!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686
 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/mistk/mistk/mistk/eoffice/admin/   drwxr-xr-x
Free 50.78 GB of 127.8 GB (39.73%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     addRegisDoc.php (26.12 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
include_once "template.php";
include_once 
"../class/clsTable.php";
include_once 
"../class/clsDepartment.php";
include_once 
"../class/clsPerson.php";
include_once 
"../link/function.php";
include_once 
"../link/functionshow.php";
include_once 
"../class/clsDocLinePosition.php";
include_once 
"../class/clsDocLineConfig.php";
include_once 
"../class/clsReceiveSendType.php";
include_once 
"../class/clsDocType.php";
include_once 
"../class/clsDocSpeedLevel.php";
include_once 
"../class/clsDocSecreLevel.php";
include_once 
"../class/clsDocattatchesTmp.php";
include_once 
"funct.php";
include_once 
"../link/keyThai.php";
include_once 
"../class/clsSysConfig.php";

$oC = new clsConnection($GLOBALS['DBHOST'], $GLOBALS['DBNAME_EOFFICE'], $GLOBALS['DBUSER_EOFFICE'], $GLOBALS['DBPASS_EOFFICE']);

$oDP = new Department($oC);
$oDP2 = new Department($oC);
$oDP3 = new Department($oC);
$oPS = new person($oC);
$oDlc = new DocLineConfig($oC);
$oDlc2 = new DocLineConfig($oC);
$oDlc3 = new DocLineConfig($oC);
$oDlp = new docLinePosition($oC);
$oDlp2 = new docLinePosition($oC);
$oRSt = new receiveSendType($oC);
$oDt = new doctype($oC);
$oDt2 = new doctype($oC);
$oDsl = new DocSpeedLevel($oC);
$oDcl = new DocSecretLevel($oC);
$oDtmp = new DocattatchesTmp($oC);

$MaxDocGroup=$oDP->SearchMaxDocGroup();
$InputThai=$oSys->SearchByInputThai();
$oSys->SearchByKey($free);
$oSys->GetRecord();
if(
$_SESSION['DLCID'] && $_SESSION['one_position']!="1"){ include_once "selectposition.php";
?>

<?
    $oDlc
->SearchByKey($_SESSION['DLCID']); $oDlc->GetRecord(); 
    if(
$_SESSION['DLCIDSECOND']=="Y"){
        
$oDlc3->SearchByKey($_SESSION['DLCIDSECONDID']); $oDlc3->GetRecord(); 
        
$mypersonId=$oDlc3->personId;
    }else{
        
$mypersonId=$oDlc->personId;
    }
    
$deptId=$oDlc->deptId;
    
$oDP->SearchByKey($oDlc->deptId); 
    
$oDP->GetRecord();    
    if(
$RsID=="3"){
             if(
$oDP->sendOut=="Y"){ 
                            
$RsID="2";  $DtID="1";
            }else{   
                            if(
$oDP->receiveIn=="Y"){  
                                    
$RsID="3";  $DtID="3";
                            }else if(
$oDP->sendIn=="Y"){  
                                    
$RsID="4";   $DtID="3";
                            }  
            }
    }else{
        if(
$RsID=="" && $oDP->deptIsCenter=="Y" && $oDP->receiveOut=="Y"){ 
            
$RsID=1;
            if(
$DtID==""){ $DtID=1; }
        }else if(
$RsID=="" && $oDP->deptIsCenter=="Y" && $oDP->sendOut=="Y"){ 
            
$RsID=2;
            if(
$DtID==""){ $DtID=1; }
        }else if(
$RsID=="" && $oDP->deptIsCenter=="N" && $oDP->sendIn=="Y" ){
            
