403Webshell
Server IP : 202.29.229.35  /  Your IP : 3.148.179.141
Web Server : Apache
System : Linux aapanel2 4.15.0-213-generic #224-Ubuntu SMP Mon Jun 19 13:30:12 UTC 2023 x86_64
User : www ( 1001)
PHP Version : 5.5.38
Disable Function : passthru,exec,system,putenv,chroot,chgrp,chown,shell_exec,popen,proc_open,pcntl_exec,ini_alter,ini_restore,dl,openlog,syslog,readlink,symlink,popepassthru,pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,imap_open,apache_setenv
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /www/wwwroot/www.ivecr2.ac.th/system_admin/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /www/wwwroot/www.ivecr2.ac.th/system_admin///dp_insertcalendarForm.php
<?php 
session_start();
if($_SESSION['r_statuslogin'] != 1){
 echo '<script language="javascript">alert("สำหรับผู้ดูแลระบบเท่านั้น")</script>';
 echo'<meta http-equiv="refresh" content="0;url=../index.php">';
 exit();
}
/*
		include('connect/connect.php');
		include('connect/function.php');
*/		
		$status_form=$_POST['select'];
		$title=$_POST['title'];
		//$tmp_name=$_FILES["fileUpload"]["tmp_name"];
		//$filename=$_FILES["filUpload"]["name"];
		
		$dp_id=$_SESSION['r_workId'];
		$adminID=$_SESSION['r_adID'];
		
		
				$filedocument1=$_FILES["fileDOC"]["tmp_name"];
				$filedocument1_name=$_FILES["fileDOC"]["name"];
				
			if($filedocument1 <> ""){
			$ext1=strtolower(end(explode('.',$filedocument1_name)));
			
				$filedocument_ori1=date("Ymdhis").'.'.$ext1;
				
			}else{
					$filedocument_ori1="";
			}
		
				copy($filedocument1,"file_calendar/$filedocument_ori1");
				
		$date=date('Y-m-d');
		$sql="insert into  tbl_calendar values (null,'$title','$filedocument_ori1','$date','0','$adminID')";
		echo "".$sql."<br>".$sql2;
		//exit();
		$result=mysqli_query($connect1,$sql);
			if($result){
									
				
					
			
	
	
				echo "<script language='javascript'>alert('บันทึกข้อมูลเรียบร้อยแล้ว')</script>";
				echo '<meta http-equiv="refresh" content="0;url=index.php?i=dp_calendarForm">';
			}else{
				echo "<script language='javascript'>alert('ไม่สามารถบันทึกข้อมูลได้')</script>";
				echo '<meta http-equiv="refresh" content="0;url=index.php?i=dp_calendarForm">';
				}
?>

Youez - 2016 - github.com/yon3zu
LinuXploit