h(  ) ($6;EbBLkfu�_l� ''8;DUFKV3Dd#,?ANk&5G$/(5M\^�ms����Sb�,;R''6c2I�!\����kx�Ve�[i��Me�IYO7:nOL~�Kr�qrv�I:�BM�y��s}r��K����x)1�6@r*2�89ma��&��'ti������{~#������t)1�2<�0:^5�W.uFzQ/u}�v��vv�u��U37yDJeEJo(/�5Ds'1�:Jlu�iy�iy�hw�1;:S`^BMLOQQn,4�7C�8C�>Lfe�]k�[i�Zg��IW�LZ�EP;,.��Tc�q(0) G,/]/1����w�r��l&-t*3�<<�u��#����j&.u��J68\8?"#$%&'()*+,-./0 ! 
Notice: Undefined index: dl in /var/www/html/web/simple.mini.php on line 1
403WebShell
403Webshell
Server IP : 10.254.12.21  /  Your IP : 10.254.12.21
Web Server : Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.6.40
System : Linux arit.skru.ac.th 3.10.0-1160.76.1.el7.x86_64 #1 SMP Wed Aug 10 16:21:17 UTC 2022 x86_64
User : apache ( 48)
PHP Version : 5.6.40
Disable Function : NONE
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /proc/5800/root/var/www/html/sb2/pages/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /proc/5800/root/var/www/html/sb2/pages/request_list.php
<?php include 'dbconnect.php';?>
<?php include 'header.php';?>

<?php
function MonthThai($strMonth)
{
	$strMonthName = Array("","มกราคม","กุมภาพันธ์","มีนาคม","เมษายน","พฤษภาคม","มิถุนายน","กรกฎาคม","สิงหาคม","กันยายน","ตุลาคม","พฤศจิกายน","ธันวาคม");
	$strMonthThai=$strMonthName[$strMonth];
	return $strMonthThai;
}

	$pagetitle_text = "รายการขอใช้บริการบรรณารักษ์ช่วยหา มาปุ๊บรับปั๊บ";
?>
<style type="text/css">
<!--
.style2 {color: #3366FF}
-->
</style>
		  
	<h3 class="page-header"><?php echo $pagetitle_text;?>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<a href="request_list.php"><button type="button" class="btn btn-warning">ดูทั้งหมด</button></a></h3>	
<?php
	$strKeyword = null;

	if(isset($_POST["txtKeyword"]))
	{
		$strKeyword = $_POST["txtKeyword"];
	}
	if(isset($_GET["txtKeyword"]))
	{
		$strKeyword = $_GET["txtKeyword"];
	}
?>
<form name="frmSearch" method="post" action="<?php echo $_SERVER['SCRIPT_NAME'];?>">
  <table width="599" border="0">
    <tr>
      <th>ค้นจากชื่อ นามสกุล
      <input name="txtKeyword" type="text" id="txtKeyword" value="<?php echo $strKeyword;?>">
      <input type="submit" value="Search"></th>
    </tr>
  </table>
</form>
<BR>
<?php	
	$sql = "SELECT request_list.request_number, request_list.prefix_id, request_list.firstname, request_list.lastname, request_list.request_date, status.status_name, status.status_color";
	$sql .= " FROM (request_list INNER JOIN status ON request_list.status_id = status.status_id)";
	$sql .= " WHERE ( (request_list.firstname LIKE '%" . $strKeyword . "%')";
	$sql .= " OR (request_list.lastname LIKE '%" . $strKeyword . "%') )";
	$sql .= " ORDER BY request_list.request_number DESC";

	$query = mysqli_query($conn,$sql);

	$num_rows = mysqli_num_rows($query);

	$per_page = 20;   // Per Page
	$page  = 1;
	
	if(isset($_GET["Page"]))
	{
		$page = $_GET["Page"];
	}

	$prev_page = $page-1;
	$next_page = $page+1;