$RsID=4;
            if(
$DtID==""){ $DtID=3; }
        }
    }
    
?>
<html>
<head>
<script>
function checkradio(RegisterID,RegisterName,RegisterYear){
        document.getElementById('RegisterName').value=RegisterName;      
        document.getElementById('RegisterYear').value=RegisterYear;      
        document.getElementById('selectdocregis').value=RegisterID;
}
</script>
<script language="javascript" src="../source/calendarDateInput.js"></script>
<meta http-equiv="Content-Type" content="text/html; charset=tis-620">
<link href="../source/style.css" rel="stylesheet" type="text/css">
<script src="getinfo.js"></script>
</head>
<body>
<iframe id="register" name="register" src="" style="width:$0px;height:0px;border:0"></iframe>
<table  width="100%"  align="center">
<tr><td >
<fieldset>

      <legend><font size="2" color="<?php echo $GLOBALS["COLOR_FONT_3"]; ?>"><a href="regisDoc.php">ลงทะเบียนใหม่/เสนอหนังสือ</a>
      <img src="../picture/ico3.gif" width="10" border="0" align="absmiddle">ลงทะเบียนหนังสือ</font>
    </font></legend><br>
        <form name="ff"  METHOD="POST" action="processRegisterDoc.php">
        <input name="RsID"  id="RsID" type="hidden"  value="<?php echo $RsID;?>">
      <table align="center" width="95%" >
      <tr>
      <td align="left" colspan="2"><a href="addRegisDoc.php?RsID=<? echo $RsID?>&DtID=<? echo $DtID?>"><img src="../picture/regist_tc.jpg" title="ลงทะเบียนหนังสือ"  style="cursor:pointer;" border="0"></a></td>
      </tr>
      <tr><td colspan="2"><? include "showSelectInsertTypeDoc.php"?></td></tr>
        <?
            
//----config useDocNoCenter
            
if($oSys->useDocNoCenter=="Y" && $RsID=="2"){
                    if(
$useMainDocNo==""){
                        
$useMainDocNo="Y";
                    }
            }
        
        
?>     
        <? if($DtID==13){?>
              <tr>
                    <td width="60%" align="right"><img src="../picture/icoa15.jpg"  border="0" title="ลงทะเบียนหนังสือรับรองแบบกลุ่ม">&nbsp;</td>
                    <td width="40%" align="left"><font color="<?php echo $GLOBALS["COLOR_FONT_2"]; ?>" size="2"><a href="addRegisDocAll.php?RsID=<? echo $RsID?>&DtID=<? echo $DtID?>"  style="cursor:pointer;"> 
                     <strong>ลงทะเบียน >></strong> หนังสือรับรองแบบกลุ่ม</a> </font></td>
                  </tr>
              <tr><td align="right">&nbsp;</td>
                    <td align="left"><font color="<?php echo $GLOBALS["COLOR_FONT_2"]; ?>" size="2"><a href="addRegisDocAllReg.php?RsID=<? echo $RsID?>&DtID=<? echo $DtID?>"  style="cursor:pointer;"> 
                       <strong>ลงทะเบียน >></strong> หนังสือรับรองเกี่ยวกับนักศึกษาแบบกลุ่ม</a>
                      </font></td>
                  </tr>
        <? }  ?>
      </table>
        <table width="95%" border="0" align="center" cellpadding="0" cellspacing="1" bordercolor="#DADADA" >
        <tr><td colspan="3" align="center"><? if($oSys->closeSystem=="Y"){ echo "<font color=#FF0000>ระบบไม่อนุญาติให้ลงทะเบียนใหม่้ เนื่องจากกำลังจะปรับโครงสร้างหน่วยงาน</font>";  }?></td></tr>
          <? if($RsID=="2"){?>
<!--           <tr><td>&nbsp;</td><td>&nbsp;</td>
          <td align=left ><input name="useDocRegisfromCenter" id="useDocRegisfromCenter" type="checkbox" value="Y" onClick='return showSelectDocNoRegisterfromCenter();'>
              &nbsp;ใช้เลขทะเบียนส่งจากสป.</td>
          </tr> -->
          <? }else{    ?>
<!--           <input name="useDocRegisfromCenter" id="useDocRegisfromCenter" type="hidden" value="" onClick='return showSelectDocNoRegisterfromCenter();'> -->
          <tr>
            <td>&nbsp;</td>
            <td>&nbsp;</td>
            <td align="right">&nbsp;</td>
          </tr>
        <? }?>
          <tr >
            <td width="22%" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_1"]; ?>">&nbsp;&nbsp;<strong>เลขทะเบียน<? echo ShowNameRSDoc2($RsID);?></strong></td>
            <td width="0%" align="center"><strong>:</strong></td>
            <? $rd=ShowRunningDoc($RsID,$DtID,$oDlc->deptId); ?>
            <td> 
              <?  
            
