Linux sothorn202 5.15.0-161-generic #171-Ubuntu SMP Sat Oct 11 08:17:01 UTC 2025 x86_64
Apache/2.4.52 (Ubuntu)
: 202.28.82.202 | : 216.73.216.9
pkexec version 0.105
Cant Read [ /etc/named.conf ]
iqtd
RED EYES BYPASS SHELL!
Terminal
Auto Root
Adminer
Backdoor Destroyer
Kernel Exploit
Lock Shell
Lock File
Create User
+ Create Folder
+ Create File
/
home /
lifelonglearn /
commert /
app /
[ HOME SHELL ]
NAME
SIZE
PERMISSION
ACTION
assets
[ DIR ]
drwxr-xr-x
barcode-generator
[ DIR ]
drwxr-xr-x
bower_components
[ DIR ]
drwxr-xr-x
chart-pie
[ DIR ]
drwxr-xr-x
class
[ DIR ]
drwxr-xr-x
dist
[ DIR ]
drwxr-xr-x
font-awesome
[ DIR ]
drwxr-xr-x
icon
[ DIR ]
drwxr-xr-x
img-banner
[ DIR ]
drwxr-xr-x
img-category
[ DIR ]
drwxr-xr-x
img-logo
[ DIR ]
drwxr-xr-x
img-product
[ DIR ]
drwxr-xr-x
img-product-item
[ DIR ]
drwxr-xr-x
img-slide
[ DIR ]
drwxr-xr-x
img-system
[ DIR ]
drwxr-xr-x
img-user
[ DIR ]
drwxr-xr-x
lightbox
[ DIR ]
drwxr-xr-x
modal
[ DIR ]
drwxr-xr-x
plugins
[ DIR ]
drwxr-xr-x
.htaccess
154
B
-rwxr-xr-x
addPerson.php
22.7
KB
-rwxr-xr-x
bank.php
9.45
KB
-rwxr-xr-x
banner.php
7.34
KB
-rwxr-xr-x
business.php
7.35
KB
-rwxr-xr-x
cancelOrder.php
7.5
KB
-rwxr-xr-x
category.php
11.4
KB
-rwxr-xr-x
check_login.php
424
B
-rwxr-xr-x
company - Copy.php
8.33
KB
-rwxr-xr-x
company.php
8.09
KB
-rwxr-xr-x
customer.php
10.31
KB
-rwxr-xr-x
footer.php
249
B
-rwxr-xr-x
header.php
2.57
KB
-rwxr-xr-x
import_script.php
4.11
KB
-rwxr-xr-x
import_style.php
1.66
KB
-rwxr-xr-x
index.php
1.36
KB
-rwxr-xr-x
levelPosition.php
7.58
KB
-rwxr-xr-x
lineToken.php
3.86
KB
-rwxr-xr-x
logout.php
77
B
-rwxr-xr-x
menu.php
2.5
KB
-rwxr-xr-x
menu_left.php
5.45
KB
-rwxr-xr-x
menu_left_home.php
513
B
-rwxr-xr-x
menu_main.php
88
B
-rwxr-xr-x
order.php
7.58
KB
-rwxr-xr-x
pagination.php
1.49
KB
-rwxr-xr-x
pagination_stock.php
1.51
KB
-rwxr-xr-x
payment.php
8.76
KB
-rwxr-xr-x
personData.php
21.22
KB
-rwxr-xr-x
product.php
15.56
KB
-rwxr-xr-x
report.php
11.58
KB
-rwxr-xr-x
reportSale.php
4.55
KB
-rwxr-xr-x
save_product.php
993
B
-rwxr-xr-x
select_amphures.php
621
B
-rwxr-xr-x
select_brand.php
668
B
-rwxr-xr-x
select_districts.php
537
B
-rwxr-xr-x
select_provinces.php
665
B
-rwxr-xr-x
slide.php
9.47
KB
-rwxr-xr-x
stockProduct.php
6.71
KB
-rwxr-xr-x
subbusiness.php
8
KB
-rwxr-xr-x
subcategory.php
8.44
KB
-rwxr-xr-x
type_user.php
549
B
-rwxr-xr-x
unit.php
7.12
KB
-rwxr-xr-x
uploadImage.php
9.53
KB
-rwxr-xr-x
userData.php
11.11
KB
-rwxr-xr-x
viewOrder.php
6.8
KB
-rwxr-xr-x
Delete
Unzip
Zip
${this.title}
Close
Code Editor : personData.php
<?php session_start(); include('../config/connect.php'); include('typeUser.php'); if(!empty($_POST['school_id'])) { $school_id = $_POST['school_id']; } else { $school_id = "all"; } ?> <!DOCTYPE html> <html> <head> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title><?php echo $title;?></title> <meta content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no" name="viewport"> <?php include('import_style.php');?> <link href="https://fonts.googleapis.com/css?family=Kanit:100,200,300&subset=thai" rel="stylesheet"> </head> <body class="hold-transition skin-blue sidebar-mini"> <?php include('checkLogin.php');?> <div class="wrapper"> <?php include('header.php');?> <?php include('menu_left.php');?> <!-- Content Wrapper. Contains page content --> <div class="content-wrapper"> <!