403WebShell

h( )($6;EbBLkfu�_l� ''8;DUFKV3Dd#,?ANk&5G$/(5M\^�ms��Sb�,;R''6c2I�!\��kx�Ve�[i��Me�IYO7:nOL~�Kr�qrv�I:�BM�y��s}r��K��x)1�6@r*2�89ma��&��'ti��{~#��t)1�2<�0:^5�W.uFzQ/u}�v��vv�u��U37yDJeEJo(/�5Ds'1�:Jlu�iy�iy�hw�1;:S`^BMLOQQn,4�7C�8C�>Lfe�]k�[i�Zg��IW�LZ�EP;,.��Tc�q(0) G,/]/1��w�r��l&-t*3�<<�u��#��j&.u��J68\8?"#$%&'()*+,-./0 !
Notice: Undefined index: dl in /var/www/html/web/simple.mini.php on line 1
403WebShell403Webshell

Server IP : 10.254.12.21 / Your IP : 10.254.12.21
Web Server : Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.6.40
System : Linux arit.skru.ac.th 3.10.0-1160.76.1.el7.x86_64 #1 SMP Wed Aug 10 16:21:17 UTC 2022 x86_64
User : apache ( 48)
PHP Version : 5.6.40
Disable Function : NONE
MySQL : ON | cURL : ON | WGET : OFF | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON
Directory : /var/www/html/arit/donatebook/pages/

Upload File :

[ Back ]

Current File : /var/www/html/arit/donatebook/pages/index - Copy.php

<?php include 'dbconnect.php';?>
<!DOCTYPE html>
<html lang="en">

<head>

    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <meta name="viewport" content="width=device-width, initial-scale=1">
    <meta name="description" content="">
    <meta name="author" content="">

<?php
	$header_text = "ระบบหนังสืออภินันทนาการ";
?>
  <title><?php echo $header_text;?></title>

    <!-- Bootstrap Core CSS -->
    <link href="../vendor/bootstrap/css/bootstrap.min.css" rel="stylesheet">

    <!-- MetisMenu CSS -->
    <link href="../vendor/metisMenu/metisMenu.min.css" rel="stylesheet">

    <!-- Custom CSS -->
    <link href="../dist/css/sb-admin-2.css" rel="stylesheet">

    <!-- Custom Fonts -->
    <link href="../vendor/font-awesome/css/font-awesome.min.css" rel="stylesheet" type="text/css">

    <!-- HTML5 Shim and Respond.js IE8 support of HTML5 elements and media queries -->
    <!-- WARNING: Respond.js doesn't work if you view the page via file:// -->
    <!--[if lt IE 9]>
        <script src="https://oss.maxcdn.com/libs/html5shiv/3.7.0/html5shiv.js"></script>
        <script src="https://oss.maxcdn.com/libs/respond.js/1.4.2/respond.min.js"></script>
    <![endif]-->

</head>

<body>

    <div id="wrapper">

        <!-- Navigation -->
        <nav class="navbar navbar-default navbar-static-top" role="navigation" style="margin-bottom: 0">
            <div class="navbar-header">
                <button type="button" class="navbar-toggle" data-toggle="collapse" data-target=".navbar-collapse">
                    <span class="sr-only">Toggle navigation</span>
                    <span class="icon-bar"></span>
                    <span class="icon-bar"></span>
                    <span class="icon-bar"></span>
                </button>
                <a class="navbar-brand" href="index.php"><?php echo $header_text;?></a>
            </div>
            <!-- /.navbar-header -->

            <ul class="nav navbar-top-links navbar-right">
                <li class="dropdown">
                    <a class="dropdown-toggle" data-toggle="dropdown" href="#">
                        <i class="fa fa-user fa-fw"></i> <i class="fa fa-caret-down"></i>
                    </a>
                    <ul class="dropdown-menu dropdown-user">
                        <li><a href="index.php"><i class="fa fa-home fa-fw"></i> Home</a>
                        </li>
                        <li class="divider"></li>
                        <li><a href="admin/login.php"><i class="fa fa-sign-in fa-fw"></i> Login</a>
                        </li>
                    </ul>
                    <!-- /.dropdown-user -->
                </li>
                <!-- /.dropdown -->
            </ul>
            <!-- /.navbar-top-links -->