if($rd=="NoConfirm"){  
                    echo 
"<font color=\"#8C0000\"><strong><div align=\"center\">** ไม่สามารถลงทะเบียนได้ เนื่องจากยังไม่มีการยืนยันการใช้งานเลขทะเบียนหนังสือชนิดนี้  **<br>กรุณาติดต่อผู้รับผิดชอบระบบ</div></strong></font>";
            }else if(
$rd=="N"){  
                    echo 
"<font color=\"#8C0000\"><strong><div align=\"center\">** ไม่สามารถลงทะเบียนได้ เนื่องจากยังไม่มีการตั้งค่าเลขเริ่มต้นของทะเบียนหนังสือชนิดนี้ **<br>กรุณาติดต่อผู้รับผิดชอบระบบ</div></strong></font>"
            }else{   
            
?>
              <div id="showRegister3" ><input name="DocTypeNo" id="DocTypeNo" type="text"  size="25" disabled value="<?php echo a2th($rd);?>" style="FONT-SIZE: 15pt;"></div>
              <input name="DocTypeNo"  id="DocTypeNo" type="hidden"  value="<?php echo $rd;?>"> 
               <input name="DocTypeNo2"  id="DocTypeNo2" type="hidden"  value="<?php echo $rd;?>"> 
              <? 
            
