Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/Money_depart/ drwxr-xr-x | |
| Viewing file: Select action/file-type: <?php
session_start();
/** Define Validate Access */
define( '_VALID_ACCESS', 1 );
/** Check Session User Login */
if (! session_is_registered("valid_user") ) {
echo "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-874\" />";
echo "<p style=padding-top:115px><p align=center><br /><font color=red><strong>กรุณาทำการ Login ก่อน</strong></font></p></p>";
echo "<meta http-equiv=\"refresh\" content=\"1; URL=../login.php\" />";
exit();
}
else {
/** Configuration */
require_once( "../configuration.php" );
require_once( $_Config_absolute_path . "/includes/framework.php" );
require_once( "../include/FunctionDB.php" );
/** Create Database Object */
$dbObj = new DBConn;
//### รับค่าจาก Form
//$BuildD_Yr = $_POST['mYear']."-".$_POST['mMonth']."-".$_POST['mDate'];
$Teacher_code = trim( $Teacher_code );
$Teacher_id = trim( $Teacher_id );
$Salary_1 = trim( $Salary_1 );
$Salary_2 = trim( $Salary_2 );
$Salary_3 = trim( $Salary_3 );
$Costt_1 = trim( $Costt_1 );
$Costt_2 = trim( $Costt_2 );
$Costt_3 = trim( $Costt_3 );
$Costt_4 = trim( $Costt_4 );
$Costt_5 = trim( $Costt_5 );
$Costt_6= trim( $Costt_6 );
$Costt_7 = trim( $Costt_7 );
$Costt_8 = trim( $Costt_8 );
$Costt_9 = trim( $Costt_9 );
$Costt_10 = trim( $Costt_10 );
$Costt_11 = trim( $Costt_11 );
$Costt_12 = trim( $Costt_12 );
$Costt_13 = trim( $Costt_13 );
$Costt_14 = trim( $Costt_14 );
$Costt_15 = trim( $Costt_15 );
$Costt_16 = trim( $Costt_16 );
$Costt_17 = trim( $Costt_17 );
$Costt_18 = trim( $Costt_18 );
$Costt_19 = trim( $Costt_19 );
$Start_mont = trim( $Start_mont );
$Start_year = trim( $Start_year );
///---------บวกด้านรายรับ--------------------///
$Costt_salary = $Costt_1+ $Costt_2 + $Costt_3 + $Costt_4 + $Costt_5 + $Costt_6 + $Costt_7 + $Costt_8 + $Costt_9 + $Costt10 + $Costt_11 + $Costt_12 + $Costt_13 + $Costt_14 + $Costt_15 + $Salary_1 + $Salary_2 + $Salary_3;
/////----------บวกด้านรายจ่าย-------------////
$Costt_to = $Costt_16 + $Costt_17 + $Costt_18 + $Costt_19 + $Costt_20 + $Costt_21 + $Costt_22 + $Costt_23 + $Costt_24 + $Costt_25 + $Costt_26 + $Costt_27 + $Costt_28 + $Costt_29 + $Costt_30;
$Costt_total = $Costt_salary - $Costt_to ;
//### Select ข้อมูลมาก่อน เพื่อเปรียบเทียบว่ามีข้อมูลอยู่แล้วหรือไม่
$sql = "Select * From salary_repot_tb Where Teacher_code='$Teacher_code' AND Start_mont='$Start_mont' AND Start_year='$Start_year' ";
$result = mysql_query($sql);
$numrows = mysql_num_rows($result);
if( $numrows == 0 ) {
//echo "Insert";
Insert_Salary_repot ( $Teacher_code , $Teacher_id , $StatusId , $Faculty_code , $Person_type , $Start_mont , $Start_year , $Salary_1 , $Salary_2 , $Salary_3 , $Costt_1 , $Costt_2 , $Costt_3 , $Costt_4 , $Costt_5 , $Costt_6 , $Costt_7 , $Costt_8 , $Costt_9 , $Costt_10 , $Costt_11 , $Costt_12 , $Costt_13 , $Costt_14 , $Costt_15 , $Costt_16 , $Costt_17 , $Costt_18 , $Costt_19 , $Costt_20 , $Costt_21 , $Costt_22 , $Costt_23 , $Costt_24 , $Costt_25 , $Costt_26 , $Costt_27, $Costt_28, $Costt_29, $Costt_30, $Costt_salary , $Costt_to , $Costt_total , $Flag );
echo "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-874\" />";
echo "<script>alert('บันทึกข้อมูลเรียบร้อยแล้ว');</script>";
} else {
//echo "Update";
echo "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-874\" />";
echo "<script>alert('ข้อมูลมีอยู่แล้ว ไม่สามารถบันทึกได้ กรุณากลับไปแก้ไขค่ะ');</script>";
}
/** Close the Database */
$dbObj->disconn();
/** Unset Class */
unset($dbObj);
echo "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-874\" />";
echo "<script>window.opener.document.all.myForm; window.opener.location.reload(); window.close();</script>";
exit();
//InsertSalaryType($SalaryId,$Detail,$SalaryStatus,$Flag);
/** Close the Database */
//$dbObj->disconn();
/** Unset Class */
//unset($dbObj);
/** Output */
//if( $result1 ) {
//echo "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-874\" />";
/*echo "<script>alert('บันทึกข้อมูลเรียบร้อยแล้ว');</script>";
echo "<script>window.opener.document.all.myForm; window.opener.location.reload(); window.close();</script>";
//echo "<meta http-equiv='refresh' content='0; URL=DecorPersonalList.php'>";
exit();
}
*/
} // end.. else
//} # else
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=windows-874" />
<title>Insert Salary</title>
<link href="../css/default.css" rel="stylesheet" type="text/css" />
</head>
<body topmargin="0" rightmargin="0" bottommargin="0" leftmargin="0">
</body>
</html>
|
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0064 ]-- |