403Webshell
Server IP : 172.67.187.206  /  Your IP : 172.71.28.156
Web Server : Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30
System : Windows NT WIN-ECQAAA40806 6.2 build 9200 (Windows Server 2012 Standard Edition) i586
User : SYSTEM ( 0)
PHP Version : 5.6.30
Disable Function : NONE
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  E:/Inetpub/www/myoffice/2563/modules_backup/report/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : E:/Inetpub/www/myoffice/2563/modules_backup/report/report2.php
<div align="left">
	  <table cellspacing="0" cellpadding="0" width="1000" height=500 border="0">
        <tbody>
          <tr>
            <td valign="top" width="100%" ><div align="center">
                <table cellspacing="0" cellpadding="0" width="98%" border="0">
                  <tbody>
                    <tr>
                      <td><table width="100%">
                          <tr>
                            <td>
                              <table width="100%" align="center" cellspacing="0" cellpadding="0" border="0">
                                <tr>
                                  <td height="1" class="dotline"></td>
                                </tr>
                                <tr>
                                  <td>
<?
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
		$res[user] = $db->select_query("SELECT * FROM ".TB_user." WHERE username='".$_SESSION['user_user']."' ");
		$arr[user] = $db->fetch($res[user]);
//////////////////////////////////////////// แสดงรายชื่อสมาชิกเว็บ
if($_GET[op] == ""){
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$limit = 200 ;
$SUMPAGE = $db->num_rows(TB_TKK1,"id","");
$page=$_GET[page];
if (empty($page)){
	$page=1;
}
$rt = $SUMPAGE%$limit ;
$totalpage = ($rt!=0) ? floor($SUMPAGE/$limit)+1 : floor($SUMPAGE/$limit); 
$goto = ($page-1)*$limit ;
?>
 <CENTER><b>รายงานผลการดำเนินงานของกลุ่ม
 <BR>
 <font color=RED>คลิกที่ชื่อกลุ่มเพื่อตรวจสอบการปฏิบัติงานของบุคลากรในกลุ่ม</font></B>
 </CENTER>
  <table width="1000" cellspacing="2" cellpadding="1" >
                                          <tr bgcolor="#99ccff" height="25">
                                            <td><div align="center"><font color="#000000"><b>ที่</b></font></div></td>
                                            <td><div align="center"><font color="#000000"><b>ชื่อกลุ่ม</b></font></div></td>
											 <td color=red><div align="center"><font color="#000000"><b>ทะเบียนบันทึก</b></font></div></td>
											 <td><div align="center"><font color="#000000"><b>รอดำเนินการ</b></font></div></td>
											<td><div align="center"><font color="#000000"><b>ทะเบียนส่ง</b></font></div></td>
											<td><div align="center"><font color="#000000"><b>รอแนบไฟล์</b></font></div></td>
											<td><div align="center"><font color="#000000"><b>ทะเบียนรับ</b></font></div></td>
											<td><div align="center"><font color="#000000"><b>รอดำเนินการ</b></font></div></td>
                                          </tr>
   <?
$res[working] = $db->select_query("SELECT * FROM ".TB_WORKING_CAT." WHERE category_name ='".$arr[user][category_name]."'  ORDER BY id ASC LIMIT $goto, $limit ");
while($arr[working] = $db->fetch($res[working])){
	$res[user] = $db->select_query("SELECT * FROM ".TB_user." WHERE category_name='".$arr[working][category_name]."' ");
	$arr[user] = $db->fetch($res[user]);

?>

<?
	$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
		$res[tkk1] = $db->select_query("SELECT * FROM ".TB_TKK1."");
		$arr[tkk1] = $db->fetch($res[tkk1]);
?>

