Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/ drwxr-xr-x |
Viewing file: processStudent.php (5.36 KB) -rw-r--r-- Select action/file-type: (+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) | <?php include_once "../class/clsStudentMaster.php"; include_once "../class/clsStudentBio.php"; include_once "../class/clsPrefix.php"; $conn = new Connection(); $obj = new StudentMaster(); $obj2 = new StudentBio(); $obj3 = new Prefix(); if($method=="add"){ $obj->AddNew(); $obj->studentId=$obj->GetNextCode(); $obj->studentCode=$studentCode; $obj->levelId=$levelId; $obj->programId=$programId; $obj->prefixId=$prefixId; $obj->studentName=$studentName; $obj->studentSurname=$studentSurname; $obj->studentNameEng=$studentNameEng; $obj->studentSurnameEng=$studentSurnameEng; $obj->creditAttempt=$creditAttempt; $obj->creditSatisfy=$creditSatisfy; $obj->GPA=$GPA; $obj->admitAcadYear=$admitAcadYear; $obj->admitSemester=$admitSemester; $obj->admitDate=$admitDate; $obj->finishDate=$finishDate; $obj->studentPassword=$studentPassword; $obj->studentEmail=$studentEmail; $obj->studentYear=$studentYear; $obj->studentStatus=$studentStatus; if($officerId1 == '') $officerId1 = 'NULL'; $obj->officerId1=$officerId1; if($officerId2 == '') $officerId2 = 'NULL'; $obj->officerId2=$officerId2; $obj->financeStatus=$financeStatus; $obj->updateUserId=$updateUserId; $obj->updateDateTime=date('Y-m-d H:i:s'); $obj->citizenId=$citizenId; $obj->graduateYear=$graduateYear; if($studentCode == '') $obj->genStatus='N'; else $obj->genStatus='Y'; $obj->genNo=$genNo; $obj->entryTypeId=$entryTypeId; $obj->entryTypeId2=1; $obj->studentSex=$studentSex; $obj->scholarId=$scholarId; if($preAdmitPositionId == '') $preAdmitPositionId = 'NULL'; $obj->preAdmitPositionId=$preAdmitPositionId; $obj->totalPoint=100; $obj->honor=$honor; $obj->medal=$medal; $obj->exitExam='N'; $obj->Save(); $obj3->SearchByKey($prefixId); $obj3->GetRecord(); $obj2->AddNew(); $obj2->studentId=$obj->studentId; $obj2->studentSex=$obj3->defaultSex; $obj2->parentName=$parentName; $obj2->parentRelation=$parentRelation; $obj2->parentAddress=$parentAddress; if($currentDistrictId == '') $currentDistrictId = 'NULL'; $obj2->parentDistrictId=$currentDistrictId; if($currentAmphurId == '') $currentAmphurId = 'NULL'; $obj2->parentAmphurId=$currentAmphurId; if($currentProvinceId == '') $currentProvinceId = 'NULL'; $obj2->parentProvinceId=$currentProvinceId; $obj2->parentZipcode=$parentZipcode; $obj2->parentPhoneNo=$parentPhoneNo; if($parentMobile == '') $parentMobile = 'NULL'; $obj2->parentMobile=$parentMobile; $obj2->parentOcc=$parentOcc; $obj2->parentIncome=$parentIncome; $obj2->parentEmail=$parentEmail; $obj2->canRefund=$canRefund; $obj2->Save2(); }else if($method=="edit"){ $obj->SearchByKey($studentId); $obj->GetRecord(); $obj->Edit(); $obj->studentCode=$studentCode; $obj->levelId=$levelId; $obj->programId=$programId; $obj->prefixId=$prefixId; $obj->studentName=$studentName; $obj->studentSurname=$studentSurname; $obj->studentNameEng=$studentNameEng; $obj->studentSurnameEng=$studentSurnameEng; $obj->creditAttempt=$creditAttempt; $obj->creditSatisfy=$creditSatisfy; $obj->GPA=$GPA; $obj->admitAcadYear=$admitAcadYear; $obj->admitSemester=$admitSemester; $obj->admitDate=$admitDate; $obj->finishDate=$finishDate; $obj->studentPassword=$studentPassword; $obj->studentEmail=$studentEmail; $obj->studentYear=$studentYear; $obj->studentStatus=$studentStatus; if($officerId1 == '') $officerId1 = 'NULL'; $obj->officerId1=$officerId1; if($officerId2 == '') $officerId2 = 'NULL'; $obj->officerId2=$officerId2; $obj->financeStatus=$financeStatus; $obj->updateUserId=$updateUserId; $obj->updateDateTime=date('Y-m-d H:i:s'); $obj->citizenId=$citizenId; $obj->graduateYear=$graduateYear; $obj->genStatus=$obj->genStatus; $obj->genNo=$genNo; $obj->entryTypeId=$entryTypeId; $obj->entryTypeId2=1; $obj->studentSex=$studentSex; $obj->scholarId=$scholarId; if($preAdmitPositionId == '') $preAdmitPositionId = 'NULL'; $obj->preAdmitPositionId=$preAdmitPositionId; $obj->totalPoint=$obj->totalPoint; $obj->honor=$honor; $obj->medal=$medal; $obj->exitExam=$obj->exitExam; $obj->Save(); $obj3->SearchByKey($prefixId); $obj3->GetRecord(); $obj2->SearchByKey($studentId); $obj2->GetRecord(); $obj2->Edit(); $obj2->studentSex=$obj3->defaultSex; $obj2->parentName=$parentName; $obj2->parentRelation=$parentRelation; $obj2->parentAddress=$parentAddress; if($currentDistrictId == '') $currentDistrictId = 'NULL'; $obj2->parentDistrictId=$currentDistrictId; if($currentAmphurId == '') $currentAmphurId = 'NULL'; $obj2->parentAmphurId=$currentAmphurId; if($currentProvinceId == '') $currentProvinceId = 'NULL'; $obj2->parentProvinceId=$currentProvinceId; $obj2->parentZipcode=$parentZipcode; $obj2->parentPhoneNo=$parentPhoneNo; if($parentMobile == '') $parentMobile = 'NULL'; $obj2->parentMobile=$parentMobile; $obj2->parentOcc=$parentOcc; $obj2->parentIncome=$parentIncome; $obj2->parentEmail=$parentEmail; $obj2->canRefund=$canRefund; $obj2->Save2(); }else if($method=="delete"){ $obj2->SearchByKey($studentId); $obj2->GetRecord(); $obj2->Delete(); $obj->SearchByKey($studentId); $obj->GetRecord(); $obj->Delete(); } $obj->Destroy(); $conn->Disconnect(); echo "<meta http-equiv='refresh' content='0; URL=showStudent.php?programId=$programId&admitAcadYear=$admitAcadYear'>"; ?> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0058 ]-- |