Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/directorBCNU/admin/ drwxr-xr-x | |
| Viewing file: Select action/file-type: <?php
include_once "template.php";
showHeader();
include_once "../class/clsTable.php";
include_once "../class/clsDepartment.php";
include_once "../class/clsPerson.php";
include_once "../link/function.php";
include_once "../class/clsDocLinePosition.php";
include_once "../class/clsDocLineConfig.php";
$oC = new clsConnection($GLOBALS['DBHOST'], $GLOBALS['DBNAME_EOFFICE'], $GLOBALS['DBUSER_EOFFICE'], $GLOBALS['DBPASS_EOFFICE']);
$oDP = new department($oC);
$oDP4 = new department($oC);
$oPS = new person($oC);
$oDlc = new docLineConfig($oC);
$oDlc2 = new docLineConfig($oC);
$oDlp = new docLinePosition($oC);
$oDlp2 = new docLinePosition($oC);
$oDlp1 = new docLinePosition($oC);
$Maxgroup=$oDP4->SearchMaxDocGroup();
//--------find groupID and systemID
session_register("GroupID");
session_register("system_eokkID");
session_register("DLCID");
session_register("one_position");
if($__gp){
$GroupID=$__gp;
}
if($__gp){
$system_eokkID=$__ss;
}
if($dlcId){
$DLCID=$dlcId;
}
//------------------------
//---------bypass select [only one position]
$j=0;
$oDlp2->SearchDlpIDByGpID($GroupID);
while($oDlp2->GetRecord()){
$oDlc2->SearchDlcIDByPsPositionDlpID($oU->userPsCode,$oDlp2->DlpID,$Maxgroup);
while($oDlc2->GetRecord()){
$j++;
$oneposition=$oDlc2->DlcID;
}
}
if($j=="1"){ //if show one position
$DLCID=$oneposition;
$oDlc2->SearchByKey($DLCID);
$oDlc2->GetRecord();
if($oDlc2->DlcPropose=="Y" || $oDlc2->DlcSign=="Y" || $oDlc2->DlcSend=="Y" || $oDlc2->DlcByPass=="Y" || $oDlc2->DlcView =="Y"){
?>
<script language="javascript">
window.location.href ="index2.php?dlcId=<? echo $oneposition; ?>";
</script>
<?
}else{
$one_position=1; //can not select
}
}
//-----------------------------
?>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=tis-620">
<link href="../source/style.css" rel="stylesheet" type="text/css">
</head>
<style>
<!--
A:link {text-decoration: none; color: #000000}
A:visited {text-decoration: none; color: #000000}
A:hover {text-decoration: none; font-weight: underline; color: #FB6400}
-->
</style>
<body>
<iframe id="a" name="a" src="" style="width:$0px;height:0px;border:0"></iframe>
<br><form name="ff" METHOD="POST" target="a">
<table width="750" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<td>
<fieldset>
<legend><font size="5" color="#FF0000"><b>ยินดีต้อนรับ</b></font></legend>
<label>
<div align="right">
<font size="5" color="<?php echo $GLOBALS['COLOR_FONT_5'];?>" >
<br><b><?php echo $oU->userLogin." : ".$oU->userName;?> </b><br>
<img src="../picture/bg.gif" align="absmiddle" border="0" height="2" width="500"><br><br>
<font size="5" color="#FFCC66"><?php echo $GLOBALS["SITENAME"];?> </font>
</font>
</div>
<div align="right">
<img src="../picture/v_eoffice.jpg"></div>
<? if($GroupID==107 || $GroupID==110 || $GroupID==111 || $GroupID==112 || $GroupID==115){ ?><br><br><br>
<table width="98%" border=0 align="center" >
<? if(($DLCID=="" || ($j!="1"))){ ?>
<tr>
<td align="right"><font size="3"><strong><img src="../picture/arrow_down.gif" border="0">
กรุณาเลือกตำแหน่งงานเพื่อเข้าใช้ระบบสารบรรณ</strong></font> </td>
</tr>
<? } ?>
<tr><td align="right">
<table width="98%" border=0>
<?
$i=0;
$oDlp->SearchDlpIDByGpID($GroupID);
while($oDlp->GetRecord()){
$oDlc->SearchByPsPositionDlpID($oU->userPsCode,$oDlp->DlpID,$Maxgroup);
while($oDlc->GetRecord()){
$oDlp1->SearchByKey($oDlc->DlpID);
$oDlp1->GetRecord();
$oDP->SearchDeptByMaxdeptDate($oDlc->deptId);
$oDP->GetRecord();
?>
<tr>
<td width="48%" align="right">
<? if($DLCID==$oDlc->DlcID && $one_position!=1){ //selected ?>
<strong><font color="<?php echo $GLOBALS["COLOR_FONT_9"]; ?>"></font></strong><img src="../picture/go.gif" border="0">
<? }else{
if($oDlc->DlcPropose!="Y" && $oDlc->DlcSign!="Y"&& $oDlc->DlcSend!="Y" && $oDlc->DlcByPass!="Y" && $oDlc->DlcView !="Y"){
echo "ยังไม่มีการกำหนดหน้าที่ใดๆให้กับตำแหน่งนี้ <img src=\"../picture/delete.gif\" border=\"0\"><br>จึงไม่สามารถเข้าใช้งานได้ กรุณาติดต่อผู้รับผิดชอบระบบ";
}
} ?>
</td>
<td width="52%" height="60" align="left"><font color="<?php echo $GLOBALS["COLOR_FONT_2"]; ?>" size="3"><strong>
<? if($oDlc->DlcPropose=="Y" || $oDlc->DlcSign=="Y" || $oDlc->DlcSend=="Y" || $oDlc->DlcByPass=="Y" || $oDlc->DlcView =="Y"){ ?>
<a href="index2.php?dlcId=<? echo $oDlc->DlcID; ?>">
<? } ?>
<img src="<? echo $_SYSICO_MINI[$system_eokkID]; ?>" border="0" align="absmiddle"> <? echo $oDlp1->DlpName;?> <? echo "(".$oDP->deptName.")"; ?>
<? if($oDlc->DlcPropose=="Y" || $oDlc->DlcSign=="Y" || $oDlc->DlcSend=="Y" || $oDlc->DlcByPass=="Y" || $oDlc->DlcView =="Y"){ ?>
</a>
<? } ?>
</strong></font>
</td>
</tr>
<? $i++; } //get all docLinePosition
} //docLinePosition from groupid ?>
<? if($i=="0"){ ?>
<tr><td align="center" colspan="2"><br>
<font color="<?php echo $GLOBALS["COLOR_FONT_3"]; ?>" size="2"><strong>***
ยังไม่กำหนดกลุ่มงานนี้ในระบบจัดการผู้ใช้ให้กับผู้ใช้ หรือ ยังไม่มีการกำหนดตำแหน่งงานให้ <br>หรือยังไม่ยืนยันการใช้งาน
กรุณาติดต่อผู้รับผิดชอบระบบ***</strong></font></td>
</tr>
<? } ?>
</table>
</td></tr>
</table><? }// if selectDlp?><br>
</label>
</fieldset>
</td>
</tr>
</table>
</form>
</body>
</html>
<?php
showFooter();
?>
<script>
function selectDocPosition(){
document.ff.submit();
}
</script> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0055 ]-- |