| Server IP : 104.21.80.248 / Your IP : 172.71.28.155 Web Server : Apache/2.4.25 (Win32) OpenSSL/1.0.2j PHP/5.6.30 System : Windows NT WIN-ECQAAA40806 6.2 build 9200 (Windows Server 2012 Standard Edition) i586 User : SYSTEM ( 0) PHP Version : 5.6.30 Disable Function : NONE MySQL : ON | cURL : ON | WGET : OFF | Perl : OFF | Python : OFF | Sudo : OFF | Pkexec : OFF Directory : E:/Inetpub/www/myschool/nongpho/modules/user/ |
Upload File : |
<div align="center">
<table cellspacing="0" cellpadding="0" width="1005" height="420"border="0">
<tbody>
<tr>
<td>
<table cellspacing="0" cellpadding="0" width="98%" border="0">
<tbody>
<tr>
<td><table width="100%">
<tr>
<td>
<?
//Check Admin
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$res[user] = $db->select_query("SELECT * FROM ".TB_user." WHERE username='".$_POST[username]."' AND password='".md5($_POST[password])."' ");
$rows[user] = $db->rows($res[user]);
if($rows[user]){
$arr[user] = $db->fetch($res[user]);
}
$db->closedb ();
//Can Login
if($arr[user][id]){
//Login ผ่าน
ob_start();
$_SESSION['user_user'] = $_POST[username] ;
$_SESSION['user_pwd'] = md5($_POST[password]) ;
$_SESSION['ip'] = $_SERVER['REMOTE_ADDR'];
session_write_close();
ob_end_flush();
$timeoutseconds=10*60;
$_SESSION['timestamp2']=time();
$timeout=$_SESSION['timestamp2'] - $timeoutseconds;
////////////////////// เพิ่ม สมาชิกออนไลน์ ////////////////////////////
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$res[user2] = $db->select_query("SELECT * FROM ".TB_useronline." WHERE useronline='".$_SESSION['user_user']."' ");
$rows[user2] = $db->rows($res[user2]);
$db->closedb ();
if($rows[user2]){
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$db->update_db(TB_useronline,array(
"post_date"=>"".$_SESSION['timestamp2'].""
// "useronline"=>"".$_SESSION['user_user'].""
)," useronline='".$_SESSION['user_user']."' ");
$db->closedb ();
}else{
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$db->add_db(TB_useronline,array(
"post_date"=>"".$_SESSION['timestamp2']."",
"useronline"=>"".$_SESSION['user_user'].""
));
}
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$db->del(TB_useronline," post_date<$timeout ");
$db->closedb ();
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$q[Pageview] = "UPDATE ".TB_user." SET last_date = update_date,pageview = pageview+1,ip = '".$_SESSION['ip'] ."' WHERE username='".$_POST[username]."' ";
$sql[Pageview] = mysql_query ( $q[Pageview] ) or sql_error ( "db-query",mysql_error() );
?>
<br />
<br />
<center>
<a href="?name=user&file=main"><img src="images/icon/login-welcome.gif" border="0" /></a><br />
<br />
<font color="#336600"><b>ได้ทำการเข้าระบบเรียบร้อยแล้ว</b></font><br />
<br />
<b>รอสักครู่กำลังนำคุณเข้าสู่หน้าหลัก</b></a>
</center><meta http-equiv='refresh' content='1 ;url=index.php'>
<br />
<br />
<?
}
?>
<?
////////////////////// เพิ่ม สมาชิกออนไลน์ ////////////////////////////
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$db->del(TB_useronline," useronline='".$_SESSION['user_user']."' ");
$db->closedb ();
//echo "$_POST[username]<br>";
//echo "$_POST[password]<br>";
//echo "".md5($_POST[password])."<br>";
//Check Admin
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$res[admin] = $db->select_query("SELECT * FROM ".TB_ADMIN." WHERE username='".$_POST[username]."' AND password='".md5($_POST[password])."' ");
$rows[admin] = $db->rows($res[admin]);
if($rows[admin]){
$arr[admin] = $db->fetch($res[admin]);
}
$db->closedb ();
//Can Login
if($arr[admin][id]){
//Login ผ่าน
ob_start();
$_SESSION['admin_user'] = $_POST[username] ;
$_SESSION['admin_pwd'] = md5($_POST[password]) ;
$_SESSION['ip'] = $_SERVER['REMOTE_ADDR'];
session_write_close();
ob_end_flush();
$timeoutseconds=10*60;
$_SESSION['timestamp2']=time();
$timeout=$_SESSION['timestamp2'] - $timeoutseconds;
////////////////////// เพิ่ม สมาชิกออนไลน์ ////////////////////////////
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$res[user2] = $db->select_query("SELECT * FROM ".TB_useronline." WHERE useronline='".$_SESSION['admin_user']."' ");
$rows[user2] = $db->rows($res[user2]);
$db->closedb ();
if($rows[user2]){
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$db->update_db(TB_useronline,array(
"post_date"=>"".$_SESSION['timestamp2'].""
// "useronline"=>"".$_SESSION['user_user'].""
)," useronline='".$_SESSION['admin_user']."' ");
$db->closedb ();
}else{
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$db->add_db(TB_useronline,array(
"post_date"=>"".$_SESSION['timestamp2']."",
"useronline"=>"".$_SESSION['admin_user'].""
));
}
$db->connectdb(DB_NAME,DB_USERNAME,DB_PASSWORD);
$db->del(TB_useronline," post_date<$timeout ");
$db->closedb ();
session_write_close();
ob_end_flush();
$timeoutseconds=10*60;
$_SESSION['timestamp2']=time();
$timeout=$_SESSION['timestamp2'] - $timeoutseconds;
?>
<BR><BR>
<CENTER><A HREF="?name=admin&file=main"><IMG SRC="images/icon/login-welcome.gif" BORDER="0"></A><BR><BR>
<FONT COLOR="#336600"><B>ได้ทำการเข้าระบบเรียบร้อยแล้ว</B></FONT><BR><BR>
<A HREF="?name=admin&file=main"><B>เข้าหน้าหลักผู้ดูแลระบบ</B></A>
</CENTER>
<meta http-equiv='refresh' content='1 ;url=?name=admin&file=main'><BR>
<BR><BR>
<?
}else{
//Login ไม่ผ่าน
?>
<?
if (($_SESSION['user_user']=="")AND($_SESSION['admin_user']=="")) {
?>
<table cellspacing="0" cellpadding="0" width="100%" height=500 border="0">
<tbody>
<tr>
<td align="center"Valign="top">
<table width="100%" align="center" cellspacing="0" cellpadding="0" border="0">
<tr>
<td align="center">
<br><br><br > <font color=red><b>ชื่อผู้ใช้ หรือ รหัสผ่าน ไม่ถูกต้อง</b></font>
<br><br>
<form method="post" name="frmlogin" action="?name=user&file=login" onSubmit="return checklogin()">
<table width="300" align="center">
<tr>
<td width="100" align="right"><b>ชื่อผู้ใช้ : </b></td>
<td><input type="text" name="username" /></td>
</tr>
<tr>
<td width="100" align="right"><b>รหัสผ่าน : </b></td>
<td><input type="password" name="password" /></td>
</tr>
<tr>
<td width="100" align="right"></td>
<td><input type="submit" value=" เข้าระบบ " /></td>
</tr>
</table>
</form>
</td>
</tr>
</tbody>
</table>
</center>
<?
}
?>
<?
}
?></td>
</tr>
</table></td>
</tr>
</tbody>
</table>
</div></td>
</tr>
</tbody>
</table>
</div>