403Webshell
Server IP : 172.67.187.206  /  Your IP : 162.159.115.41
Web Server : Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
System : Windows NT WIN-ECQAAA40806 6.2 build 9200 (Windows Server 2012 Standard Edition) i586
User : SYSTEM ( 0)
PHP Version : 5.6.30
Disable Function : NONE
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /Inetpub/www/myschool/dantabtako/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /Inetpub/www/myschool/dantabtako//tabainrubmonth12.php
<?
header("Content-type: application/vnd.ms-excel");
// header('Content-type: application/csv'); //*** CSV ***//
header("Content-Disposition: attachment; filename=12.xls");
?>
<?
 include "mainfile.php";
?>
  <table width=100%  height=450 border="0" align="left" cellpadding="0" cellspacing="0">
    <tr >
		<td Valign="top" >

<?
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$strSQL = "SELECT * FROM ".TB_TKK2." where  topic like '%$search%' and date(from_unixtime(post_date)) like '____-12-__' ";
$objQuery = mysql_query($strSQL) or die ("Error Query [".$strSQL."]");
$Num_Rows = mysql_num_rows($objQuery);


$strSQL .=" ORDER BY post_date asc ";
$objQuery  = mysql_query($strSQL);
?>
<br>
<table width="100%"   border="1" align="center" cellpadding="0" cellspacing="0" bordercolor="#999999" bordercolordark="#FFFFFF">
	<tr height=25 bgcolor="#009900">
		<td width="5%" class="unnamed1"><font color="#FFFFFF"><div align="center" class="style3"><B>เลขรับ</B></div></font></td>
		<td width="15%" class="unnamed1"><font color="#FFFFFF"><div align="center" class="style3"><B>เลขหนังสือ</B></div></font></td>
		<td width="30%" class="unnamed2"><font color="#FFFFFF"><div align="center" class="style3"><B>เรื่อง</B></div></font></td>
		<td width="10%" class="unnamed2"><font color="#FFFFFF"><div align="center" class="style3"><B>วัน-เดือน-ปี</B></div></font></td>
		<td width="25%" class="unnamed2"><font color="#FFFFFF"><div align="center" class="style3"><B>จาก</B></div></font></td>
		<td width="25%" class="unnamed2"><font color="#FFFFFF"><div align="center" class="style3"><B>ถึง</B></div></font></td>
	</tr>
<?
$i=1;
while($objResult = mysql_fetch_array($objQuery))
{

  if ($i%2==0) 
{
	?><tr height=25 bgcolor="#FFFFC6" class="unnamed1"><?
} else {
	?><tr height=25 bgcolor="ffffff" class="unnamed1"><?
} ?>    
	<td class="unnamed2"><div align="left">&nbsp;<?echo thainumDigit("$objResult[id]"); ?></div></td>
	<td class="unnamed2"><div align="left">&nbsp;<?echo thainumDigit("$objResult[tabain]"); ?></div></td>
	<td class="unnamed2"><div align="left"><A HREF="popup.php?name=tkk2&file=readtkk2&id=<? echo"$objResult[id]"; ?> " onclick="return hs.htmlExpand(this, { contentId: 'highslide-html', objectType: 'iframe', objectWidth: 800, objectHeight: 600} )" class="highslide">&nbsp;<?echo thainumDigit("$objResult[topic]"); ?></A>
</div></td>
	<td class="unnamed2">	
	<?
		 $res[tkk2] = $db->select_query("SELECT * FROM ".TB_TKK2." WHERE id='$objResult[id]'  ");
		$arr[tkk2] = $db->fetch($res[tkk2]); 
	$res[user] = $db->select_query("SELECT * FROM ".TB_user." WHERE id='".$arr[tkk2][category]."'  ");
	$arr[user] = $db->fetch($res[user]);
?>
	<div align="center"><?echo ("".thai_date_fullmonth(strtotime($arr[tkk2][date]))."" );?></div></td>
	<td class="unnamed2"><div align="left">&nbsp;<? echo thainumDigit("$objResult[school]"); ?></div></td>
	<td class="unnamed2"><div align="left">&nbsp; <?=thainumDigit(WEB_AREA);?> </div></td>
  </tr>
<?
	$i++;
}
?>
</table>	
		<table width="100%"   border="0" align="center" c bordercolor="#999999" bordercolordark="#FFFFFF">
		<tr height=25>
		<td>
		</B>
			</td>
			</tr>
			</table>	
</body>
</html>

Youez - 2016 - github.com/yon3zu
LinuXploit