403WebShell

403Webshell

Server IP : 119.59.102.212 / Your IP : 3.148.241.210
Web Server : Apache/2
System : Linux narin 2.6.32-042stab142.1 #1 SMP Tue Jan 28 23:44:17 MSK 2020 x86_64
User : yangkam ( 1022)
PHP Version : 5.6.40
Disable Function : exec,system,passthru,shell_exec,proc_close,proc_open,dl,popen,show_source,posix_kill,posix_mkfifo,posix_getpwuid,posix_setpgid,posix_setsid,posix_setuid,posix_setgid,posix_seteuid,posix_setegid,posix_uname
MySQL : ON | cURL : ON | WGET : OFF | Perl : OFF | Python : OFF | Sudo : OFF | Pkexec : OFF
Directory : /home/yangkam/domains/yangkam.go.th/private_html/coremain/module/poll/

Upload File :

[ Back ]

Current File : /home/yangkam/domains/yangkam.go.th/private_html/coremain/module/poll/update.php

<?php
session_start();
include ("../../function_sql_query.php");
include ("../../function_form.php");
include ("../../function_import_request.php");
echo"<meta http-equiv='Content-Type' content='text/html; charset=utf-8'>";
echo"<link href='coremain/ccs/style.css' rel='stylesheet' type='text/css'>";
echo "<title>แก้ไขแบบสำรวจ</title>";
import_request_variables('pG', 'p_');
//#5.3#//if($p_date!="")												{	     $date=trim($p_date);							}
$date = isset($p_date) ? $p_date : '';
//#5.3#//if($p_id_poll!="")											{	     $id_poll=trim($p_id_poll);					}
$id_poll = isset($p_id_poll) ? $p_id_poll : '';
//#5.3#//if($p_startrow!="")											{	     $startrow=trim($p_startrow);				}
$startrow = isset($p_startrow) ? $p_startrow : '';
//#5.3#//if($p_topic!="")			{    	$topic=trim($p_topic);	}
$topic = isset($p_topic) ? $p_topic : '';
//#5.3#//if($p_id!="")				{    	$id=trim($p_id);		}
$id = isset($p_id) ? $p_id : '';
for($i = 1; $i <= 9; $i++){
  ${'c'.$i} = isset(${'p_c'.$i}) ? ${'p_c'.$i} : '';
}

if ($_SESSION['web_name'] == "")
  $_SESSION['web_name'] = $web_name;
include("../../../$_SESSION[web_name]/connect.php");
?>

<table width='60%' border='0' cellpadding='0' cellspacing='0' align=center>
  <tr>
    <td>
      <fieldset>
        <legend align=left><font color='<?= $datatm['color1'] ?>'>แบบสำรวจความคิดเห็น</font></legend>
        <br>
      <?php if($c1==""){
        $sql = "select * from cms_poll where id='$id_poll'";
        $result = mysql_query($sql);
        $data = mysql_fetch_array($result);
      ?>
        <center>
          <FORM id="formupdate" NAME='formupdate' METHOD=POST>
            <table width='98%' border='0' cellpadding='0' cellspacing='1' bgcolor=#f0e8d0>
              <tr>
                <td width='98%' height='25'>
                  <center><img src='coremain/images/left.gif'>&nbsp;<a href='javascript:void(0);' class="poll_back"><b>Back</b></a>&nbsp;&nbsp;&nbsp;แก้ไขแบบสำรวจ&nbsp;&nbsp;&nbsp;</center>
                </td>
              </tr>
            </table>
            
            <table width='98%' border='0' cellpadding='0' cellspacing='1'  bgcolor='#eff3f7'>
              <tr>
                <td width='20%' height='25' bgcolor='ffffff'>&nbsp;<img src='coremain/images/bullet2.gif'>&nbsp;<b>คำถาม</b></td>
                <td width='70%' height='25' bgcolor='ffffff'><INPUT TYPE='text' NAME='topic' size='60' value='<?= $data['topic'] ?>'></td>
              </tr>
            <?php for($j = 1; $j <= 9; $j++){ ?>
              <tr>
                <td width='20%' height='25' bgcolor='ffffff'>&nbsp;<img src='coremain/images/marker.gif'>&nbsp;ตัวเลือกที่ <?= $j ?></td>
                <td width='70%' height='25' bgcolor='ffffff'><INPUT TYPE='text' NAME='c<?= $j ?>' size='60' value='<?= $data['choose'.$j] ?>'></td>
              </tr>
            <?php } ?>
            </table>
            
            <br/><br/>
            <button type='button' class="bt-close ui-button ui-widget ui-corner-all btn_edit" id="<?= $id_poll ?>" style="padding: 5px 10px;">แก้ไขข้อมูล</button>
          </FORM>
        </center>
        <br>
      <?php }else{
        $sql="update cms_poll set topic='$topic',choose1='$c1',choose2='$c2',choose3='$c3',choose4='$c4',choose5='$c5',choose6='$c6',choose7='$c7',choose8='$c8',choose9='$c9' where id='$id_poll'";
        $result=mysql_query($sql);
      ?>
        <table width='60%' border='0' cellspacing='0' bgcolor='<?php echo $datatm['color1'];?>' align='center' cellpadding='0'>
          <tr> 
            <td bgcolor="#FFFFFF" height="140" valign="top">
              <div align='center'>
                <br><br><center>ข้อมูลได้ถูกแก้ไขแล้ว<br><br></center>
                <script>
                  setTimeout(function(){
                    poll_back();
                  }, 1000);
                </script>
              </div>
            </td>
          </tr>
        </table>
      <?php } ?>
      </fieldset>
    </td>
  </tr>
</table>


<Script LANGUAGE="VBscript">
  
  var arrData = [
    { name: 'folder_name', value: '<?php echo $_SESSION['folder_name']?>' },
    { name: 'admin_web', value: '<?php echo $_SESSION['admin_web'];?>' },
    { name: 'startrow', value: '<?php echo $startrow; ?>' }
  ];
  $('.btn_edit').click(function(){
    var data = $('#formupdate').serializeArray();
    var value = $(this).attr('id');
    arrData.push({ name: 'id_poll', value: value });
    arrData = arrData.concat(data);
    
    $('#dialog-popup').dialog({ dialogClass: 'no-close' });
    $.ajax({
      type: 'post',
      url: 'coremain/module/poll/update.php',
      data: arrData,
      success: function(result){
        $('#dialog-popup').html(result);
      }
    });
  });

  $('.poll_back').click(function(){
    poll_back();
  });
  
  function poll_back(){
    var dialog = 'dialog-popup';
    var popup = $('#'+dialog);
    $.ajax({
      type: 'post',
      url: 'coremain/module/poll/result.php',
      data: arrData,
      success: function(result){
        popup.html(result);
      }
    });
  }
  
  $('.manage_poll').click(function(){
    
  });

</Script>

Youez - 2016 - github.com/yon3zu
LinuXploit