403Webshell
Server IP : 61.19.30.66  /  Your IP : 216.73.216.59
Web Server : Apache/2.2.22 (Ubuntu)
System : Linux klw 3.11.0-15-generic #25~precise1-Ubuntu SMP Thu Jan 30 17:39:31 UTC 2014 x86_64
User : www-data ( 33)
PHP Version : 5.3.10-1ubuntu3.48
Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,
MySQL : ON  |  cURL : OFF  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : OFF
Directory :  /var/www/gpa/data/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/gpa/data/sumk2.php.bak
<?
require_once "../config/confiteacher.inc.php";
require_once "../config/connectdb.php";
?>

<?

require_once "../head.php";


?>

<html>
<head>
<meta http-equiv=Content-Type content="text/html; charset=tis-620">

<title>½èÒºÃÔËÒçҹÇÔªÒ¡ÒÃ</title>

</head>

<body>
<?
require_once "../config/connectdb.php";
$year=date(" Y ")+542; 
//*** Update Condition ***//
if($_GET["Action"] == "Save")
{
	for($i=1;$i<=$_POST["hdnLine"];$i++)
	{
		$strSQL = "UPDATE transcripts SET ";
		$strSQL .="k1 = '".$_POST["k1$i"]."' ";
		$strSQL .="WHERE id = '".$_POST["hdnid$i"]."' ";
		$objQuery = mysql_query($strSQL);
	}
	//header("location:$_SERVER[PHP_SELF]");
	//exit();
}
$sql2="SELECT years FROM config";
$result2 = mysql_query($sql2);
while (list($years) = mysql_fetch_row($result2)) {
$xsc_years = $years;
$strSQL = "SELECT * FROM teacher LEFT JOIN transcripts ON
 teacher.teachcode=transcripts.teach JOIN mainsubject ON transcripts.code=mainsubject.Codesub
 JOIN klw ON transcripts.IDstudent=klw.Username JOIN post ON transcripts.total!=post.statt WHERE room >0 and xContent<9 and idt = '".$_SESSION['idt']."' and Codesub = '$_GET[id]' and xyy ='$xsc_years' ORDER BY SubjCode ASC,room+1 ASC,sex ASC,Username ASC ";
$objQuery = mysql_query($strSQL) or die ("Error Query [".$strSQL."]");
$i = 1;

}

?>
<table width="773" border="0" align="center" cellpadding="0" cellspacing="0">
                <tr> 
                  <td width="198"><a href="main.php"><font color="#FF0000" size="2">˹éÒËÅÑ¡</font></a>
				  <a href="../web2/excel.php"><font color="#FF0000" size="2">Excel</font></a>
				  
				  </td>
                  <td width="575"><table width="100%" border="0" cellspacing="1" cellpadding="1">
                     <form method="post" action="stat1.php"> <tr> 
                        <td><div align="center"><font color="#666666" size="2">¤é¹ËÒ 
                            : 
                            <input type=text name=txtsearch size=20 class=input>
                            <input name="searchtype" type="radio" value="room" checked>Ëéͧ
                              <input name="searchtype" type="radio" value="IDstudent" checked>ÃËÑʹѡàÃÕ¹
							<input name="Submit" type="submit" class="submitad" value="¤é¹ËÒ">
                            </font> </div></td>
                      </tr></form>
                    </table></td>
                </tr>
              </table>
<form name="frmMain" method="post" action="sumgrade.php?Action=Save">
<table  width="100%" border="0" bgcolor="#999999">
 <center><font size='3' color='red'> ¡´ºÑ¹·Ö¡à·èÒ¹Ñé¹</font></center>
  
  <tr bgcolor="#FFFFFF">
    <th width="10"> <div align="center"></div></th>
	 <th width="10"> <div align="center">#</div></th>
    <th width="10"> <div align="center">ID Student</div></th>
	 <th width="50"> <div align="center">Name </div></th>
	 <th width="20"> <div align="center">Room/ordinal</div></th>

	 <th width="50"> <div align="center">Code</div></th>
    <th width="10"> <div align="center">Total/100</div></th>
	<th width="10"> <div align="center"><input name="Submit" type="image" value="submit" src="images/save.jpg" width="30" height="50" alt="¤Ó¹Ç¹">
  <input type="hidden" name="hdnLine" value="<?=$i;?>"></div></th>
	<th width="10"> <div align="center">¤Ø³Ï</div></th>
    <th width="10"> <div align="center">ÍèÒ¹Ï</div></th>

  </tr>
<?
$i =0;
while($objResult = mysql_fetch_array($objQuery))
{
if($bg == "#EEEEEE") { //Êèǹ¢Í§¡Òà ÊÅѺÊÕ 
$bg = "#FFFFFF";
} else {
$bg = "#EEEEEE";
}

	$i = $i + 1;
?>
  <tr bgcolor="<?=$bg?>">
    <td><div align="center">
	<input type="hidden" name="hdnid<?=$i;?>" size="5" value="<?=$objResult["id"];?>">
	 <td><?=$i?></td>
	
	</div></td>
    <td><?=$objResult["IDstudent"];?></td>
	<td><?=$objResult["Name"];?></td>
	<td><?=$objResult["room"];?>/ <?=$objResult["ordinal"];?></td>
	<td><?=$objResult["code"];?></td>

	<?

$total=$objResult["total"];
?>
    
	
	<td><?=$objResult["total"];?></td>

  </tr>
<?
	  $i = $i;
  }
  ?>
</table>
  <input type="submit" name="submit" value="¤Ó¹Ç¹">
  <input type="hidden" name="hdnLine" value="<?=$i;?>">
  
</form>
<Meta http-equiv="refresh"content="1;URL=sentgpa.php">
</body>
</html>

Youez - 2016 - github.com/yon3zu
LinuXploit