	$row_start = (($per_page*$page)-$per_page);
	if($num_rows<=$per_page)
	{
		$num_pages =1;
	}
	else if(($num_rows % $per_page)==0)
	{
		$num_pages =($num_rows/$per_page) ;
	}
	else
	{
		$num_pages =($num_rows/$per_page)+1;
		$num_pages = (int)$num_pages;
	}

	$row_end = $per_page;
	//$row_end = $per_page * $page;
	//if($row_end > $num_rows)
	//{
	//	$row_end = $num_rows;
	//}


	$sql .= " LIMIT $row_start ,$row_end";
	$query = mysqli_query($conn,$sql);
?>
                                <table class="table table-striped table-bordered table-hover">
                                    <thead>
                                        <tr bgcolor="#6699FF">
										<th><div align="center">ID</div></th>
                                        <th><div align="center">ชื่อผู้ขอใช้บริการ</div></th>
										<th><div align="center">วันที่ขอใช้บริการ</div></th>
                                        <!--<th><div align="center">สถานะ</div></th>-->
                                        </tr>
                                    </thead>
                                <tbody>
<?php
while($result=mysqli_fetch_array($query,MYSQLI_ASSOC))
{
?>
                                    <tr>
										<td><?php echo $result["request_number"];?></td>
										<td>
<?php
	$sql2 = "SELECT prefix_name FROM prefix WHERE prefix_id=" . $result["prefix_id"];
	$query2 = mysqli_query($conn,$sql2);
	if($result2=mysqli_fetch_array($query2,MYSQLI_ASSOC)) {
		$prefix_name = $result2["prefix_name"];
	} else {
		$prefix_name = "";
	}
?>										
										<?php echo $prefix_name . $result["firstname"] . " " . $result["lastname"];?>
										</td>	
										<td>
<?php
					//วันที่ เดือน พ.ศ.	
					$timestamp = strtotime($result["request_date"]);
					$dd = date('j', $timestamp);
					$mm = date('n', $timestamp);
					$yy = date('Y', $timestamp)+543;
					$date_thai = $dd . "  " . MonthThai($mm) . "  " . $yy;	
					echo $date_thai;	
?>										
										</td>
										<!--<td bgcolor="<?php //echo $result["status_color"];?>"><?php //echo $result["status_name"];?></td>-->
                                    </tr>
<?php
}
?>									
                                </tbody>
                            </table>
                            <!-- /.table-responsive -->

<br>
Total <?php echo $num_rows;?> Record : <?php echo $num_pages;?> Page :
<?php
if($prev_page)
{
	echo " <a href='$_SERVER[SCRIPT_NAME]?Page=$prev_page&txtKeyword=$strKeyword'><< Back</a> ";
}

for($i=1; $i<=$num_pages; $i++){
	if($i != $page)
	{
		echo "[ <a href='$_SERVER[SCRIPT_NAME]?Page=$i&txtKeyword=$strKeyword'>$i</a> ]";
	}
	else
	{
		echo "<b> $i </b>";
	}
}
if($page!=$num_pages)
{
	echo " <a href ='$_SERVER[SCRIPT_NAME]?Page=$next_page&txtKeyword=$strKeyword'>Next>></a> ";
}							
?>
<hr />
                                <!--<table class="table table-striped table-bordered table-hover">
                                    <thead>
                                        <tr>
											<th colspan="2" bgcolor="#6699FF">สีแสดงสถานะการดำเนินการ</th>
                                        </tr>
                                    </thead>
                                	<tbody>-->
<?php
	/*$sql = "SELECT * FROM status ORDER BY status_id ASC";
	$query = mysqli_query($conn,$sql);
	while($result=mysqli_fetch_array($query,MYSQLI_ASSOC)) {*/
?>
										<!--<tr>
											<td width="10%" bgcolor="<?php //echo $result["status_color"];?>"></td>
											<td><?php //echo $result["status_name"];?></td>
										</tr>-->
<?php	
	/*} //while($result=mysqli_fetch_array($query,MYSQLI_ASSOC)) {*/
?>									
									<!--</tbody>
								</table>-->

<BR><BR>


<?php include 'footer.php';?>

Youez - 2016 - github.com/yon3zu
LinuXploit