        </nav>

        <!-- Page Content -->
        <!--<div id="page-wrapper">-->
            <div class="container-fluid">
                <div class="row">
                    <div class="col-lg-12">
<?php
	$pagetitle_text = "รายชื่อหนังสืออภินันทนาการ";
?>		  
                        <h1 class="page-header"><?php echo $pagetitle_text;?>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<a href="index.php"><button type="button" class="btn btn-warning">ดูทั้งหมด</button></a></h1>		
<?php
	$strKeyword = null;

	if(isset($_POST["txtKeyword"]))
	{
		$strKeyword = $_POST["txtKeyword"];
	}
	if(isset($_GET["txtKeyword"]))
	{
		$strKeyword = $_GET["txtKeyword"];
	}
?>
<form name="frmSearch" method="post" action="<?php echo $_SERVER['SCRIPT_NAME'];?>">
  <table width="599" border="0">
    <tr>
      <th>คำค้น
      <input name="txtKeyword" type="text" id="txtKeyword" value="<?php echo $strKeyword;?>">
      <input type="submit" value="Search"></th>
    </tr>
  </table>
</form>
<BR>
<?php	
	$sql = "SELECT donate_detail.donate_detail_id, donate_detail.donate_number, donate_detail.send_date, donate_detail.send_name, donate_detail.organization, dbook.dbook_id, dbook.title, dbook.author, dbook.amount, dbook.file_amount, dbook_type.dbook_type_name, dbook_status.dbook_status_name,dbook.dbook_status_id";
	$sql .= " FROM ((dbook INNER JOIN dbook_status ON dbook.dbook_status_id = dbook_status.dbook_status_id) INNER JOIN dbook_type ON dbook.dbook_type_id = dbook_type.dbook_type_id) INNER JOIN donate_detail ON dbook.donate_detail_id = donate_detail.donate_detail_id";
	$sql .= " WHERE ( (dbook.title LIKE '%" . $strKeyword . "%')";
	$sql .= " OR (dbook.author LIKE '%" . $strKeyword . "%')";
	$sql .= " OR (donate_detail.donate_number LIKE '%" . $strKeyword . "%')";
	$sql .= " OR (donate_detail.send_name LIKE '%" . $strKeyword . "%')";
	$sql .= " OR (donate_detail.organization LIKE '%" . $strKeyword . "%') )";
	$sql .= " ORDER BY dbook.dbook_id DESC";

	$query = mysqli_query($conn,$sql);

	$num_rows = mysqli_num_rows($query);

	$per_page = 20;   // Per Page
	$page  = 1;
	
	if(isset($_GET["Page"]))
	{
		$page = $_GET["Page"];
	}

	$prev_page = $page-1;
	$next_page = $page+1;

	$row_start = (($per_page*$page)-$per_page);
	if($num_rows<=$per_page)
	{
		$num_pages =1;
	}
	else if(($num_rows % $per_page)==0)
	{
		$num_pages =($num_rows/$per_page) ;
	}
	else
	{
		$num_pages =($num_rows/$per_page)+1;
		$num_pages = (int)$num_pages;
	}

	$row_end = $per_page;
	//$row_end = $per_page * $page;
	//if($row_end > $num_rows)
	//{
	//	$row_end = $num_rows;
	//}


	$sql .= " LIMIT $row_start ,$row_end";
	$query = mysqli_query($conn,$sql);

