Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage_22222/teacher_aj_viratt/ drwxr-xr-x |
Viewing file: Select action/file-type: <?php session_start(); if (session_is_registered("valid_user")) { $Username = $valid_user; include("../include/FunctionDB.php"); ConnectDB(); $sql ="SELECT * FROM personal_tb WHERE Username='$Username'"; $result = mysql_query($sql) or die("Cannot Select").mysql_error(); $rs = mysql_fetch_array($result); $sql2 ="SELECT * FROM edu_product_tb WHERE Prod_code='$Prod_code'"; $res = mysql_query($sql2) or die("Cannot Select").mysql_error(); $row = mysql_fetch_array($res); ?> <html> <head> <title>Display Detail</title> <meta http-equiv="Content-Type" content="text/html; charset=windows-874"> <link rel="stylesheet" href="../css/cart4.css" type="text/css"> <link href="../../css/style1.css" rel="stylesheet" type="text/css"> <style type="text/css"> <!-- .style1 {font-size: 14px} --> </style> </head> <body bgcolor="#FFFFFF" topmargin="0"> <table width="101%" border="0" align="center" cellpadding="0" cellspacing="1"> <tr bgcolor="#D5F0F9"> <td colspan="3"> <div align="center"><font color="#003366" size="4" face="Tahoma"><strong>แสดงผลงานทางวิชาการ</strong></font></div></td> </tr> <tr bgcolor="#EEEEEE"> <td><div align="center"><font color="#003366" size="2" face="Tahoma"><strong>ชื่อ-นามสกุล อาจารย์ </strong></font></div></td> <td bordercolor="#FEEDF9"> </td> <td bordercolor="#F2DEFE"><font color="#003366" size="2" face="Tahoma"><strong><? echo $rs[Teacher_name] ;?> <? echo $rs[Teacher_lastname] ;?> </strong></font></td> </tr> <tr bgcolor="#EEEEEE"> <td width="28%"> <div align="center"><font color="#000033" size="2" face="Tahoma">ชื่อผลงาน</font></div></td> <td width="0%" bordercolor="#FEEDF9"> </td> <td width="72%" bordercolor="#F2DEFE"><font color="#0033CC" size="2" face="Tahoma"><? echo $row[Product_name]?></font></td> </tr> <tr bgcolor="#EEEEEE"> <td height="22"> <div align="center"><font color="#000033" size="2" face="Tahoma">ประเภทผลงาน</font></div></td> <td bordercolor="#FEEDF9"> </td> <td bordercolor="#F2DEFE"> <font color="#0033CC" size="2" face="Tahoma"> <?php echo $row[Product_type]; ?> </font></td> </tr> <tr bgcolor="#EEEEEE"> <td> <div align="center"><font color="#000033" size="2" face="Tahoma">วััน/เดือน/ปี เริ่มผลิต</font></div></td> <td bordercolor="#FEEDF9"><font size="2" face="Tahoma"> </font></td> <td bordercolor="#F2DEFE"><font color="#003399" size="2" face="Tahoma"> </font><font color="#003366" size="2" face="Tahoma"> <?php $sday = $row[Prod_date]; $yearthai = explode("-",$sday); $day = intval($yearthai[2]); $month = intval($yearthai[1]); $year = intval($yearthai[0]); ////////////////// // $yearthai = $day ; // $month = TxtThaiMonth($month); echo"$day"."/"."$month"."/"."$year"; ?> </font><font color="#003399" size="2" face="Tahoma"> <font color="#000033">วััน/เดือน/ปี แล้วเสร็จ</font> </font><font color="#003366" size="2" face="Tahoma"> <?php $sday = $row[Prod_finish]; $yearthai = explode("-",$sday); $day = intval($yearthai[2]); $month = intval($yearthai[1]); $year = intval($yearthai[0]); ////////////////// // $yearthai = $day ; // $month = TxtThaiMonth($month); echo"$day"."/"."$month"."/"."$year"; ?> </font></td> </tr> <tr bgcolor="#EEEEEE"> <td height="20"><div align="center" class="style1"><font face="Tahoma">ชื่อผู้ร่วมที่ 1</font></div></td> <td bordercolor="#FEEDF9"> </td> <td bordercolor="#F2DEFE"><font color="#003366" size="2" face="Tahoma"> <?php $Teacher_code = $row["name1"]; $strSQL3 = "SELECT * FROM personal_tb WHERE Teacher_code='$Teacher_code' "; $result3= mysql_query($strSQL3); $rs3 = mysql_fetch_array($result3); echo"$rs3[Teacher_name] $rs3[Teacher_lastname]"; ?> </font></td> </tr> <tr bgcolor="#EEEEEE"> <td height="20"><div align="center" class="style1"><font face="Tahoma">ชื่อผู้ร่วมที่ 2</font></div></td> <td bordercolor="#FEEDF9"> </td> <td bordercolor="#F2DEFE"><font color="#003366" size="2" face="Tahoma"> <?php $Teacher_code = $row["name2"]; $strSQL3 = "SELECT * FROM personal_tb WHERE Teacher_code='$Teacher_code' "; $result3= mysql_query($strSQL3); $rs3 = mysql_fetch_array($result3); echo"$rs3[Teacher_name] $rs3[Teacher_lastname]"; ?