<?php
// Make a MySQL Connection
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$query = "SELECT kom, SUM(kom) FROM web_tkk1  WHERE  kom='".$arr[user][category_name]."' GROUP BY id"; 
$sql6="select sum(rabob=30) as tt6 from web_tkk1 where   kom='".$arr[user][category_name]."' ";
			$dbquery6 = mysql_db_query($dbname, $sql6);
			$result6 = mysql_fetch_array($dbquery6);
			$po=$result6[tt6];
?>					
<?php
// Make a MySQL Connection
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$query = "SELECT category SUM(category) FROM web_tkk1  WHERE  kom='".$arr[user][category_name]."' GROUP BY id"; 
$sql7="select sum(kom='".$arr[user][category_name]."') as tt7 from web_tkk1 where category ";
			$dbquery7 = mysql_db_query($dbname, $sql7);
			$result7 = mysql_fetch_array($dbquery7);
			$po=$result7[tt7];
?>
						
<?php
// Make a MySQL Connection
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$query = "SELECT id FROM web_tkk4  WHERE  kom='".$arr[user][category_name]."' GROUP BY id"; 
$sql5="select sum(kom='".$arr[user][category_name]."') as tt5 from web_tkk4 ";
			$dbquery5 = mysql_db_query($dbname, $sql5);
			$result5 = mysql_fetch_array($dbquery5);
			$po=$result5[tt5];
?>

<?php
// Make a MySQL Connection
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$query = "SELECT ska2 SUM(ska2) FROM web_tkk4  WHERE  kom='".$arr[user][category_name]."' GROUP BY id"; 
$sql8="select sum(kom='".$arr[user][category_name]."') as tt8 from web_tkk4 where ska2='1' ";
			$dbquery8 = mysql_db_query($dbname, $sql8);
			$result8 = mysql_fetch_array($dbquery8);
			$po=$result8[tt8];
?>

<?php
// Make a MySQL Connection
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$query = "SELECT group_ska SUM(group_ska) FROM web_tkk2  WHERE  group_ska='".$arr[user][category_name]."' GROUP BY id"; 
$sql4="select sum(group_ska='".$arr[user][category_name]."') as tt4 from web_tkk2 ";
			$dbquery4 = mysql_db_query($dbname, $sql4);
			$result4 = mysql_fetch_array($dbquery4);
			$po=$result4[tt4];
?>
<?php
// Make a MySQL Connection
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$query = "SELECT category SUM(category) FROM web_tkk2  WHERE  group_ska='".$arr[user][category_name]."' GROUP BY id"; 
$sql3="select sum(group_ska='".$arr[user][category_name]."') as tt3 from web_tkk2 WHERE  category='2' ";
			$dbquery3 = mysql_db_query($dbname, $sql3);
			$result3 = mysql_fetch_array($dbquery3);
			$po=$result3[tt3];
?>

 <tr bgcolor="#FFFF66">
                                            <td width="20" align="center"><? echo $arr[user][id];?></td>
                                            <td width="220" >  <A HREF="?name=report&file=report&working=<?=$arr[working][id];?>"><? echo $arr[user][category_name];?></a></td>
											<td width="100" align="center"><? echo number_format($result6[tt6],''); ?></td>
											<td width="100" align="center"><font color=red><? echo number_format($result7[tt7]-$result6[tt6],''); ?></font></td>
											<td width="100" align="center"><? echo number_format($result5[tt5],''); ?></td>
											<td width="100" align="center"><font color=red><? echo number_format($result5[tt5]-$result8[tt8],''); ?></font></td>
											<td width="100" align="center"><? echo number_format($result4[tt4],''); ?></td>
											<td width="120" align="center"><font color=red><? echo number_format($result4[tt4]-$result3[tt3],''); ?></font></td>
                                          </tr>
                                          <tr>
                                            <td colspan="6" height="1" class="dotline"></td>
                                          </tr>



<?
 } 
?>
   </table>

 <?


//$res[groupstext] = $db->select_query("SELECT * FROM ".TB_ADMIN_GROUP." ORDER BY id ");
//while ($arr[groupstext] = $db->fetch($res[groupstext]))
 //  {
		//echo "<LI><B>".$arr[groupstext][name]." : </B>".$arr[groupstext][description]."</LI>";
 //  }
//$db->closedb ();

}
?>

      <br />
                                  </td>
                                </tr>
                              </table>
			
							</td>
                                </tr>
                              </table>
                            <br /></td>
                          </tr>
                      </table></td>
                    </tr>
                  </tbody>
                </table>

Youez - 2016 - github.com/yon3zu
LinuXploit