403Webshell
Server IP : 61.19.30.66  /  Your IP : 216.73.216.15
Web Server : Apache/2.2.22 (Ubuntu)
System : Linux klw 3.11.0-15-generic #25~precise1-Ubuntu SMP Thu Jan 30 17:39:31 UTC 2014 x86_64
User : www-data ( 33)
PHP Version : 5.3.10-1ubuntu3.48
Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,
MySQL : ON  |  cURL : OFF  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : OFF
Directory :  /var/www/cooperative/sell/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/cooperative/sell/homebacode.php.bak
<?
ob_start();
session_start();
if($_SESSION["adminlogin"]=="")
{
header('location:index.php');
exit();
}
//============ Start Session และทำการเรียก Function ติดต่อฐานข้อมูล 
require_once('../connect/connectdb.php');
$user=$_SESSION["user"];
?>
<html>
<head>
<meta http-equiv=Content-Type content="text/html; charset=UTF8">

<title>กกกก</title>

</head>

<body>
<?
$teach=$objResult[teachcode];
$time = date("H:i:s");
$signup = (date("Y")+543).date("/n/j") ;
$bill = $time.$signup.$teach;
$year=date(" Y ")+542; 
//*** Update Condition ***//
if($_GET["Action"] == "Save")
{
	for($i=1;$i<=$_POST["hdnLine"];$i++)
	{
		$strSQL = "UPDATE sell SET ";
		$strSQL .="statussell = '".$_POST["txtstatussell$i"]."' ";
		$strSQL .="WHERE idsell = '".$_POST["hdnid$i"]."' ";
		
		$objQuery = mysql_query($strSQL);
	}
	//header("location:$_SERVER[PHP_SELF]");
	//exit();
}
$strSQL = "select * from sell left join stocin on sell.bacodesell=stocin.bacode          
where usersell=$user and statussell<1";
$objQuery = mysql_query($strSQL) or die ("Error Query [".$strSQL."]");
$i = 1;
?>

<form name="frmMain" method="post" action="bacodesave.php?Action=Save">
<table  width="100%" border="0" bgcolor="#999999">
 <center><font size='+1' color='red'>มา-เดอะ-มอ</font>
  <input type="text" name="txtbill" style="font-size:20px;" maxlength="10" value="<? echo $bill?>" ></center>
  <tr bgcolor="#FFFFFF">
    <th width="10"> <div align="center"></div></th>
	 <th width="10"> <div align="center">#</div></th>
	<th width="5"> <div align="center"><font size="+1">code</font></div></th>
	<th width="80%"> <div align="center"><font size="+4">รายการ</font></div></th>
	<th width="10%"> <div align="center"><font size="+4">จำนวน</font></div></th>
	 <th width="20%"> <div align="center"><font size="+4">ราคา</font></div></th>
	<th width="80"> <div align="center"><font size="+4">ลบ</font></div></th>
	
	

  </tr>
<?
$i =0;

while($objResult = mysql_fetch_array($objQuery))

{
if($bg == "#EEEEEE") { //ส่วนของการ สลับสี 
$bg = "#FFFFFF";
} else {
$bg = "#EEEEEE";
}

	$i = $i + 1;
	$idsell =$objResult["idsell"];
	$idcodesell =$objResult["idcodin"];
	$namestoc =$objResult["namestoc"];
	$pricsellstoc =$objResult["pricein"];
	$unitsell =$objResult["unitsell"];
	$bacode =$objResult["bacodesell"];
	$sereail =$objResult["sereail"];
    
	$pric =$pricsellstoc*$unitsell;
	$pricsum+=$pric;
	

	

?>
<?$crsql="SELECT (ProductName ) FROM `product` where ProductID='$idcodesell'";
				$slr=mysql_query($crsql) or die(mysql_error()."<br>".$crsql);
				$dcrd = mysql_fetch_array($slr);
				$namestoc=$dcrd[0];
				?>
  <tr bgcolor="<?=$bg?>">
    <td><div align="center">
	<input type="hidden" name="hdnid<?=$i;?>" size="5" value="<?=$objResult["idsell"];?>">
	 <td><font size="+5"><?=$i?></font></td>
	</div></td>
	<td><input type="text" name="txtidcodesell<?=$i;?>" style="font-size:20px;" maxlength="10" value="<? echo $idcodesell?>" >
	
	<td><div align="right"><font size="+5"><? echo $namestoc?></font>
	</div></td>
	<td><font size="+5"><? echo $unitsell?></font></td>
  <td><input type="text" name="txtpricsell<?=$i;?>" style="font-size:40px;" maxlength="10" value="<? echo $pric?>" >
</td>	
	
                                        

	
    
	
	
<td> <a href=del.php?id=<? echo "$idsell"; ?> onClick="return confirm ('คุณต้องการลบข้อมูลนี้? ')"><img src=images/delete.gif width=40 height=40 border=0 alt=ลบข้อมูล></td>




  </tr>

<?
	  $i = $i;
  }
  ?>
  <tr bgcolor="#FFFFFF">
    <th width="10"> <div align="center"></div></th>
	 <th width="10"> <div align="center">#</div></th>
    <th width="100"> <div align="center"><font size="+5">รหัสลูกค้า<input type="text" name="card" style="font-size:20px;" maxlength="10" value=''/></font></div></th>
	<th width="100"> <div align="center"><font size="+5">ระบุเงินจ่าย<input type="text" name="cash" style="font-size:40px;"  maxlength="10" onKeyUp="if(isNaN(this.value)){ alert('เฉพาะตัวเลข'); this.value='';}" /></font></div></th>
	 <th width="100"> <div align="center"><font size="+5">รวม</font></div></th>
	<th width="50"> <div align="center"><font size="+5">
	<input type="text" name="sumtotalall" style="font-size:40px;" value="<? echo  $pricsum?>">
	</th>
<th width="100"> <div align="center"><font size="+5"></font></div></th>
	

  </tr>
</table><center>
  <input  type="image" name="submit" src='images/pay.jpg'>
  <input type="hidden" name="hdnLine" value="<?=$i;?>">
</form>
</body>
</html>

Youez - 2016 - github.com/yon3zu
LinuXploit