-- Content Header (Page header) --> <?php include('menu_main.php'); ?> <!-- Main content --> <section class="content"> <!--เนื้อหา--> <div class="row"> <div class="col-lg-12 col-md-12"> <?php if($_SESSION['level_id'] == '1' || $_SESSION['level_id'] == '3') { ?> <a href="addPerson"> <button type="button" class="btn btn bg-green btn-sm"> <span class="fa fa-plus"></span> เพิ่ม </button> </a> <?php } ?> <p></p> <div class="box"> <div class="box-header text-center"> <h3 class="box-title">ข้อมูลบุคลากร</h3> </div> <!-- /.box-header --> <div class="box-body"> <form method="post" name="form_person"> <div class="row"> <div class="form-group col-lg-3"> <label>โรงเรียน / สังกัด</label> <select name="school_id" class="form-control" onchange="document.form_person.submit();"> <?php if($_SESSION['level_id'] == '1' || $_SESSION['level_id'] == '3' || $_SESSION['level_id'] == '5') { ?> <option value="">แสดงทั้งหมด</option> <?php } ?> <?p?> <?php $school_status = "1"; if($_SESSION['level_id'] == '1' || $_SESSION['level_id'] == '3' || $_SESSION['level_id'] == '5') { $stmt3 = $conn->prepare("SELECT school_id, school_name FROM tb_school WHERE school_status=:school_status ORDER BY school_id ASC"); } else if($_SESSION['level_id'] == '2') { $stmt3 = $conn->prepare("SELECT school_id, school_name FROM tb_school WHERE school_status=:school_status AND school_id=:school_id ORDER BY school_id ASC"); $stmt3->bindParam(':school_id', $_SESSION['school_id'] , PDO::PARAM_STR); } $stmt3->bindParam(':school_status', $school_status , PDO::PARAM_STR); $stmt3->execute(); $result3 = $stmt3->fetchAll(); foreach($result3 as $row3) { ?> <option value="<?php echo $row3['school_id'];?>" <?php if($_POST['school_id'] == $row3['school_id']) { echo "selected"; } else { echo ""; } ?> ><?php echo $row3['school_name'];?></option> <?php } ?> </select> </div> <div class="form-group col-lg-3"> <label>ประเภทบุคลากร</label> <select name="ps_type_id" class="form-control" onchange="document.form_person.submit();"> <option value="">แสดงทั้งหมด</option> <?php $ps_type_status = "1"; $stmt2 = $conn->prepare("SELECT ps_type_id, ps_type_name FROM tb_persontype WHERE ps_type_status=:ps_type_status ORDER BY ps_type_id ASC"); $stmt2->bindParam(':ps_type_status', $ps_type_status , PDO::PARAM_STR); $stmt2->execute(); $result2 = $stmt2->fetchAll(); foreach($result2 as $row2) { ?> <option value="<?php echo $row2['ps_type_id'];?>" <?php if($_POST['ps_type_id'] == $row2['ps_type_id']) { echo "selected"; } else { echo ""; } ?> ><?php echo $row2['ps_type_name'];?></option> <?php } ?> </select> </div> </div> </form> <p></p> <table id="table3" width="100%" class="table table-hover"> <thead> <tr class="bg-green2"> <th width="4%" class="text-center">ลำดับ</th> <th width="6%">รูปภาพ</th> <th width="24%">ชื่อ - นามสกุล</th> <th width="10%">ประเภท</th> <th width="17%">ตำแหน่ง</th> <th width="19%">สังกัด</th> <th width="20%" class="text-center">จัดการ</th> </tr> </thead> <tbody> <?php $person_status = "1"; if($_POST['school_id'] == '') { if($_SESSION['level_id'] == '1' || $_SESSION['level_id'] == '3' || $_SESSION['level_id'] == '5') { $stmt = $conn->prepare("SELECT p.