysql_num_rows($result); ?> <?php include("./calendar/phpmkrfn.php") ?> <form name="form1" method="post" action="saveAddStories.php" enctype="multipart/form-data"> <div align="left"> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="10"> </td> <td width="568" valign="top"> <table width="100%" border="0" cellpadding="0" cellspacing="0" style="border:1px solid #A7A6B4"> <tr> <td> </td> <td> </td> <td> </td> <td> </td> </tr> <tr> <td width="7"> </td> <td width="100" title=" หัวข้อ/หัวเรื่อง "><div align="left"><strong>Title</strong></div></td> <td width="15"> </td> <td width="444"><div align="left"> <table width="99%" border="0" cellspacing="0" cellpadding="0"> <tr> <td><div align="left"> <input name="about_story_topic" type="text" class="inputbox" id="about_story_topic" title=" หัวข้อ/หัวเรื่อง " size="60" maxlength="255"> </div></td> </tr> </table> </div></td> </tr> <tr> <td height="10" colspan="4"></td> </tr> <tr> <td> </td> <td valign="top" title=" รายละเอียด "><div align="left"><strong>Detail</strong></div></td> <td> </td> <td><div align="left"> <table width="99%" border="0" cellspacing="0" cellpadding="0"> <tr> <td><div align="left"> <textarea name="about_story_detail" cols="60" rows="5" class="inputbox" id="about_story_detail" title=" รายละเอียด "></textarea> </div></td> </tr> </table> </div></td> </tr> <tr> <td height="10" colspan="4"></td> </tr> <tr> <td> </td> <td valign="top" title=" รายละเอียด "><div align="left"><strong>Full Story</strong></div></td> <td> </td> <td><div align="left"> <table width="99%" border="0" cellspacing="0" cellpadding="0"> <tr> <td><div align="left"> <textarea name="about_story_full_detail" cols="60" rows="7" class="inputbox" id="about_story_full_detail"></textarea> </div></td> </tr> </table> </div></td> </tr> <tr> <td height="10" colspan="4"></td> </tr> <tr> <td> </td> <td><div align="left"><strong>Story Date</strong></div></td> <td> </td> <td><div align="left"> <table width="99%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="88%"><div align="left"> <input name="about_story_date" type="text" class="inputbox" id="about_story_date" size="60"> </div></td> <td width="12%"><div align="left"><strong> <input name="image" type="image" onClick="popUpCalendar(this, this.form.about_story_date,'yyyy-mm-dd');return false;" src="images/mysql_calendar.png" alt="Pick a Date"> </strong></div></td> </tr> </table> </div></td> </tr> <tr> <td height="10" colspan="4"></td> </tr> <tr> <td> </td> <td><div align="left"><strong>Upload Topic Image</strong></div></td> <td> </td> <td><div align="left"> <table width="99%" border="0" cellspacing="0" cellpadding="0"> <tr> <td><div align="left"> <input name="about_story_image" type="file" class="inputbox" id="about_story_image" onChange="browseImage()" size="49"> </div></td> </tr> </table> </div></td> </tr> <tr> <td height="10" colspan="4"></td> </tr> <tr> <td> </td> <td><div align="left"><strong>Current Update </strong></div></td> <td> </td> <td><div align="left" class="small"><?php echo date("Y-m-d"); ?></div></td> </tr> <tr> <td> </td> <td></td> <td> </td> <td></td> </tr> <tr> <td> </td> <td> </td> <td> </td> <td> </td> </tr> <tr> <td> </td> <td> </td> <td> </td> <td><div align="left"> <input type="hidden" name="about_story_id" value="<?php echo $rs['about_story_id']; ?>"> <input name="Submit" type="submit" class="button" value="Add Stories" onMouseOver="this.style.cursor='hand'"> <input name="Reset" type="reset" class="button" value=" Cancel " onClick="javascript:location.href='./stories.php'" onMouseOver="this.style.cursor='hand'"> </div></td> </tr> <tr> <td> </td> <td> </td> <td> </td> <td> </td> </tr> </table></td> <td width="190" valign="top"><div align="center"> <table width="175" border="0" cellspacing="0" cellpadding="0" style="border:1px solid #A7A6B4"> <tr> <td><div align="center"> <table width="150" border="0" cellspacing="0" cellpadding="0"> <tr> <td> </td> </tr> </table> <?php if($rs[about_story_image] != "") {?></div></td> </tr> <tr> <td><div align="center"> <table width="150" height="150" border="0" cellpadding="0" cellspacing="0"> <tr> <td><div align="center"><img src="<?php echo $rs['about_story_image'] ?>" name="show_image" width="150" height="150"></div></td> </tr> </table> </div></td> </tr> <tr> <td><div align="center"> <table width="150" border="0" cellspacing="0" cellpadding="0"> <tr> <td> </td> </tr> </table> <?php } else { ?> <table width="100%" height="100%" border="0" cellpadding="0" cellspacing="0"> <tr> <td><div align="center"><img src="images/no_image.gif" name="show_image" width="100" height="100"></div></td> </tr> </table> <table width="150" border="0" cellspacing="0" cellpadding="0"> <tr> <td> </td> </tr> </table> <?php } // end else ?></div></td> </tr> </table> </div></td> </tr> </table> </div> </form> <table width="750" border="0" cellspacing="0" cellpadding="0"> <tr> <td> </td> </tr> </table> <table width="750" border="0" cellspacing="0" cellpadding="0"> <tr> <td> </td> </tr> </table> <TABLE width="750" border=0 align="center" cellPadding=0 cellSpacing=0> <TBODY> <tr> <TD height="80%" colspan="2" align=left vAlign=top> </tr> <TR align="center" valign="middle" style="border-top:1px solid #7F9DB9 "> <TD height="25" style="border-top:1px solid #7F9DB9 "><span class="menubar">Copyright @2004. Doggy Genius. All rights reserved.</span></TD> </TR> </TBODY> </TABLE> </div></td> </tr> </table> </div> <?php } // end if session else { ?> <br> <table width="760" border="0" align="center" cellpadding="0" cellspacing="0" > <tr> <td><div align="center"> <table width="600" border="0" align="center" cellpadding="0" cellspacing="0"> <tr> <td><div align="center"> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td> </td> </tr> <tr> <td> </td> </tr> </table> <table width="300" border="0" align="center" cellpadding="0" cellspacing="0" style="border:1px solid #7F9DB9;"> <tr> <td width="50%" align="center"><div align="center"> <table width="100%" border="0" cellpadding="0" cellspacing="0"> <tr> <td width="4%" height="23" background="images/hbar_left.gif"> </td> <td width="93%" background="images/hbar_middle.gif"><div align="center"><span class="contentheading">Login Process</span></div></td> <td width="3%" background="images/hbar_right.gif"> </td> </tr> </table> </div></td> </tr> <tr> <td width="50%" align="center"><div align="center"><br> <br> <span class="error"><strong>Log-in Fail ! <br> Please Try Again</strong></span><br> <br> <?php echo "<meta http-equiv=\"refresh\" content=\"2;URL=./login.php\"><br>" ?> <br> </div></td> </tr> </table> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td> </td> </tr> </table> </div></td> </tr> </table> </div></td> </tr> </table> </p> <?php } // end if // CloseDB(); ?> </body> </html> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0063 ]-- |