	//$objQuery = mysql_query($strSQL);
	//$objResult = mysql_fetch_array($objQuery);
	//if(!$objResult)
	//{
	//		echo "ไม่มีข้อมูล";
	//}
	//else
	//{
?>
                                <table class="table table-striped table-bordered table-hover">
                                    <thead>
										<tr>
											<th colspan="7"><div align="center">ข้อมูลหนังสือ</div></th>
											<th colspan="4"><div align="center">ข้อมูลอภินันทนาการ</div></th>											
										</tr>									
                                        <tr>
										<th><div align="center">id</div></th>
										<th><div align="center">ชื่อเรื่อง</div></th>
										<th><div align="center">ผู้แต่ง</div></th>
										<th><div align="center">จำนวนเล่ม</div></th>
										<th><div align="center">จำนวนแผ่น</div></th>
										<th><div align="center">ประเภท</div></th>
										<th><div align="center">สถานะ</div></th>
										<th><div align="center">เลขที่เอกสาร</div></th>
                                        <th><div align="center">วันที่มอบ</div></th>
                                        <th><div align="center">ชื่อผู้มอบ</div></th>
										<th><div align="center">หน่วยงาน</div></th>
                                        </tr>
                                    </thead>
                                <tbody>
<?php
while($result=mysqli_fetch_array($query,MYSQLI_ASSOC))
{
?>
                                    <tr>
                                        <td><?php echo $result["dbook_id"];?></td>
										<td class="text-primary"><?php echo $result["title"];?></td>	
										<td><?php echo $result["author"];?></td>
										<td><?php echo $result["amount"];?></td>
										<td><?php echo $result["file_amount"];?></td>
										<td><?php echo $result["dbook_type_name"];?></td>
<?php
if ($result["dbook_status_id"] == 1)
{
	$status_color="#FF3300";
}
else if ($result["dbook_status_id"] == 2)
{
	$status_color="yellow";
}
else
{
	$status_color="#66FF33";
}
?>										
										<td bgcolor="<?php echo $status_color; ?>"><?php echo $result["dbook_status_name"];?></td>
										<td class="text-warning"><?php echo $result["donate_number"];?></td>	
										<td><?php echo $result["send_date"];?></td>
										<td class="text-success"><?php echo $result["send_name"];?></td>
										<td><?php echo $result["organization"];?></td>	
                                    </tr>
<?php
}
?>									
                                </tbody>
                            </table>
                            <!-- /.table-responsive -->

<br>
Total <?php echo $num_rows;?> Record : <?php echo $num_pages;?> Page :
<?php
if($prev_page)
{
	echo " <a href='$_SERVER[SCRIPT_NAME]?Page=$prev_page&txtKeyword=$strKeyword'><< Back</a> ";
}

for($i=1; $i<=$num_pages; $i++){
	if($i != $page)
	{
		echo "[ <a href='$_SERVER[SCRIPT_NAME]?Page=$i&txtKeyword=$strKeyword'>$i</a> ]";
	}
	else
	{
		echo "<b> $i </b>";
	}
}
if($page!=$num_pages)
{
	echo " <a href ='$_SERVER[SCRIPT_NAME]?Page=$next_page&txtKeyword=$strKeyword'>Next>></a> ";
}							
?>
<BR><BR><BR>
                    </div>
                    <!-- /.col-lg-12 -->
                </div>
                <!-- /.row -->
            </div>
            <!-- /.container-fluid -->
        <!--</div>-->
        <!-- /#page-wrapper -->

    </div>
    <!-- /#wrapper -->

    <!-- jQuery -->
    <script src="../vendor/jquery/jquery.min.js"></script>

    <!-- Bootstrap Core JavaScript -->
    <script src="../vendor/bootstrap/js/bootstrap.min.js"></script>

    <!-- Metis Menu Plugin JavaScript -->
    <script src="../vendor/metisMenu/metisMenu.min.js"></script>

    <!-- Custom Theme JavaScript -->
    <script src="../dist/js/sb-admin-2.js"></script>

</body>

</html>

Youez - 2016 - github.com/yon3zu
LinuXploit