//can regisDoc 
            
?>
            </td>
          </tr>
          <? if($DtID!="15"){   ?>
               <tr ><td width="21%" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_1"]; ?>">&nbsp;&nbsp;<strong><? echo ShowNameDocNo($DtID); ?></strong></td>
             <td width="0%" align="center"><strong>:</strong></td>
            <td><div id="showRegister1" ><? include("showSelectDocNoRegister.php");?></div></td>
           </tr>
           <? ?>
          <tr >
            <td width="22%" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_1"]; ?>">&nbsp;&nbsp;<strong><? echo ShowNameDate2($DtID); ?></strong></td>
            <td width="0%" align="center"><strong>:</strong></td>
            <td>
              <? if($DocDate!="" && $DocDate!="0000-00-00"){ ?>
              <script>DateInput('DocDate', true, 'DD/MM/YYYY','<?php echo $DocDate;?>');</script>
              <?    }else{  ?>
              <script>DateInput('DocDate', true, 'DD/MM/YYYY','<?php echo getNowDateFw2();?>');</script>
              <? ?>
            </td>
          </tr>
          <tr >
            <td width="22%" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_1"]; ?>" >&nbsp;&nbsp;<strong><? echo ShowNameSubject($DtID); ?></strong></td>
            <td width="0%" align="center"><strong>:</strong></td>
            <td ><input name="DocSubject" id="DocSubject" type="text" style="" size="70" maxlength="255" onkeypress="return chkNoKey(event)" onKeyUp="CheckInput('<? echo $InputThai?>','DocSubject')" value="<? if($DocSubject!=""){ echo  a2th($DocSubject);  }?>" ></td>
          </tr>
          <? if($DtID==|| $DtID==||  $DtID==14 || $DtID==13){?>
          <tr >
            <td width="22%" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_1"]; ?>">&nbsp;&nbsp;<strong><? echo ShowNameFrom($DtID); ?></strong></td>
            <td width="0%" align="center"><strong>:</strong></td>
            <td ><input name="DocFrom" id="DocFrom" type="text" style="" size="70" maxlength="255" <?  if($RsID=="2"  || $DtID=="13" ){  $checkNameFrom=1?>value="<? echo a2th($oDP->deptName.' '.$GLOBALS["COLLEGENAME2"]); ?>" disabled<?  }else{    if($DocFrom!=""){  ?> value="<? echo a2th($DocFrom); ?><? }  } ?>  onkeypress="return chkNoKey(event)" onKeyUp="CheckInput('<? echo $InputThai?>','DocFrom')"> 
              <?  if($RsID=="2" || $DtID=="13"){ ?>
              <input name="DocFrom" type="hidden" value="<? echo a2th($oDP->deptName.' '.$GLOBALS["COLLEGENAME2"]); ?>">
              <? ?>
            </td>
          </tr>
          <? ?>
          <? if(($DtID=="3" || $DtID=="15") && $RsID=="4"){?>
          <tr >
            <td width="22%" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_1"]; ?>">&nbsp;&nbsp;<strong>จาก</strong></td>
            <td width="0%" align="center"><strong>:</strong></td>