*, pr.prefix_name, s.school_name ,pos.position_name, pt.ps_type_name FROM tb_person AS p INNER JOIN tb_prefix AS pr ON p.prefix_id = pr.prefix_id INNER JOIN tb_school AS s ON p.school_id = s.school_id LEFT JOIN tb_position AS pos ON p.position_id = pos.position_id INNER JOIN tb_persontype AS pt ON p.ps_type_id = pt.ps_type_id WHERE p.person_status=:person_status ORDER BY p.person_fname, p.person_lname ASC"); $stmt->bindParam(':person_status', $person_status , PDO::PARAM_STR); $stmt->execute(); $result = $stmt->fetchAll(); } else if($_SESSION['level_id'] == '2') { $stmt = $conn->prepare("SELECT p.*, pr.prefix_name, s.school_name ,pos.position_name, pt.ps_type_name FROM tb_person AS p INNER JOIN tb_prefix AS pr ON p.prefix_id = pr.prefix_id INNER JOIN tb_school AS s ON p.school_id = s.school_id LEFT JOIN tb_position AS pos ON p.position_id = pos.position_id LEFT JOIN tb_persontype AS pt ON p.ps_type_id = pt.ps_type_id WHERE p.person_status=:person_status AND p.school_id=:school_id ORDER BY p.person_fname, p.person_lname ASC"); $stmt->bindParam(':person_status', $person_status , PDO::PARAM_STR); $stmt->bindParam(':school_id', $_SESSION['school_id'] , PDO::PARAM_STR); $stmt->execute(); $result = $stmt->fetchAll(); } if($_POST['ps_type_id'] == '') { $stmt = $conn->prepare("SELECT p.*, pr.prefix_name, s.school_name ,pos.position_name, pt.ps_type_name FROM tb_person AS p INNER JOIN tb_prefix AS pr ON p.prefix_id = pr.prefix_id INNER JOIN tb_school AS s ON p.school_id = s.school_id LEFT JOIN tb_position AS pos ON p.position_id = pos.position_id LEFT JOIN tb_persontype AS pt ON p.ps_type_id = pt.ps_type_id WHERE p.person_status=:person_status ORDER BY p.person_fname, p.person_lname ASC"); $stmt->bindParam(':person_status', $person_status , PDO::PARAM_STR); $stmt->execute(); $result = $stmt->fetchAll(); } else { $stmt = $conn->prepare("SELECT p.*, pr.prefix_name, s.school_name ,pos.position_name, pt.ps_type_name FROM tb_person AS p INNER JOIN tb_prefix AS pr ON p.prefix_id = pr.prefix_id INNER JOIN tb_school AS s ON p.school_id = s.school_id LEFT JOIN tb_position AS pos ON p.position_id = pos.position_id LEFT JOIN tb_persontype AS pt ON p.ps_type_id = pt.ps_type_id WHERE p.person_status=:person_status AND p.ps_type_id=:ps_type_id ORDER BY p.person_fname, p.person_lname ASC"); $stmt->bindParam(':ps_type_id', $_POST['ps_type_id'] , PDO::PARAM_STR); $stmt->bindParam(':person_status', $person_status , PDO::PARAM_STR); $stmt->execute(); $result = $stmt->fetchAll(); } } else { if($_POST['ps_type_id'] == '') { $stmt = $conn->prepare("SELECT p.*, pr.prefix_name, s.school_name ,pos.position_name, pt.ps_type_name FROM tb_person AS p INNER JOIN tb_prefix AS pr ON p.prefix_id = pr.prefix_id INNER JOIN tb_school AS s ON p.school_id = s.school_id LEFT JOIN tb_position AS pos ON p.position_id = pos.position_id LEFT JOIN tb_persontype AS pt ON p.ps_type_id = pt.ps_type_id WHERE p.person_status=:person_status AND p.school_id=:school_id ORDER BY p.person_fname, p.person_lname ASC"); $stmt->bindParam(':school_id', $_POST['school_id'] , PDO::PARAM_STR); $stmt->bindParam(':person_status', $person_status , PDO::PARAM_STR); $stmt->execute(); $result = $stmt->fetchAll(); } else { $stmt = $conn->prepare("SELECT p.