403Webshell
Server IP : 119.59.102.212  /  Your IP : 18.188.91.180
Web Server : Apache/2
System : Linux narin 2.6.32-042stab142.1 #1 SMP Tue Jan 28 23:44:17 MSK 2020 x86_64
User : yangkam ( 1022)
PHP Version : 5.6.40
Disable Function : exec,system,passthru,shell_exec,proc_close,proc_open,dl,popen,show_source,posix_kill,posix_mkfifo,posix_getpwuid,posix_setpgid,posix_setsid,posix_setuid,posix_setgid,posix_seteuid,posix_setegid,posix_uname
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /home/yangkam/domains/yangkam.go.th/private_html/coremain/module/web/project/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /home/yangkam/domains/yangkam.go.th/private_html/coremain/module/web/project/project_output.php
<?php
if(id_top_permission("a")!=1){	
	permission_fail();			
}
// Status Package Module
$status_module=select_query("status_module","cms_status_module","id","18");
if($status_module[0]!=1)	{	
	fieldset_no_module();
}

$navig['project']="ผลงานของเรา";
$navig['project_update']="เพิ่มข้อมูล";
navigator($navig);
echo"<br>";
bar_header("เพิ่มข้อมูล"); // Bar_Header
fieldset_top("ผลงานของเรา");


if($p_topic!="")										{  $topic=trim($p_topic);														}
if($p_evar!="")										{  $fulltexts=trim($p_evar);													}
if($p_price!="")										{  $price=trim($p_price);														}
	
$userfile1_name=trim($_FILES['userfile1']['name']);
$userfile2_name=trim($_FILES['userfile2']['name']);
$userfile3_name=trim($_FILES['userfile3']['name']);
$userfile4_name=trim($_FILES['userfile4']['name']);
$userfile5_name=trim($_FILES['userfile5']['name']);

// เช็คไฟล์ว่าถูกต้องหรือไม่
if($userfile1_name!="")			{	check_pic($userfile1_name,1);	}
if($userfile2_name!="")			{	check_pic($userfile2_name,2);	}
if($userfile3_name!="")			{	check_pic($userfile3_name,3);	}
if($userfile4_name!="")			{	check_pic($userfile4_name,4);	}
if($userfile5_name!="")			{	check_file($userfile5_name,5);	}
	

// Create_Filename
if($userfile1_name!="")	{	
		$name1=create_filename($userfile1_name);		
		$dlink="$_SESSION[web_name]/mainfile/".$name1;
		upload_file_to_server($dlink,$_FILES['userfile1']);		
} 
if($userfile2_name!="")	{	
		$name2=create_filename($userfile2_name);		
		$dlink="$_SESSION[web_name]/mainfile/".$name2;
		upload_file_to_server($dlink,$_FILES['userfile2']);		
} 
if($userfile3_name!="")	{	
		$name3=create_filename($userfile3_name);		
		$dlink="$_SESSION[web_name]/mainfile/".$name3;
		upload_file_to_server($dlink,$_FILES['userfile3']);		
} 
if($userfile4_name!="")	{	
		$name4=create_filename($userfile4_name);		
		$dlink="$_SESSION[web_name]/mainfile/".$name4;
		upload_file_to_server($dlink,$_FILES['userfile4']);		
} 
if($userfile5_name!="")	{	
		$name5=create_filename($userfile5_name);		
		$dlink="$_SESSION[web_name]/mainfile/".$name5;
		upload_file_to_server($dlink,$_FILES['userfile5']);		
} 

	$datamax1=select_max_query0("id","cms_news");
			if ($datamax1[0]=="")		{			$datamax1[0]="1";		}

	$d1=select_max_query0("orders","cms_news");
			if ($d1[0]=="")					{			$d1[0]="1";						}

//#########เพิ่มข้อมูลลงในฐาน	
		$sql="INSERT INTO `cms_project` (`id` ,`topic` ,`fulltexts` ,`pic1` ,`pic2` ,`pic3` ,`pic4` ,`files` ,`status`,`price`) VALUES ('', '$topic', '$fulltexts', '$name1', '$name2', '$name3', '$name4', '$name5', '1','$price')";
		mysql_query($sql) or die(mysql_error());

echo msg_insert_data();		// ข้อความแสดงการผลการเพิ่มข้อมูล
refresh_data('index.php?path=project&mod=project',"2");	// กลับหน้าหลัก
fieldset_down();

?>

Youez - 2016 - github.com/yon3zu
LinuXploit