            <td >&nbsp;<? echo $fsearchDocFrom=searchDeptDlcID($DLCID); ?>
              <input name="DocFrom" id="DocFrom" type="hidden" value="<? echo $fsearchDocFrom?>"></td>
          </tr>
          <? }  ?>      
          <? if($DtID==13){?>
          <tr >
            <td width="22%" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_1"]; ?>">&nbsp;&nbsp;<strong>ชื่อผู้ได้รับการรับรอง</strong></td>
            <td width="0%" align="center"><strong>:</strong></td>
            <td ><input name="CertificatePs" id="CertificatePs" type="text" style="" size="70" maxlength="255" value="<? if($CertificatePs!=""){   echo a2th($CertificatePs); } ?>" onkeypress="return chkNoKey(event)" onKeyUp="CheckInput('<? echo $InputThai?>','CertificatePs')"></td>
          </tr>
          <? ?>
          <? if($DtID==|| $DtID==2  || $DtID==14 || $DtID==|| $DtID==15){?>
          <tr >
            <td width="22%" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_1"]; ?>">&nbsp;&nbsp;<strong><? if($DtID==|| $DtID==15){   echo "เรียน"; }else{  echo "ถึง"; } ?>
              </strong></td>
            <td width="0%" align="center"><strong>:</strong></td>
            <td ><div id="showRegister2" ><? include("showSelectDocToRegister.php");?></div></td>
          </tr>
          <? }?>
          <? if(($DtID==|| $DtID==) && ($RsID=="2" || $RsID=="1")){?>
          <tr >
            <td width="22%" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_1"]; ?>">&nbsp;&nbsp;<strong>อ้างถึง</strong></td>
            <td width="0%" align="center"><strong>:</strong></td>
            <td> 
            
            <textarea name="DocRef" id="DocRef" cols="70" rows="4"></textarea>
            
            <!--<input name="DocRef"  id="DocRef"  type="text" style="" size="70" maxlength="255"   onkeypress="return chkNoKey(event)" onKeyUp="CheckInput('<? echo $InputThai?>','DocRef')" >-->
              <a  style="cursor:pointer;" onClick="addDocRef('<?  echo $RsID?>')"><img src="../picture/search.gif" title="ค้นหา" style="cursor:pointer;"  border="0" ></a> 
            </td>
          </tr>
          <tr >
            <td width="22%" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_1"]; ?>">&nbsp;&nbsp;<strong>สิ่งที่ส่งมาด้วย</strong></td>
            <td width="0%" align="center"><strong>:</strong></td>
            <td><input name="DocOther" id="DocOther" type="text" style="" size="70" maxlength="255" value="<? if($DocOther!=""){   echo a2th($DocOther); } ?>"  onkeypress="return chkNoKey(event)" onKeyUp="CheckInput('<? echo $InputThai?>','DocOther')"></td>
          </tr>
          <? ?>
          <? if($DtID==&& $RsID=="4"){
                    
$oDlc2->SearchByKey($DLCID); $oDlc2->GetRecord(); 
                    
$oDlp2->SearchByKey($oDlc2->DlpID);  $oDlp2->GetRecord();
                    if(
$oDlp2->DlpPID!="0"){ 
                        
