Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/QA/ drwxr-xr-x |
Viewing file: AddReport.php (5.75 KB) -rw-r--r-- Select action/file-type: (+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) | <?php include("../include/FunctionDB.php"); include("../include/Function.php"); ConnectDB(); $sql ="SELECT *,qa_pi_cri_tb.Ind_code as Ind_code FROM qa_pi_cri_tb LEFT JOIN qa_report_tb ON qa_pi_cri_tb.code = qa_report_tb.code WHERE qa_pi_cri_tb.code='$code'"; $result = mysql_query($sql) or die("Cannot Select").mysql_error(); $rs = mysql_fetch_array($result); ?> <meta http-equiv="Content-Type" content="text/html; charset=TIS-620"> <link href="../source/style.css" rel="stylesheet" type="text/css"> <script type="text/javascript" src="../js/ajaxScript.js"></script> <title>เพิ่มเอกสาร มาตรฐานที่ <?=$rs["Stand_code"];?> ตัวบ่งชี้ข้อที่ <?=$rs["Ind_code"];?></title> <script language="JavaScript" type="text/JavaScript"> <!-- function browse() { pc.Filename.src = pc.Filename.value; } <!-- function MM_openBrWindow(theURL,winName,features) { //v2.0 window.open(theURL,winName,features); } //--> function chk(c){ if (c.checked){ document.all.Prob1.disabled=false; document.all.Prob2.disabled=false; document.all.Prob3.disabled=false; document.all.Prob4.disabled=false; } else{ document.all.Problem.disabled=false; } } </script> <style type="text/css"> <!-- .style1 {font-size: 14px} --> </style> <table width="610" border="0" cellpadding="0" cellspacing="0"> <tr> <td width="610"> <fieldset> <legend></legend> <div align="center"> <form action="InsertReport.php" method="post" enctype="multipart/form-data" name="pc" id="pc" onsubmit="return validateAddQAReportForm()"> <table width="89%" border="0" align="center" cellpadding="0" cellspacing="0" bgcolor="#CCCCCC" style=" border:0px solid gray"size="12"> <tr bgcolor="#BFD0E6"> <td height="24" colspan="3" bgcolor="#FFFFFF"><div align="center" class="style1"><font color="#000000" face="Tahoma"><strong>เพิ่มข้อมูล เอกสาร มาตรฐานที่ <?=$rs["Stand_code"];?> ตัวบ่งชี้ข้อที่ <?=$rs["Ind_code"];?></strong></font></div></td> </tr> <tr bgcolor="#eeeeee"> <td width="22%" bordercolor="#CCCCCC" bgcolor="#FFFFFF"><div align="center" class="style1"><font face="Tahoma">ชื่อรายการเอกสาร</font></a></div></td> <td width="3%" bordercolor="#FFFFCC" bgcolor="#FFFFFF"><div align="center"></div></td> <td width="75%" bordercolor="#FFFFCC" bgcolor="#FFFFFF"> <textarea name="Report_name" cols="60" id="Report_name"></textarea> </td> </tr> <!-- <tr bgcolor="#eeeeee"> <td height="20" bordercolor="#CCCCCC" bgcolor="#FFFFFF"><div align="center" class="style1"><font face="Tahoma">หมวดเอกสาร</font></div></td> <td bordercolor="#FFFFCC" bgcolor="#FFFFFF"> </td> <td bordercolor="#FFFFCC" bgcolor="#FFFFFF" ><select name="conditionId" id="conditionId"> <?php //$strSQL1 = "SELECT * FROM docontion_tb "; //$result1= mysql_query($strSQL1); //while( $rs1 = mysql_fetch_array($result1)) //{ //echo"<option value=\"$rs1[conditionId]\" ><b>$rs1[Docom_name]</b></option>\n"; //} ?> </select> <span class="style1" onclick="MM_openBrWindow('AddCoument.php','Detail','scrollbars=yes,width=500,height=150')"><a href="#"><img src="../picture/search.gif" width="15" height="19" border="0" alt="เพิ่มข้อมูล" /></a></span> ( <? echo $rs[code];?>&<? echo $rs[Ind_code];?> )</td> </tr> --> <tr bordercolor="#99CCFF" bgcolor="#86ade2"> <td bgcolor="#FFFFFF"><div align="center" class="style1"><font face="Tahoma">โหลดเอกสาร</font></div></td> <td bgcolor="#FFFFFF"> </td> <td bgcolor="#FFFFFF"><table width="78%" border="0" cellpadding="0" cellspacing="1" class="style1"> <tr> <td width="74%"><div align="center"> <input name="Filename" type="file" id="Filename" onchange="browse()" size="30" /> </div></td> <td width="26%"><div align="center"><a href="#"></a></div></td> </tr> </table></td> </tr> <tr bgcolor="#BFD0E6"> <td height="50" colspan="3" bgcolor="#FFFFFF" valign="middle"><div align="center"> <div align="center"> <a href="#"></a> <input type="submit" name="Submit" value="เพิ่มข้อมูล" class="button" style="cursor:pointer"/> <input type="button" name="Submit2" onclick="window.close()" value="ปิดหน้าต่าง" class="button" style="cursor:pointer"/> <font color="#006633" size="2" face="Tahoma"> <input name="code" type="hidden" id="code" value="<? echo $rs[code]?>" /> </font><font color="#006633" size="2" face="Tahoma"> <input name="Ind_code" type="hidden" id="Ind_code" value="<? echo $rs[Ind_code]?>" /> <input name="Stand_code" type="hidden" id="Stand_code" value="<? echo $rs[Stand_code]?>" /> <input name="ProjectId" type="hidden" id="ProjectId" value="<? echo $rs[ProjectId]?>" /> <input name="ReportId" type="hidden" id="ReportId" value="<? echo $rs[ReportId]?>" /> </font></div> </div></td> </tr> </table> </form> </fieldset> <font color="<?php echo $GLOBALS["COLOR_FONT_3"];?>" size="2"> </font></td> </tr> </table> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.007 ]-- |