*, pr.prefix_name, s.school_name ,pos.position_name, pt.ps_type_name FROM tb_person AS p INNER JOIN tb_prefix AS pr ON p.prefix_id = pr.prefix_id INNER JOIN tb_school AS s ON p.school_id = s.school_id LEFT JOIN tb_position AS pos ON p.position_id = pos.position_id LEFT JOIN tb_persontype AS pt ON p.ps_type_id = pt.ps_type_id WHERE p.person_status=:person_status AND p.school_id=:school_id AND p.ps_type_id=:ps_type_id ORDER BY p.person_fname, p.person_lname ASC"); $stmt->bindParam(':ps_type_id', $_POST['ps_type_id'] , PDO::PARAM_STR); $stmt->bindParam(':school_id', $_POST['school_id'] , PDO::PARAM_STR); $stmt->bindParam(':person_status', $person_status , PDO::PARAM_STR); $stmt->execute(); $result = $stmt->fetchAll(); } } $i2 = 1; foreach($result as $row) { ?> <tr> <td align="center"><?php echo $i2;?></td> <td><img src="img-person/<?php echo $row['person_img'];?>" width="50"></td> <td><?php echo $row['prefix_name'];?><?php echo $row['person_fname'];?> <?php echo $row['person_lname'];?></td> <td><?php echo $row['ps_type_name'];?></td> <td><?php echo $row['position_name'];?></td> <td><?php echo $row['school_name'];?></td> <td align="center"> <a href="personView.php?person_idcard=<?php echo $row['person_idcard'];?>"> <button type="button" class="btn btn-success btn-sm"><span class="fa fa-eye"></span> ดูข้อมูล</button> </a> <?php if($_SESSION['level_id'] == '1' || $_SESSION['level_id'] == '3') { ?> <a href="editPerson.php?person_idcard=<?php echo $row['person_idcard'];?>"> <button type="button" class="btn btn-info btn-sm"><span class="fa fa-edit"></span> แก้ไข</button> </a> <button type="button" class="btn btn-danger btn-sm" data-toggle="modal" data-target="#deletePerson<?php echo $row['person_idcard'];?>"><span class="fa fa-trash"></span> ลบ</button> <?php } ?> </td> <?php include('modal/form-edit-modal.php'); ?> <?php include('modal/form-delete-modal.php'); ?> </tr> <?php $i2++; } ?> </tbody> </table> <?php if(isset($_POST['btnEditUser'])){ $user_id = $_POST['user_id']; $user_email = $_POST['user_email']; $user_fname = $_POST['user_fname']; $user_lname = $_POST['user_lname']; $user_tel = $_POST['user_tel']; $user_line = $_POST['user_line']; if($_POST['user_pass'] != '') { $user_pass = md5($_POST['user_pass']); } else { $user_pass = $_POST['user_pass2']; } $date = date("d-m-Y"); $numrand = (mt_rand()); $upload = $_FILES['user_pic']; if($upload != '') { $path = "img-user/"; $type = strrchr($_FILES['user_pic']['name'],"."); $newname = $date.$numrand.$type; $path_copy = $path.$newname; $path_link = "img-user/".$newname; move_uploaded_file($_FILES['user_pic']['tmp_name'],$path_copy); @unlink("img-user/".$_POST["user_pic2"]); } else { $newname = $_POST['user_pic2']; } $stmt = $conn->prepare("UPDATE tb_user SET user_email=:user_email, user_pass=:user_pass, user_fname=:user_fname, user_lname=:user_lname, user_tel=:user_tel, user_line=:user_line, user_pic=:user_pic WHERE user_id=:user_id"); $stmt->bindParam(':user_id', $user_id , PDO::PARAM_INT); $stmt->bindParam(':user_email', $user_email , PDO::PARAM_STR); $stmt->bindParam(':user_fname', $user_fname , PDO::PARAM_STR); $stmt->bindParam(':user_lname', $user_lname , PDO::PARAM_STR); $stmt->bindParam(':user_tel', $user_tel , PDO::PARAM_STR); $stmt->bindParam(':user_line', $user_line , PDO::PARAM_STR); $stmt->bindParam(':user_pic', $newname , PDO::PARAM_STR); $stmt->bindParam(':user_pass', $user_pass , PDO::PARAM_STR); $result = $stmt->execute(); if($result){ echo ' <script> swal({ title: "แก้ไขข้อมูลสำเร็จ", icon: "success", button: "ตกลง", }).then( () => { location.href = "user" }); </script> '; } else { echo ' <script> swal({ title: "Error เกิดข้อผิดพลาด", icon: "error", button: "ตกลง", }).then( () => { location.href = "'.