$DlcPS2=$DLCID;
                     }else{
                        
$DlcPS2=$oDlc2->SearchDlc2($oDlc2->DlcSeq,$oDlp2->DlpPID,$oDlc2->deptId);
                    }
    
?>
          <tr >
            <td width="22%" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_1"]; ?>">&nbsp;&nbsp;<strong>อ้างถึงหนังสือเพื่อตอบกลับ</strong></td>
            <td width="0%" align="center"><strong>:</strong></td>
            <td>
            <textarea name="DocRefAns" id="DocRefAns" cols="70" rows="4"></textarea>
            <!--<input name="DocRefAns" id="DocRefAns" type="text" style="" size="70" maxlength="255"  value=""  onkeypress="return chkNoKey(event)" onKeyUp="CheckInput('<? echo $InputThai?>','DocRefAns')"> -->
            
              <a  style="cursor:pointer;" onClick="addDocRefAns('<? echo $DLCID?>','<? echo $DlcPS2;  ?>','<? echo $useMainDocNo?>')"><img src="../picture/search.gif" title="ค้นหา" style="cursor:pointer;"  border="0" ></a> 
            </td>
          </tr>
          <? ?>
          <? if($DtID==|| $DtID==|| $DtID==|| $DtID==14 || $DtID==15){?>
          <tr >
            <td width="22%" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_1"]; ?>">&nbsp;&nbsp;<strong>ชั้นความเร็ว</strong></td>
            <td width="0%" align="center"><strong>:</strong></td>
            <td> <select name="DslID" id="DslID">
                <? $oDsl->RSDocSpeedLevel();
                            while(
$oDsl->GetRecord()){?>
                <option value="<? echo $oDsl->DslID;?><? if($DslID!="" && $DslID==$oDsl->DslID){   echo "selected"; }?>><? echo $oDsl->DslName?></option>
                <? ?>
              </select></td>
          </tr>
          <tr >
            <td width="22%" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_1"]; ?>">&nbsp;&nbsp;<strong>ชั้นความลับ</strong></td>
            <td width="0%" align="center"><strong>:</strong></td>
            <td> <select name="DclID" id="DclID" >
                <? $oDcl->RSDocSecretLevel();
                            while(
$oDcl->GetRecord()){?>
                <option value="<? echo $oDcl->DclID;?><? if($DclID!="" && $DclID==$oDcl->DclID){   echo "selected"; }?>><? echo $oDcl->DclName?></option>
                <? ?>
              </select></td>
          </tr>
          <? ?>
          <? if($RsID==|| $RsID==2){ ?>
          <tr >
            <td width="22%" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_1"]; ?>">&nbsp;&nbsp;<strong>หน่วยงานเจ้าของเรื่อง</strong></td>
            <td width="0%" align="center"><strong>:</strong></td>
            <td><input name="DocDeptOwner" id="DocDeptOwner" type="text" style="" size="70" maxlength="255" value="<? if($DocDeptOwner!=""){   echo a2th($DocDeptOwner); } ?>"  onkeypress="return chkNoKey(event)" onKeyUp="CheckInput('<? echo $InputThai?>','DocDeptOwner')"></td>
          </tr>        
          <tr >
            <td width="22%" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_1"]; ?>">&nbsp;&nbsp;<strong>โทรศัพท์เจ้าของเรื่อง</strong></td>
            <td width="0%" align="center"><strong>:</strong></td>
            <td ><input name="DocTelOwner" id="DocTelOwner" type="text" style="" size="70" maxlength="255" onkeypress="return chkNoKey(event)" onKeyUp="CheckInput('<? echo $InputThai?>','DocTelOwner')" value="<? if($DocTelOwner!=""){ echo  a2th($DocTelOwner);  }?>" ></td>
          </tr>    
          <tr >
            <td width="22%" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_1"]; ?>">&nbsp;&nbsp;<strong>โทรสารเจ้าของเรื่อง</strong></td>
            <td width="0%" align="center"><strong>:</strong></td>
            <td><input name="DocFaxOwner" id="DocFaxOwner" type="text" style="" size="70" maxlength="255" value="<? if($DocFaxOwner!=""){   echo a2th($DocFaxOwner); } ?>"  onkeypress="return chkNoKey(event)" onKeyUp="CheckInput('<? echo $InputThai?>','DocFaxOwner')"></td>
          </tr>        
          <tr >
            <td width="22%" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_1"]; ?>">&nbsp;&nbsp;<strong>สำเนาส่ง</strong></td>
            <td width="0%" align="center"><strong>:</strong></td>
            <td><input name="DocCopySend" id="DocCopySend" type="text" style="" size="70" maxlength="255" value="<? if($DocCopySend!=""){   echo a2th($DocCopySend); } ?>"  onkeypress="return chkNoKey(event)" onKeyUp="CheckInput('<? echo $InputThai?>','DocCopySend')"></td>
          </tr>    
          <tr >
            <td width="22%" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_1"]; ?>">&nbsp;&nbsp;<strong>การติดต่อทางอิเล็กทรอนิกส์</strong></td>
            <td width="0%" align="center"><strong>:</strong></td>
            <td><input name="DocContactE" id="DocContactE" type="text" style="" size="70" maxlength="255" value="<? if($DocSendE!=""){   echo a2th($DocSendE); } ?>"  onkeypress="return chkNoKey(event)" onKeyUp="CheckInput('<? echo $InputThai?>','DocContactE')"></td>
          </tr>