> </font></td> </tr> <tr bgcolor="#EEEEEE"> <td height="20"><div align="center" class="style1"><font face="Tahoma">ชื่อผู้ร่วมท ี่3</font></div></td> <td bordercolor="#FEEDF9"> </td> <td bordercolor="#F2DEFE"><font color="#003366" size="2" face="Tahoma"> <?php $Teacher_code = $row["name3"]; $strSQL3 = "SELECT * FROM personal_tb WHERE Teacher_code='$Teacher_code' "; $result3= mysql_query($strSQL3); $rs3 = mysql_fetch_array($result3); echo"$rs3[Teacher_name] $rs3[Teacher_lastname]"; ?> </font></td> </tr> <tr bgcolor="#EEEEEE"> <td height="20"><div align="center" class="style1"><font face="Tahoma">ชื่อผู้ร่วมที่ 4</font></div></td> <td bordercolor="#FEEDF9"> </td> <td bordercolor="#F2DEFE"><font color="#003366" size="2" face="Tahoma"> <?php $Teacher_code = $row["name4"]; $strSQL3 = "SELECT * FROM personal_tb WHERE Teacher_code='$Teacher_code' "; $result3= mysql_query($strSQL3); $rs3 = mysql_fetch_array($result3); echo"$rs3[Teacher_name] $rs3[Teacher_lastname]"; ?> </font></td> </tr> <tr bgcolor="#EEEEEE"> <td height="20"><div align="center" class="style1"><font face="Tahoma">ชื่อผู้ร่วมที่ 5</font></div></td> <td bordercolor="#FEEDF9"> </td> <td bordercolor="#F2DEFE"><font color="#003366" size="2" face="Tahoma"> <?php $Teacher_code = $row["name5"]; $strSQL3 = "SELECT * FROM personal_tb WHERE Teacher_code='$Teacher_code' "; $result3= mysql_query($strSQL3); $rs3 = mysql_fetch_array($result3); echo"$rs3[Teacher_name] $rs3[Teacher_lastname]"; ?> </font></td> </tr> <tr bgcolor="#EEEEEE"> <td height="20"><div align="center" class="style1"><font face="Tahoma">ชื่อผู้ร่วมที่ 6</font></div></td> <td bordercolor="#FEEDF9"> </td> <td bordercolor="#F2DEFE"><font color="#003366" size="2" face="Tahoma"> <?php $Teacher_code = $row["name6"]; $strSQL3 = "SELECT * FROM personal_tb WHERE Teacher_code='$Teacher_code' "; $result3= mysql_query($strSQL3); $rs3 = mysql_fetch_array($result3); echo"$rs3[Teacher_name] $rs3[Teacher_lastname]"; ?> </font></td> </tr> <tr bgcolor="#EEEEEE"> <td height="20"><div align="center" class="style1"><font face="Tahoma">ชื่อผู้ร่วมที่ 7</font></div></td> <td bordercolor="#FEEDF9"> </td> <td bordercolor="#F2DEFE"><font color="#003366" size="2" face="Tahoma"> <?php $Teacher_code = $row["name7"]; $strSQL3 = "SELECT * FROM personal_tb WHERE Teacher_code='$Teacher_code' "; $result3= mysql_query($strSQL3); $rs3 = mysql_fetch_array($result3); echo"$rs3[Teacher_name] $rs3[Teacher_lastname]"; ?> </font></td> </tr> <tr bgcolor="#EEEEEE"> <td height="20"> <div align="center"><font size="2" face="Tahoma">ปีการศึกษา</font></div></td> <td bordercolor="#FEEDF9"> </td> <td bordercolor="#F2DEFE"><font color="#003399" size="2" face="Tahoma"><? echo $row[Term]?></font></td> </tr> <tr bgcolor="#EEEEEE"> <td height="22"> <div align="center"><font color="#000033" size="2" face="Tahoma">การเผยแพร่</font></div></td> <td bordercolor="#FEEDF9"> </td> <td bordercolor="#F2DEFE"> <font color="#003399" size="2" face="Tahoma"><? echo $row[Propagate]?></font></td> </tr> <tr bgcolor="#EEEEEE"> <td height="22"> <div align="center"><font color="#000033" size="2" face="Tahoma">แหล่งงบประมาณ </font> </div></td> <td bordercolor="#FEEDF9"> </td> <td bordercolor="#F2DEFE"> <font color="#003399" size="2" face="Tahoma"><? echo $row[Fund_resource]?> <font color="#000033">งบประมาณ</font> <? echo $row[Fund]?> </font></td> </tr> <tr bgcolor="#EEEEEE"> <td height="20"> <div align="center"><font color="#000033" size="2" face="Tahoma">ประโยชน์ของผลงาน</font></div></td> <td bordercolor="#FEEDF9"> </td> <td bordercolor="#F2DEFE"><font color="#003399" size="2" face="Tahoma"><? echo nl2br($row[Benefit])?></font> </td> </tr> <tr bgcolor="#EEEEEE"> <td> <div align="center"><font color="#000033" size="2" face="Tahoma">การนำไปใช้อ้างอิง่</font></div></td> <td bordercolor="#FEEDF9"> </td> <td bordercolor="#F2DEFE"><font color="#003399" size="2" face="Tahoma"><? echo $row[Use_ref]?> </font></td> </tr> <tr bgcolor="#D5F0F9"> <td colspan="3"> <div align="center"> <input type="button" name="Submit2" value="พิมพ์" class="button"> <input type="button" name="close2" value="ปิดหน้าต่าง" onClick="window.close()"> </div></td> </tr> </table> </body> </html> <?php } else { echo"<meta http-equiv=\"refresh\" content=\"3;URL=../FrmLogin.php\">\n"; echo"Please Login "; } ?> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0061 ]-- |