$_SERVER['REQUEST_URI'].'" }); </script> '; } } ?> <?php if(isset($_POST['btnDeletePerson'])){ $person_idcard = $_POST['person_idcard']; $person_status = "0"; $stmt = $conn->prepare("UPDATE tb_person SET person_status=:person_status WHERE person_idcard=:person_idcard"); $stmt->bindParam(':person_idcard', $person_idcard , PDO::PARAM_STR); $stmt->bindParam(':person_status', $person_status , PDO::PARAM_STR); $result = $stmt->execute(); if($result){ echo ' <script> swal({ title: "ยกเลิกข้อมูลสำเร็จ", icon: "success", button: "ตกลง", }).then( () => { location.href = "personData" }); </script> '; } else { echo ' <script> swal({ title: "Error เกิดข้อผิดพลาด", icon: "error", button: "ตกลง", }).then( () => { location.href = "'.$_SERVER['REQUEST_URI'].'" }); </script> '; } } ?> <?php if(isset($_POST['btnAddPerson'])){ $person_idcard = $_POST['person_idcard']; $prefix_id = $_POST['prefix_id']; $person_fname = $_POST['person_fname']; $person_lname = $_POST['person_lname']; $person_tel = $_POST['person_tel']; $person_birthday = $_POST['person_birthday']; $ps_type_id = $_POST['ps_type_id']; $position_id = $_POST['position_id']; $address = $_POST['address']; $prov_id = $_POST['prov_id']; $amp_id = $_POST['amp_id']; $dis_id = $_POST['dis_id']; $moo = $_POST['moo']; $road = $_POST['road']; $soi = $_POST['soi']; $zip_code = $_POST['zip_code']; $user_id = $_SESSION['user_id']; $person_status = "1"; $school_id = $_POST['school_id']; $stmt = $conn->prepare("INSERT INTO tb_person(person_idcard, prefix_id, person_fname, person_lname, person_tel, person_birthday, ps_type_id, position_id, address, user_id, person_status, school_id) VALUES (:person_idcard, :prefix_id, :person_fname, :person_lname, :person_tel, :person_birthday, :ps_type_id, :position_id, :address, :user_id, :person_status, :school_id)"); $stmt->bindParam(':person_idcard', $person_idcard , PDO::PARAM_STR); $stmt->bindParam(':prefix_id', $prefix_id , PDO::PARAM_STR); $stmt->bindParam(':person_fname', $person_fname , PDO::PARAM_STR); $stmt->bindParam(':person_lname', $person_lname , PDO::PARAM_STR); $stmt->bindParam(':person_tel', $person_tel , PDO::PARAM_STR); $stmt->bindParam(':person_birthday', $person_birthday); $stmt->bindParam(':ps_type_id', $ps_type_id , PDO::PARAM_STR); $stmt->bindParam(':position_id', $position_id , PDO::PARAM_STR); $stmt->bindParam(':address', $address , PDO::PARAM_STR); $stmt->bindParam(':user_id', $user_id , PDO::PARAM_STR); $stmt->bindParam(':person_status', $person_status , PDO::PARAM_STR); $stmt->bindParam(':school_id', $school_id , PDO::PARAM_STR); $result = $stmt->execute(); if($result){ echo ' <script> swal({ title: "บันทึกข้อมูลสำเร็จ", icon: "success", button: "ตกลง", }).then( () => { location.href = "personData" }); </script> '; } else { echo ' <script> swal({ title: "Error เกิดข้อผิดพลาด", icon: "error", button: "ตกลง", }).then( () => { location.href = "'.$_SERVER['REQUEST_URI'].'" }); </script> '; } } ?> </div> <!-- /.box-body --> </div> <!-- /.box --> </div> <!-- /.col --> </div> <!-- ./row--> <!--ปิดเนื้อหา--> </section> <!-- /.content --> </div> <!-- /.content-wrapper --> <?php include('footer.php');?> <div class="control-sidebar-bg"></div> </div> <!-- ./wrapper --> <?php include('import_script.php');?> </body> </html> <?php $conn = null; ?>
Close