          <? }?>
          <tr >
            <td width="22%" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_1"]; ?>">&nbsp;&nbsp;<strong>หมายเหตุ</strong></td>
            <td width="0%" align="center"><strong>:</strong></td>
            <td><textarea name="DocShortDesc" id="DocShortDesc" cols="70" rows="4"  <? echo showtextarea('DocShortDesc',$InputThai); ?> ><? if($DocShortDesc!=""){ echo a2th($DocShortDesc);  } ?></textarea></td>
          </tr>
          <tr > 
            <td width="22%" height="24">&nbsp;&nbsp;</td>
            <td width="0%" align="center">&nbsp;</td>
            <td > 
            <? if($RsID=="2"){?>
            <input name="DocSendReal" id="DocSendReal" type="checkbox" value="Y"  onClick="checkdocsendreal()" <? if($DocSendReal=="Y"){ echo " checked "; } ?>>&nbsp;<b>ส่งหนังสือตัวจริงตามไปด้วย</b>
            <? }else{ ?>
            <input name="DocSendReal" id="DocSendReal" type="hidden" value="">
            <? }?>
              <? if($DtID!="15"){  $oDt2->SearchByKey($DtID); $oDt2->GetRecord();  ?>
              <input name="endDoc" id="endDoc" type="checkbox" value="Y" <? if($RsID=='2' || $RsID=='5'){  echo " checked "; } ?><? if($endDoc=="Y"){ echo " checked "; } ?><? if($RsID=='2' && $oSys->sendAllNode!='Y'){  echo " disabled";  }?> onClick="checkenddoc()">
              &nbsp;<strong>ยุติหนังสือ</strong> <? if($RsID=='2' && $oSys->sendAllNode!='Y'){  ?><input name="endDoc" type="hidden" value="Y">  <?  }?>
              <? ?>
              <?  if(($RsID=="1" || $RsID=="4") && ($DtID=="1" || $DtID=="2" || $DtID=="3")){ ?>
              &nbsp;
              <input name="DrsSendToPs" id="DrsSendToPs" type="checkbox" value="Y" <? if($DrsSendToPs=="Y"){ echo "checked"; }?>>
              &nbsp;<strong>ส่งด่วน (ส่งถึงบุคคลทันที)</strong>
              <? ?>
            </td>
          </tr>
          <tr>
            <td>&nbsp;</td>
          </tr>
          <tr > 
            <td height="24" colspan="3" align="center"> <input type="submit" name="jj" value="บันทึกข้อมูลหนังสือ" onClick="return checkFormat('<? echo $insertDocNo?>');" <? if($rd=="N" || $rd=="NoConfirm"){  echo "disabled";}?> <? if($oDlc->DlcActive!='Y'){  echo "disabled";  }  ?> <? if($oSys->closeSystem=="Y"){  echo "disabled"; }?>
              <? if($checkDocNoex==1){  ?>
              <input name="cregis" type="button" value="ยกเลิกการบันทึก" onClick="location.href='addRegisDoc.php?RsID=<? echo $RsID?>&DtID=<? echo $DtID?>&add=1'"> 
              <? ?>
              <input type="button" name="cancel" value="กลับหน้าหลัก" onClick="location.href = 'regisDoc.php'"> 
              <input name="DlcID" type="hidden" value="<?php echo $DLCID?>"> 
              <input name="DtmpID" type="hidden" value="<?php echo $DtmpID?>"> 
              <input name="personId" type="hidden" value="<?php echo $mypersonId?>"> 
              <input name="deptId" type="hidden" value="<?php echo $oDlc->deptId?>" id="deptId"> 
              <input name="DocGroup" type="hidden" value="<?php echo $MaxDocGroup?>"> 
              <input name="DocRefAnsID" id="DocRefAnsID" type="hidden" value="<?php echo $DocRefAnsID?>"> 
              <input name="DlcIDSecond" type="hidden" value="<?php echo $_SESSION['DLCIDSECOND']; ?>"> 
              <input name="DlcIDSecondID" type="hidden" value="<?php echo $_SESSION['DLCIDSECONDID']; ?>">               
              <input type="hidden" name="method" id="method" value='registerDoc'> </td>
          </tr>
          <tr> 
            <td colspan="3">&nbsp;</td>
          </tr>
          <tr>
            <td colspan="3" align="center"> <table width="98%" >
                <tr>
                  <td><font color="<?php echo $GLOBALS["COLOR_FONT_2"]; ?>" size="3"><strong><img src="../picture/official_letter.gif"   border="0" > 
                    แฟ้มหนังสือ</strong></font><br>
                    <hr color="#000099"></td>
                </tr>
                <tr> 
                  <td width="79%"><table width="100%" align="left">
                      <tr>
                        <td width="70%"> 
                          <? //------------table upload file-------------------------  ?>
                          <table width="100%" border=1 cellpadding="0" cellspacing="0" bordercolor="#6CABF9" style="border-collapse:collapse">
                            <tr> 
                              <td width="246" bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_20"]; ?>"> 
                                <font size="2" color="<?php echo $GLOBALS["COLOR_FONT_2"]; ?>"> 
                                &nbsp;<img src="../picture/attach_ico.gif"   border="0" >&nbsp;แฟ้มที่เกี่ยวข้อง&nbsp;<? echo a2th('0'); ?>&nbsp;รายการ</font></td>
                            </tr>
                            <tr> 
                              <td height="68">&nbsp; <br></td>
                            </tr>
                          </table></td>
                        <td width="30%">&nbsp;</td>
                      </tr>
                      <?
                            $oSys
->RSsysConfig();
                            
$oSys->GetRecord();
                            
$oSys->filesizebyte;
                            
$sizefileM=($oSys->filesizebyte/1024/1024);
                
?>
                      <tr>
                        <td><br>
                          <table width="80%"  border=1 cellpadding="0" cellspacing="0" style="border-collapse:collapse" bordercolor="#6CABF9">
                            <tr> 
                              <td  height="75"  bgcolor="<?php echo $GLOBALS["COLOR_BG_TD_20"]; ?>"> 
                                <font size="2" color="<?php echo $GLOBALS["COLOR_FONT_2"]; ?>"> 
                                &nbsp;คลิ๊กที่ปุ่ม "Browse.." เพื่อเลือกแฟ้ม จากนั้น<br>
                                &nbsp;คลิ๊กที่ปุ่ม "เพิ่มแฟ้ม" เพื่อเพิ่มแฟ้มเข้าในรายการ 
                                <input  name="fileupload" type="file" disabled size="30">
                                <input  type="submit" value="เพิ่มแฟ้ม" disabled>
                                </font> </td>
                            </tr>
                          </table>
                          <font color="<?php echo $GLOBALS["COLOR_FONT_3"]; ?>" size="2">หมายเหตุ***&nbsp;ขนาดแฟ้มไม่เกิน 
                          <? echo $sizefileM?> MB ,ชื่อแฟ้มไม่ควรจะประกอบด้วย 
                          จุด(.) และ ,</font> </td>
                        <td>&nbsp;</td>
                      </tr>
                    </table></td>
                </tr>
              </table>
              <? //------------table upload file-------------------------  ?>
            </td>
          </tr>
        </table>
      </form>  
</fieldset>  
        <table width="95%" border="0" align="center">
        <tr> 
          <td width="143" align="left"><font color="<?php echo $GLOBALS["COLOR_FONT_3"]; ?>" size="2">&nbsp;<strong>หมายเหตุ 
            : </strong>&nbsp;</font></td>
          <td width="1021" align="left"><img src="../picture/allregistered_ico.gif"   border="0" > 
            <font color="<?php echo $GLOBALS["COLOR_FONT_3"]; ?>" size="2">คลิกเพื่อเปิดดูแฟ้มหนังสือ</font></td>
        </tr>
            <tr> 
          <td width="143">&nbsp;</td>
          <td width="1021" align="left"><img src="../picture/delete1.gif"   border="0" > 
            <font color="<?php echo $GLOBALS["COLOR_FONT_3"]; ?>" size="2">คลิกเพื่อลบแฟ้มหนังสือที่ไม่ต้องการ </font></td>
        </tr>
        </table>

</td>
</tr>
</table>
</body>
</html>
<? }else{ include_once "unselectposition.php"; } ?>
<script language="javascript">
function showDoc(){
    document.ff.method.value="showDoc";
    document.ff.target="register";
    document.ff.submit();
}
function checkFormat(q){
/*
        if(document.ff.useDocRegisfromCenter.checked==true){ 
            if(document.getElementById('RegisterName').value==''){
                alert("กรุณาเลือกสมุดทะเบียนเพื่อขอเลขทะเบียนส่งจากสป.");
                return false;
            }
        }
*/
        if(q==1){
            if(document.ff.DocNo.value == ""){
                alert("กรุณากรอกที่หนังสือ");
                document.ff.DocNo.focus();
                return false;
            }
        }
        var agree=confirm("คุณต้องการบันทึกข้อมูลหนังสือแน่นอนใช่หรือไม่ ?");
        if (agree){
            document.ff.method.value="registerDoc";
            return true;
        }else{
            return false ;
        }
}
function addDocRef(RsID){ 
        FileName = "addDocRefTable.php?RsID=<?  echo $RsID;?>";
            var w=350;  
            var h=300;
            strOption = "scrollbars=yes,left=400,top=100,width=" + w + ",height=" + h;
            window.open(FileName,"",strOption); 
        
}
function addDocRefAns(p,q){   
    RsID=document.ff.RsID.value;
            FileName = "addDocRefAnsTable.php?DLCID="+p+"&DlcPS2="+q+"&RsID=<?  echo $RsID;?>";
            var w=390;  
            var h=300;
            strOption = "scrollbars=yes,left=400,top=100,width=" + w + ",height=" + h;
            window.open(FileName,"",strOption); 
            
}
function checkenddoc(){
    if(document.ff.endDoc.checked){
        document.ff.DocSendReal.checked=false;
    }
}
function checkdocsendreal(){
    if(document.ff.DocSendReal.checked){
        document.ff.endDoc.checked=false;
    }
}
function addSendOutDept(){ 
        FileName = "addSendOutDeptTable.php";
            var w=350;  
            var h=300;
            strOption = "scrollbars=yes,left=400,top=100,width=" + w + ",height=" + h;
            window.open(FileName,"",strOption); 
        
}
</script>

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd

Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 

:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0119 ]--